Report - bolly4u.pet/C1AnsfMhSdIxqd6GYCLEiYEhPQD3D2Tzs93bgwxyy2NFjPIx-8OJKCJ7F5HaWX4cm-5RcBkezp57nzfl6Jo

Report Overview

Visited public
2024-12-07 22:28:04
Tags
Submit Tags
URL
bolly4u.pet/C1AnsfMhSdIxqd6GYCLEiYEhPQD3D2Tzs93bgwxyy2NFjPIx-8OJKCJ7F5HaWX4cm-5RcBkezp57nzfl6Jo_AA==
Finishing URL
bolly4u.pet/trending/
IP / ASN
172.67.165.197
#13335 CLOUDFLARENET
Title
Trending - Bolly4u.org

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.googletagmanager.com	75	2011-11-11	2012-10-04	2024-12-04	418 B	100 kB	142.250.74.168
arvigorothan.com	unknown	2023-10-19	2023-10-19	2024-11-30	397 B	30 kB	172.67.150.119
greerogloo.net	unknown	2024-11-16	2024-11-16	2024-12-05	1.7 kB	18 kB	139.45.197.245
my.rtmark.net	9054	2014-10-29	2015-02-04	2024-12-04	455 B	6.6 kB	188.114.97.1
bolly4u.pet	unknown	2024-12-04	2024-12-05	2024-12-05	7.8 kB	565 kB	172.67.165.197
myimg.click	unknown	2023-05-28	2023-06-07	2024-11-05	6.8 kB	826 kB	188.114.97.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-12-07	medium	greerogloo.net	Sinkholed
2024-12-07	medium	greerogloo.net	Sinkholed

ThreatFox

No alerts detected

JavaScript (17)

	URL	From	Size	First Seen	Last Seen
	unknown	ScriptElement	236 B	2024-12-07	2024-12-07
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-07 22:28 Last Seen2024-12-07 22:28 Times Seen1 Hash e3b3b548d71808cadf8695e321eab566 33f3297d2520621c0a4b93c8ad3f033c69eb5775 6849d4af49386d2d3714a14a7d15ca472d1b2e26a174d776977ae7d94db0e672 Loading...

	bolly4u.pet/cdn-cgi/challenge-platform/scripts/jsd/main.js	ScriptElement	8.7 kB	2024-12-07	2024-12-09
Pretty URL bolly4u.pet/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 172.67.165.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-07 05:03 Last Seen2024-12-09 11:23 Times Seen34 Hash ebc873bb503bb3c93ce103ddbd09b1fc c17a0782d6d31b8fb24c6c390ba0eed33c226438 7331f07d901071e93cc5155371600b87a076217a6f72eb0bd8427643c2f67ab3 Loading...

	bolly4u.pet/wp-includes/js/dist/hooks.min.js?ver=4d63a3d491d11ffd8ac6	ScriptElement	4.8 kB	2024-11-13	2025-07-17
Pretty URL bolly4u.pet/wp-includes/js/dist/hooks.min.js?ver=4d63a3d491d11ffd8ac6 IP 172.67.165.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-11-13 05:08 Last Seen2025-07-17 07:14 Times Seen40183 Hash c6fddbb6be69793478de26fc245b2acf a136ebf5054fdc19729b3592005fe0fefec4bb4c 9a1e0d38b691f1d22a92cff65ec0439b428170ac39a4493c7ecb06d5585f56a3 Loading...

	bolly4u.pet/wp-includes/js/dist/i18n.min.js?ver=5e580eb46a90c2b997e6	ScriptElement	9.1 kB	2024-04-03	2025-07-17
Pretty URL bolly4u.pet/wp-includes/js/dist/i18n.min.js?ver=5e580eb46a90c2b997e6 IP 172.67.165.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-03 08:25 Last Seen2025-07-17 07:14 Times Seen56204 Hash a8127c1a87bb4f99edbeec7c37311dcd 9997a1745f48bdd233dbe9bd8164daa53eba105b f313d12ea6124bd28fc4a6b7163d253bb83d5aeab5edce594880c5c3df475cbc Loading...

	bolly4u.pet/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=6.0.1	ScriptElement	12 kB	2024-11-04	2025-07-17
Pretty URL bolly4u.pet/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=6.0.1 IP 172.67.165.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-11-04 17:50 Last Seen2025-07-17 04:42 Times Seen5392 Hash 2e187162915b1d22fd4558fee30f5613 3c76d4209fdbcbd3650655852ad4ed73846e15ff 6d60e3b25e56d35148888b5a08c8eb0ff3806f9698d4f6f54a35eab7d27f4c2f Loading...

	unknown	ScriptElement	172 B	2024-12-07	2024-12-07
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-07 22:28 Last Seen2024-12-07 22:28 Times Seen1 Hash 0ae8b613816c10796cbb5ee817b134a8 e03dd23bee43ce9fb52cd3b38bcf97edd6241386 17900f39fa6062130b36fdf23ef5d021355078ec3a239517f44fee1f828525d2 Loading...

	bolly4u.pet/trending/	ScriptElement	196 B	2024-12-05	2025-04-08
Pretty URL bolly4u.pet/trending/ IP 172.67.165.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-12-05 16:52 Last Seen2025-04-08 00:02 Times Seen11 Hash 08e1aead0d28404136fcf82655d8b654 3f0767fdd3caf103bcd8b9751bc167ef3d3c4d36 53e39ddb640771d98497bf599e2dde6b03b52e8c1399529c2519a8e505ab6592 Loading...

	bolly4u.pet/trending/	ScriptElement	153 B	2023-12-29	2025-04-08
Pretty URL bolly4u.pet/trending/ IP 172.67.165.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-29 09:17 Last Seen2025-04-08 00:02 Times Seen48 Hash fc0f5ffc622045b17168343619673c44 937f4ed5bc1bd12bc0c20261e26bf658d40cd64f 2fd2e5a4ebea19762455acbe4b1b5bcf8235bbc92e8fb88059e16db89c52a482 Loading...

	bolly4u.pet/trending/	ScriptElement	921 B	2024-12-07	2024-12-07
Pretty URL bolly4u.pet/trending/ IP 172.67.165.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-12-07 22:28 Last Seen2024-12-07 22:28 Times Seen1 Hash c93c62869bf8125f715959bd2da6df9c 65eeca8474d8a477675a5d2edeeb0c9a4276b03e 828fa72cf29e30e20e2ca3bfe3f5439e5c8bbc92ffd3bf709631a9284c6f28de Loading...

	bolly4u.pet/wp-content/plugins/contact-form-7/includes/js/index.js?ver=6.0.1	ScriptElement	14 kB	2024-11-04	2025-07-17
Pretty URL bolly4u.pet/wp-content/plugins/contact-form-7/includes/js/index.js?ver=6.0.1 IP 172.67.165.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-11-04 17:50 Last Seen2025-07-17 06:10 Times Seen16868 Hash 2912c657d0592cc532dff73d0d2ce7bb 70a679e2769825236f83bcc56965a9d0bd86c4e9 ddcce687729cb358abf9d0d8e1217a097859be2b0d18c23d7c851b38c87bc9c0 Loading...

	bolly4u.pet/wp-content/themes/bolly4u/script.js?ver=1.3	ScriptElement	114 kB	2023-10-21	2025-04-08
Pretty URL bolly4u.pet/wp-content/themes/bolly4u/script.js?ver=1.3 IP 172.67.165.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-21 17:12 Last Seen2025-04-08 00:02 Times Seen12 Hash 72336ace6d9aa5f6f22c4906e653a9ac 49c7b007e3b1d0c2ebe079d6f3becacdf03020d2 a13b51ccd6073246b60d49cb27030f0f54d0b6a8177b994f0ef683fd16150a02 Loading...

	bolly4u.pet/trending/	ScriptElement	206 B	2024-12-05	2025-04-08
Pretty URL bolly4u.pet/trending/ IP 172.67.165.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-12-05 16:52 Last Seen2025-04-08 00:02 Times Seen12 Hash 59a26779b993bbefcac6c7c489a86b20 ead7d3e94df8ac3c1e60c9152688539106a07ac4 3a16794ce04fd74d317c329ba4038c74d314e14062775b6ae94ef89eb85c90cf Loading...

	bolly4u.pet/trending/	ScriptElement	94 B	2023-11-08	2025-07-17
Pretty URL bolly4u.pet/trending/ IP 172.67.165.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-08 00:42 Last Seen2025-07-17 07:14 Times Seen29874 Hash 02d7d8402b7ddb8e6fe47f2a35071e8d 174b5a8fe0ecdfa989fbf40f3ecd51f1d0117693 8a96c1a0a8b1c2a8eab8adfa21634b7f2c4226f6bc5322df1ab7efc4f1f1af7f Loading...

	bolly4u.pet/trending/	ScriptElement	174 B	2024-12-05	2024-12-18
Pretty URL bolly4u.pet/trending/ IP 172.67.165.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-12-05 16:52 Last Seen2024-12-18 13:43 Times Seen4 Hash 7a4db1a677fc0691b9922514709847cc 486a944d1cecf960d4bce0d315edc46d715488b3 e5abb679dde3f722e2480398f31fe8502454aac3431f6729ebaec431a629978b Loading...

	bolly4u.pet/trending/	ScriptElement	85 kB	2024-08-17	2025-07-11
Pretty URL bolly4u.pet/trending/ IP 172.67.165.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-17 05:53 Last Seen2025-07-11 13:48 Times Seen812 Hash 4c271a385fe568282227f5c61ac39ffb 694b8c74ec09f24c6d330e68e0959affddd89461 6202c522fe304dd25d0d8efa3a3dfe9f91f4e5706d7da952b436f0d6b45675bf Loading...

	arvigorothan.com/tag.min.js	ScriptElement	71 kB	2024-12-05	2024-12-09
Pretty URL arvigorothan.com/tag.min.js IP 172.67.150.119 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-05 13:06 Last Seen2024-12-09 13:08 Times Seen177 Hash 2eeea61eb013dc83a41eafa1703c29b2 a50df19172681e73e3d4f561e5ce1d0b1e7009ca a11d2141877d0c5e71945d23d73045d76d56813b6664477d8c03eed853b2b64b Loading...

	www.googletagmanager.com/gtag/js?id=G-QNSMP0M04T	ScriptElement	284 kB	2024-12-07	2024-12-07
Pretty URL www.googletagmanager.com/gtag/js?id=G-QNSMP0M04T IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-07 22:28 Last Seen2024-12-07 22:28 Times Seen1 Hash d136689da5abe2da6621ba8a50334990 9a25db3366a60092f17142a435ed7be6364e78aa b00023170fa146a7246caa5e032548715a9e1d297d2a51fe4727b818a6d22365 Loading...

HTTP Transactions (36)

URL IP Response Size

GET bolly4u.pet/wp-content/themes/bolly4u/assets/logo.png

172.67.165.197

200 OK

9.8 kB

URL GET HTTP/3
bolly4u.pet/wp-content/themes/bolly4u/assets/logo.png
IP
172.67.165.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectbolly4u.pet
Fingerprint14:0D:A6:B8:DD:E1:78:24:2E:B1:02:34:08:16:19:4B:96:AE:00:B5
ValidityWed, 04 Dec 2024 04:49:53 GMT - Tue, 04 Mar 2025 04:49:52 GMT

File type
PNG image data, 220 x 53, 8-bit/color RGBA, non-interlaced
Size
9.8 kB (9754 bytes)
Hash
331b81e3e3f412cc4c1df38ec7d50301
b61d6cc09c58334ab13f07287da0239c875e8eda
68b4835f592296bbba67d8846b043763744abb4d9268cce4904bf724bae473e0

HTTP Headers

GET /wp-content/themes/bolly4u/assets/logo.png HTTP/1.1
Host: bolly4u.pet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/trending/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 07 Dec 2024 22:27:39 GMT
content-type: image/png
content-length: 9754
cache-control: public, max-age=604800
expires: Sat, 14 Dec 2024 22:27:39 GMT
last-modified: Wed, 20 Nov 2024 07:19:50 GMT
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ODFz1peFyMJGfpL%2FXunee8IuCcQxz2Lw5X9rfVPcEs1WvZc9K2eohdqKq6Vnpv6a62yGTIb6THEg7o%2BwEsjAyaDZpyLwqQRuR5%2FTwhBN0%2FTmue75GHNApHrvb0Kzjg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8ee7f1bd5d3656be-OSL
server-timing: cfL4;desc="?proto=QUIC&rtt=5886&min_rtt=1213&rtt_var=6257&sent=79&recv=22&lost=0&retrans=0&sent_bytes=68496&recv_bytes=3756&delivery_rate=815044&cwnd=32700&unsent_bytes=0&cid=c4fccac3e1591aef&ts=2800&x=1", cfExtPri, cfHdrFlush;dur=0

GET myimg.click/images/2022/08/15/Graphic-Desires-2022.jpg

188.114.97.1

200 OK

54 kB

URL GET HTTP/2
myimg.click/images/2022/08/15/Graphic-Desires-2022.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectmyimg.click
FingerprintD0:AF:68:3C:C6:17:92:C5:58:B1:3E:DD:56:84:D5:1B:FA:14:CA:C2
ValiditySat, 09 Nov 2024 06:44:47 GMT - Fri, 07 Feb 2025 06:44:46 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 315x448, components 3
Size
54 kB (53598 bytes)
Hash
89c42186a7391bb7c0b9ce59c637804b
6c121a11094028f23a9772410a83ef68749a698d
20ce98e7ea465199d107c1f395456282d2ecf77bdc9bbaa1dcf68e82cdebf86a

HTTP Headers

GET /images/2022/08/15/Graphic-Desires-2022.jpg HTTP/1.1
Host: myimg.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 07 Dec 2024 22:27:39 GMT
content-type: image/jpeg
content-length: 53598
cache-control: public, max-age=604800
expires: Fri, 13 Dec 2024 22:29:10 GMT
last-modified: Mon, 15 Aug 2022 19:07:23 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 86309
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sXEQNJ%2BbrWW20Jd%2BdHYd3FMEK2oPaRiDSHekuWJjCHQ2oZ%2BqEJoUY4TS1K1OfiwfcdpQ1LMXih99mhb7yyiJWk6cBMirussR8RYVYIFX9cMGEA0y8tiPdLpSaZ0xhQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8ee7f1be0e090b4d-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=527&min_rtt=401&rtt_var=249&sent=11&recv=20&lost=0&retrans=0&sent_bytes=3195&recv_bytes=1974&delivery_rate=7688495&cwnd=254&unsent_bytes=0&cid=8973fbe70754b2dc&ts=82&x=0"
X-Firefox-Spdy: h2

GET myimg.click/images/2021/06/01/Lie-With-Me-2005.jpg

188.114.97.1

200 OK

28 kB

URL GET HTTP/2
myimg.click/images/2021/06/01/Lie-With-Me-2005.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectmyimg.click
FingerprintD0:AF:68:3C:C6:17:92:C5:58:B1:3E:DD:56:84:D5:1B:FA:14:CA:C2
ValiditySat, 09 Nov 2024 06:44:47 GMT - Fri, 07 Feb 2025 06:44:46 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 315x448, components 3
Size
28 kB (28377 bytes)
Hash
df4fc8be7855ecf1d669d3a3596c2615
dbf5f6c4e2151bdcabfecceb4ee5eabcdd97c899
d4452d991bfa27aa8f0b436fe80a8979a59b011d45720c6f8d2a4ea971b43d98

HTTP Headers

GET /images/2021/06/01/Lie-With-Me-2005.jpg HTTP/1.1
Host: myimg.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 07 Dec 2024 22:27:39 GMT
content-type: image/jpeg
content-length: 28377
cache-control: public, max-age=604800
expires: Thu, 12 Dec 2024 15:49:00 GMT
last-modified: Tue, 01 Jun 2021 05:31:06 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 196719
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Qak%2BydMLEFsK7Z8KrTbSzR%2F7l3rFJzMbi%2BI2PJA4TTxP3dBiAmlRKigegcGZ1z9H1ZyNbXpraMb8ss70Rr3qDPKqTOoKgq8go5pEQE3NnqXMmBIZqcuSmEjYwy9awg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8ee7f1be0e080b4d-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=527&min_rtt=401&rtt_var=249&sent=50&recv=20&lost=0&retrans=0&sent_bytes=55619&recv_bytes=1974&delivery_rate=7688495&cwnd=254&unsent_bytes=2852&cid=8973fbe70754b2dc&ts=84&x=0"
X-Firefox-Spdy: h2

GET myimg.click/images/2022/04/28/365-Days-This-Day-2022.jpg

188.114.97.1

200 OK

35 kB

URL GET HTTP/2
myimg.click/images/2022/04/28/365-Days-This-Day-2022.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectmyimg.click
FingerprintD0:AF:68:3C:C6:17:92:C5:58:B1:3E:DD:56:84:D5:1B:FA:14:CA:C2
ValiditySat, 09 Nov 2024 06:44:47 GMT - Fri, 07 Feb 2025 06:44:46 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 315x448, components 3
Size
35 kB (34856 bytes)
Hash
ba1dfd8cda90fba1bfd0bf2dc00d9053
e48865a5e66d4f7c7028cfea4c04a08ab21711e7
52290473f8d88c5da47247f67c75173c954683759dd2b3dbdc91294f9eee348b

HTTP Headers

GET /images/2022/04/28/365-Days-This-Day-2022.jpg HTTP/1.1
Host: myimg.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 07 Dec 2024 22:27:39 GMT
content-type: image/jpeg
content-length: 34856
cache-control: public, max-age=604800
expires: Sun, 08 Dec 2024 15:13:36 GMT
last-modified: Thu, 28 Apr 2022 06:56:27 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 544443
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DE%2BCkTBnL1AQpbS9mYbYSx0YU9TXGnx2AcG%2FFZxnXcplmNhuvKGeUrMuIFSrXrHpouA6eVEH%2BOrgcIS2AYUK1LFMEsXMVo6cGFfFtL8%2FOsSImyPlk2u4f1aVmDDRgQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8ee7f1be1e0c0b4d-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=527&min_rtt=401&rtt_var=249&sent=59&recv=20&lost=0&retrans=0&sent_bytes=67323&recv_bytes=1974&delivery_rate=7688495&cwnd=254&unsent_bytes=20230&cid=8973fbe70754b2dc&ts=84&x=0"
X-Firefox-Spdy: h2

GET myimg.click/images/2024/08/16/Double-Ismart-2024.jpg

188.114.97.1

200 OK

41 kB

URL GET HTTP/2
myimg.click/images/2024/08/16/Double-Ismart-2024.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectmyimg.click
FingerprintD0:AF:68:3C:C6:17:92:C5:58:B1:3E:DD:56:84:D5:1B:FA:14:CA:C2
ValiditySat, 09 Nov 2024 06:44:47 GMT - Fri, 07 Feb 2025 06:44:46 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 315x448, components 3
Size
41 kB (40739 bytes)
Hash
e89ecd6eda98b605815b3d166cd6fe5c
3ab5a2e7e55dccfaceff087f36586a176520300d
b2430ccf7e00f2bfe573cb9abef41923cb1c298c11ca4e43efc4434d0890b004

HTTP Headers

GET /images/2024/08/16/Double-Ismart-2024.jpg HTTP/1.1
Host: myimg.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 07 Dec 2024 22:27:39 GMT
content-type: image/jpeg
content-length: 40739
cache-control: public, max-age=604800
expires: Sat, 14 Dec 2024 14:17:29 GMT
last-modified: Fri, 16 Aug 2024 06:54:17 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 29410
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C3ut2UzE%2BSfB%2BI%2FJ1eu0qFwTeYu%2FWw0kREWEQhPXyewqDJPlmSSFbD1LMLB3OFI%2BES7bc9MDLnGuHf97Oy%2BRsBcVJpUjPtDT1FdIIKH6yUt37Cif%2FAONU9pnPvwILg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8ee7f1be1e1b0b4d-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=527&min_rtt=401&rtt_var=249&sent=59&recv=20&lost=0&retrans=0&sent_bytes=67323&recv_bytes=1974&delivery_rate=7688495&cwnd=254&unsent_bytes=31856&cid=8973fbe70754b2dc&ts=87&x=0"
X-Firefox-Spdy: h2

GET myimg.click/images/2022/03/17/Siklo.2022.720p.WEBRip.HIND-1.jpg

188.114.97.1

200 OK

25 kB

URL GET HTTP/2
myimg.click/images/2022/03/17/Siklo.2022.720p.WEBRip.HIND-1.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectmyimg.click
FingerprintD0:AF:68:3C:C6:17:92:C5:58:B1:3E:DD:56:84:D5:1B:FA:14:CA:C2
ValiditySat, 09 Nov 2024 06:44:47 GMT - Fri, 07 Feb 2025 06:44:46 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=3, xresolution=50, yresolution=58, resolutionunit=2], progressive, precision 8, 315x447, components 3
Size
25 kB (25409 bytes)
Hash
3ec31b4130b9659f3f9d059a09b459c1
5c857bae54014f3d79917bce9760bce3f4754514
db8511f7432d122e14404f4a9e10caf9d015caf41aef8be1a2807e4975b2c984

HTTP Headers

GET /images/2022/03/17/Siklo.2022.720p.WEBRip.HIND-1.jpg HTTP/1.1
Host: myimg.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 07 Dec 2024 22:27:39 GMT
content-type: image/jpeg
content-length: 25409
cache-control: public, max-age=604800
expires: Sun, 08 Dec 2024 15:13:36 GMT
last-modified: Thu, 17 Mar 2022 06:13:45 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 544443
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u3kaduTj5vJq9dC7uNTmhPjNkp0uQHSTNAEWVNY4eNZDURTi3osBQpX0TlQxeoeh6dG4vcJqSsiMCysT3Fcz5%2FKIIxV3vp2iEP9aRkG8sQjH6jyy5J8TRsAlZbXWQw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8ee7f1be6e7f0b4d-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=741&min_rtt=401&rtt_var=93&sent=134&recv=59&lost=0&retrans=2&sent_bytes=165173&recv_bytes=2450&delivery_rate=54333958&cwnd=133&unsent_bytes=0&cid=8973fbe70754b2dc&ts=138&x=0"
X-Firefox-Spdy: h2

GET bolly4u.pet/trending/

172.67.165.197

200 OK

104 kB

URL User Request GET HTTP/2
bolly4u.pet/trending/
IP
172.67.165.197:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectbolly4u.pet
Fingerprint14:0D:A6:B8:DD:E1:78:24:2E:B1:02:34:08:16:19:4B:96:AE:00:B5
ValidityWed, 04 Dec 2024 04:49:53 GMT - Tue, 04 Mar 2025 04:49:52 GMT

File type
HTML document, ASCII text, with very long lines (8856), with CRLF, LF line terminators
Size
104 kB (103708 bytes)
Hash
b2e32683f78104e7a5c135771895ce5d
9d87ce00c144c1964244f5106a0915801e2782e6
1d8285da11ae32086815474afa834412bf9a72863c3fd592a56b23192b208223

HTTP Headers

GET /trending/ HTTP/1.1
Host: bolly4u.pet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 07 Dec 2024 22:27:39 GMT
content-type: text/html; charset=UTF-8
x-litespeed-tag: 45c_HTTP.200
link: <https://bolly4u.pet/wp-json/>; rel="https://api.w.org/", <https://bolly4u.pet/wp-json/wp/v2/pages/74017>; rel="alternate"; title="JSON"; type="application/json", <https://bolly4u.pet/?p=74017>; rel=shortlink
x-litespeed-cache-control: no-cache,esi=on
cache-control: max-age=14400, must-revalidate
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
last-modified: Sat, 07 Dec 2024 22:27:39 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EnBD2VDlaJZkL5Uwr0Gvl072Uopxn%2FIWaakL%2FH%2F%2Ba7sD3IFsrelLS9mGtXkbS1XK%2Fea8qGW%2BOyCp%2BQPjUWam%2FSJ94yh%2B2M%2BDU4EyTt2ofzEFjhFwjsWwXM6CWl9ifw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8ee7f1aca87f1c06-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=4421&min_rtt=437&rtt_var=7956&sent=11&recv=14&lost=0&retrans=0&sent_bytes=4069&recv_bytes=1382&delivery_rate=8059369&cwnd=253&unsent_bytes=0&cid=a042166567f2eda3&ts=2472&x=0"
X-Firefox-Spdy: h2

GET myimg.click/images/2021/07/18/Palang-Tod-Kirayedaar-2021.jpg

188.114.97.1

200 OK

34 kB

URL GET HTTP/2
myimg.click/images/2021/07/18/Palang-Tod-Kirayedaar-2021.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectmyimg.click
FingerprintD0:AF:68:3C:C6:17:92:C5:58:B1:3E:DD:56:84:D5:1B:FA:14:CA:C2
ValiditySat, 09 Nov 2024 06:44:47 GMT - Fri, 07 Feb 2025 06:44:46 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 315x448, components 3
Size
34 kB (33537 bytes)
Hash
049c5b7493e02ca873bf7559aa0b5657
e94f39b535f24e724d5682bcd019454cfe784509
840e365dabee273482f0d8c187d71449bc31a63436f69fa157ad155e56a63f96

HTTP Headers

GET /images/2021/07/18/Palang-Tod-Kirayedaar-2021.jpg HTTP/1.1
Host: myimg.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 07 Dec 2024 22:27:39 GMT
content-type: image/jpeg
content-length: 33537
cache-control: public, max-age=604800
expires: Sun, 08 Dec 2024 15:13:36 GMT
last-modified: Sun, 18 Jul 2021 05:12:44 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 544443
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FIaYOFNLfi9qbAqe1Hjct9SSRNlblzIB3aQPiPf83bQsXVnCJ83LE0u41FB8j7XvQxZ0Z0vM9%2BnLiJnQEU9jXiiqAQ8AYL%2B7BC540JdudbDeiGQkgLVJCHiamsT2cQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8ee7f1be6e810b4d-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=640&min_rtt=401&rtt_var=58&sent=201&recv=92&lost=0&retrans=2&sent_bytes=258285&recv_bytes=2450&delivery_rate=54333958&cwnd=188&unsent_bytes=0&cid=8973fbe70754b2dc&ts=147&x=0"
X-Firefox-Spdy: h2

GET bolly4u.pet/wp-content/themes/bolly4u/style.css?ver=1.3

172.67.165.197

200 OK

6.6 kB

URL GET HTTP/3
bolly4u.pet/wp-content/themes/bolly4u/style.css?ver=1.3
IP
172.67.165.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectbolly4u.pet
Fingerprint14:0D:A6:B8:DD:E1:78:24:2E:B1:02:34:08:16:19:4B:96:AE:00:B5
ValidityWed, 04 Dec 2024 04:49:53 GMT - Tue, 04 Mar 2025 04:49:52 GMT

File type
ASCII text
Size
6.6 kB (6632 bytes)
Hash
3bcb25b3de3e47f1575437321ca76aac
6e4bdd080f3cbe754e7190ae6ae0989c00b3a417
ebde0793602002d55d448c659e8f1500404056209a3aae942a66900970f6f10e

HTTP Headers

GET /wp-content/themes/bolly4u/style.css?ver=1.3 HTTP/1.1
Host: bolly4u.pet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/trending/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 07 Dec 2024 22:27:39 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Sat, 14 Dec 2024 21:22:41 GMT
last-modified: Wed, 20 Nov 2024 07:19:50 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 3898
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Wtdw7ue2sKNVPKyNqsfDB8RVenyWrHYPPRl83gckev2Gg17lXbUaFtIp1u9OUybvNAYVmNimWeec0qEEFidh9hWMwhMGZDkEiMS4eYhPqv38lWV%2F9PJk%2BZtorct2Zw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8ee7f1bd5d2d56be-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=QUIC&rtt=3154&min_rtt=1708&rtt_var=1673&sent=16&recv=12&lost=0&retrans=0&sent_bytes=4223&recv_bytes=2167&delivery_rate=344666&cwnd=12000&unsent_bytes=0&cid=c4fccac3e1591aef&ts=2694&x=1", cfExtPri, cfHdrFlush;dur=0

GET myimg.click/images/2024/06/06/Bade-Miyan-Chote-Miyan-2024.jpg

188.114.97.1

200 OK

37 kB

URL GET HTTP/2
myimg.click/images/2024/06/06/Bade-Miyan-Chote-Miyan-2024.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectmyimg.click
FingerprintD0:AF:68:3C:C6:17:92:C5:58:B1:3E:DD:56:84:D5:1B:FA:14:CA:C2
ValiditySat, 09 Nov 2024 06:44:47 GMT - Fri, 07 Feb 2025 06:44:46 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 315x448, components 3
Size
37 kB (36861 bytes)
Hash
20bc76165d6b50319e453d1f5cd812ff
9abbc469ac50f89c23941c1e92bc3330a361e52d
9ebed66ff1a80f827d1a693d7920335155c5969e9b3a5305930a41903a2e241f

HTTP Headers

GET /images/2024/06/06/Bade-Miyan-Chote-Miyan-2024.jpg HTTP/1.1
Host: myimg.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 07 Dec 2024 22:27:40 GMT
content-type: image/jpeg
content-length: 36861
cache-control: public, max-age=604800
expires: Sat, 14 Dec 2024 22:27:39 GMT
last-modified: Thu, 06 Jun 2024 04:39:52 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O1%2BC0QYDb%2Bgr7Gy5KB2c9BOQhboT2eoC%2BXjKWvt7DWWii4mtP3cUApm6lJAJ1L9e4HkK05IEmcPSrzAgbbKCKinBLENPJhxmMdX8%2BqECmMb8XsVyULD0tufYT%2BBIHA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8ee7f1be1e120b4d-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=1362&min_rtt=401&rtt_var=1526&sent=228&recv=105&lost=0&retrans=3&sent_bytes=292448&recv_bytes=2450&delivery_rate=847113&cwnd=188&unsent_bytes=0&cid=8973fbe70754b2dc&ts=294&x=0"
X-Firefox-Spdy: h2

GET myimg.click/images/2024/08/29/The-Lord-of-The-Rings-The-Rings-of-Power-2024.jpg

188.114.97.1

200 OK

46 kB

URL GET HTTP/2
myimg.click/images/2024/08/29/The-Lord-of-The-Rings-The-Rings-of-Power-2024.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectmyimg.click
FingerprintD0:AF:68:3C:C6:17:92:C5:58:B1:3E:DD:56:84:D5:1B:FA:14:CA:C2
ValiditySat, 09 Nov 2024 06:44:47 GMT - Fri, 07 Feb 2025 06:44:46 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1], baseline, precision 8, 315x448, components 3
Size
46 kB (46344 bytes)
Hash
d13f8385c2fda2ed932f93aa62e2d4e2
bc9ede004e76fc9be09fffa464ae8f39ea58fdcf
91936d55d006196661d839cd8cc19ce04e2aa34c8eaae5419dbf685b83bb0c31

HTTP Headers

GET /images/2024/08/29/The-Lord-of-The-Rings-The-Rings-of-Power-2024.jpg HTTP/1.1
Host: myimg.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 07 Dec 2024 22:27:40 GMT
content-type: image/jpeg
content-length: 46344
cache-control: public, max-age=604800
expires: Sat, 14 Dec 2024 22:27:39 GMT
last-modified: Thu, 29 Aug 2024 07:49:38 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L4AisUJa74so%2BDs6kjrpvwZY0LRvCOZ7C%2B1ihRyT1%2BvpVQeNM1R1xJIkfTw8CpIZNiMbpDbHolZJ1nMo40DXHpqSIWxWI6c40%2FGSXWNC217U2WFPfUIK%2Fxuw2iEbsg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8ee7f1be1e130b4d-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=628&min_rtt=401&rtt_var=54&sent=303&recv=180&lost=0&retrans=3&sent_bytes=393913&recv_bytes=2450&delivery_rate=42883427&cwnd=188&unsent_bytes=0&cid=8973fbe70754b2dc&ts=329&x=0"
X-Firefox-Spdy: h2

GET myimg.click/images/2024/08/21/Kalki-2898-AD-2024.jpg

188.114.97.1

200 OK

44 kB

URL GET HTTP/2
myimg.click/images/2024/08/21/Kalki-2898-AD-2024.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectmyimg.click
FingerprintD0:AF:68:3C:C6:17:92:C5:58:B1:3E:DD:56:84:D5:1B:FA:14:CA:C2
ValiditySat, 09 Nov 2024 06:44:47 GMT - Fri, 07 Feb 2025 06:44:46 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, baseline, precision 8, 315x448, components 3
Size
44 kB (44451 bytes)
Hash
19dc1184d30ec1eb8c4330814827bc06
95ae4bf9b3028aed1a12446926c2d3a8ae441689
941af24e890c411adb75c530fb56ed3b630d6aca3b6ab16634adb6793c776f30

HTTP Headers

GET /images/2024/08/21/Kalki-2898-AD-2024.jpg HTTP/1.1
Host: myimg.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 07 Dec 2024 22:27:40 GMT
content-type: image/jpeg
content-length: 44451
cache-control: public, max-age=604800
expires: Sat, 14 Dec 2024 22:27:39 GMT
last-modified: Thu, 22 Aug 2024 01:35:58 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=c%2FhTup7ZV8jM4dCkapDP91lg%2Bex3qkE2gEi1XySRx1WGXKOIB0LJVeaBTF6z0P7DCqTMzqlkw37StxSkRnVdY8WGri2avBHvtevptQ7dBdm53GH0Q4VJvzuTXikvGQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8ee7f1be0e030b4d-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=840&min_rtt=401&rtt_var=119&sent=338&recv=215&lost=0&retrans=3&sent_bytes=440867&recv_bytes=2450&delivery_rate=42883427&cwnd=186&unsent_bytes=0&cid=8973fbe70754b2dc&ts=345&x=0"
X-Firefox-Spdy: h2

GET myimg.click/images/2024/09/29/The-Greatest-of-All-Time-2024.jpg

188.114.97.1

200 OK

60 kB

URL GET HTTP/2
myimg.click/images/2024/09/29/The-Greatest-of-All-Time-2024.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectmyimg.click
FingerprintD0:AF:68:3C:C6:17:92:C5:58:B1:3E:DD:56:84:D5:1B:FA:14:CA:C2
ValiditySat, 09 Nov 2024 06:44:47 GMT - Fri, 07 Feb 2025 06:44:46 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 315x448, components 3
Size
60 kB (60159 bytes)
Hash
59a083b9f126fe66b9e44f83441aa135
9154016d31fad640c656dd49c2e26fcc833467b2
6f46a0669355f36f56f0e80c05c5505d8ce62f2992ee94a51391d8e120198640

HTTP Headers

GET /images/2024/09/29/The-Greatest-of-All-Time-2024.jpg HTTP/1.1
Host: myimg.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 07 Dec 2024 22:27:40 GMT
content-type: image/jpeg
content-length: 60159
cache-control: public, max-age=604800
expires: Sat, 14 Dec 2024 22:27:39 GMT
last-modified: Sun, 29 Sep 2024 07:34:21 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pE%2B791iyiLHL2iMmrcfPoZY9sNHvkpPxloQ90mic1lSYtuyLGKCygqfp8hgFwdLE6r1Y%2FyQoXbm0a9c1AjLSSrZgY1arEb4IijIi54DUl%2BurnXV5hv2Fk6ANAB98DQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8ee7f1be1e100b4d-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=681&min_rtt=401&rtt_var=31&sent=372&recv=235&lost=0&retrans=3&sent_bytes=486108&recv_bytes=2450&delivery_rate=42883427&cwnd=186&unsent_bytes=0&cid=8973fbe70754b2dc&ts=346&x=0"
X-Firefox-Spdy: h2

GET myimg.click/images/2024/01/26/Animal-2023.jpg

188.114.97.1

200 OK

42 kB

URL GET HTTP/2
myimg.click/images/2024/01/26/Animal-2023.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectmyimg.click
FingerprintD0:AF:68:3C:C6:17:92:C5:58:B1:3E:DD:56:84:D5:1B:FA:14:CA:C2
ValiditySat, 09 Nov 2024 06:44:47 GMT - Fri, 07 Feb 2025 06:44:46 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 315x448, components 3
Size
42 kB (42308 bytes)
Hash
8b12e12019d6fde683760b3d33f37c3e
387a3aff8fe68bcce637128ba9a7e2ef05fc832f
69d374bc8d4b304d9c7a0effa9551902b2cb571d01193d2c70cb557fa1121f71

HTTP Headers

GET /images/2024/01/26/Animal-2023.jpg HTTP/1.1
Host: myimg.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 07 Dec 2024 22:27:40 GMT
content-type: image/jpeg
content-length: 42308
cache-control: public, max-age=604800
expires: Sat, 14 Dec 2024 22:27:40 GMT
last-modified: Fri, 26 Jan 2024 05:11:25 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t04X%2FokY%2FI3KfRWwNCCTsM0murLtN5LlVbNxQnnmRkvAH%2F4ern3QJMTbsRDSFdlmO3gK7hyc2Z3W%2BctPTGmhYXOoqhNyDxVQBz%2FbpT%2F5YT9grKNm4A2tTOWFUyu1xg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8ee7f1be6e830b4d-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=797&min_rtt=377&rtt_var=189&sent=418&recv=250&lost=0&retrans=3&sent_bytes=546911&recv_bytes=2450&delivery_rate=42883427&cwnd=184&unsent_bytes=0&cid=8973fbe70754b2dc&ts=347&x=0"
X-Firefox-Spdy: h2

GET myimg.click/images/2024/01/07/Tiger-3-2023.jpg

188.114.97.1

200 OK

84 kB

URL GET HTTP/2
myimg.click/images/2024/01/07/Tiger-3-2023.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectmyimg.click
FingerprintD0:AF:68:3C:C6:17:92:C5:58:B1:3E:DD:56:84:D5:1B:FA:14:CA:C2
ValiditySat, 09 Nov 2024 06:44:47 GMT - Fri, 07 Feb 2025 06:44:46 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 315x448, components 3
Size
84 kB (83967 bytes)
Hash
f29538f9d159fe88dd7bedf0b61cef06
a57eeac966d06b5cab0e1fc85fc6e144288cf615
51b173fa89979246cc577a18517d4a8a698c9c842f9975f939ea7c835527787e

HTTP Headers

GET /images/2024/01/07/Tiger-3-2023.jpg HTTP/1.1
Host: myimg.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 07 Dec 2024 22:27:40 GMT
content-type: image/jpeg
content-length: 83967
cache-control: public, max-age=604800
expires: Sat, 14 Dec 2024 22:27:39 GMT
last-modified: Sun, 07 Jan 2024 05:59:55 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=51bDyFrHDJE%2F2SOY77rv%2F2HGTPuZ6j1Vb2osIyO0g403eKy%2BH5Q%2BTvTuadi2b%2BjD%2Fju4qJmrWtB%2FEkqpo5QKs2Q331v6W9TyMYzQawA5J6e1bg5FILWQ92otNUmh5w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8ee7f1be0e060b4d-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=819&min_rtt=377&rtt_var=54&sent=450&recv=267&lost=0&retrans=3&sent_bytes=589893&recv_bytes=2450&delivery_rate=42883427&cwnd=184&unsent_bytes=0&cid=8973fbe70754b2dc&ts=347&x=0"
X-Firefox-Spdy: h2

GET myimg.click/images/2024/02/16/Salaar-2023.jpg

188.114.97.1

200 OK

55 kB

URL GET HTTP/2
myimg.click/images/2024/02/16/Salaar-2023.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectmyimg.click
FingerprintD0:AF:68:3C:C6:17:92:C5:58:B1:3E:DD:56:84:D5:1B:FA:14:CA:C2
ValiditySat, 09 Nov 2024 06:44:47 GMT - Fri, 07 Feb 2025 06:44:46 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, baseline, precision 8, 315x448, components 3
Size
55 kB (54641 bytes)
Hash
58180b40df85ac48c43631b860908359
8693d2079bb9cd440574cd3db0c812f60eab6cdd
96e2b3528dee1e8bab935cfef4d2f9f90b02ea502aab479b8d4c8efb8fb0266f

HTTP Headers

GET /images/2024/02/16/Salaar-2023.jpg HTTP/1.1
Host: myimg.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 07 Dec 2024 22:27:40 GMT
content-type: image/jpeg
content-length: 54641
cache-control: public, max-age=604800
expires: Sat, 14 Dec 2024 22:27:40 GMT
last-modified: Fri, 16 Feb 2024 04:06:39 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=szbrUMmtcshsInQwPc41WgMpTPF8r2CNDhtRuNaJFvB8INQSw3T6wtNADWnXb%2FOI0PyMdH5Y96%2BgCg4jiLP70T5xuqUxQIK3aPP5%2F2V9vn2T43Wk5Lm%2BSbWZBRzV2A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8ee7f1be2e330b4d-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=1351&min_rtt=377&rtt_var=1379&sent=511&recv=300&lost=0&retrans=4&sent_bytes=675978&recv_bytes=2450&delivery_rate=9689219&cwnd=220&unsent_bytes=0&cid=8973fbe70754b2dc&ts=359&x=0"
X-Firefox-Spdy: h2

GET myimg.click/images/2023/11/24/Leo-2023.jpg

188.114.97.1

200 OK

158 kB

URL GET HTTP/2
myimg.click/images/2023/11/24/Leo-2023.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectmyimg.click
FingerprintD0:AF:68:3C:C6:17:92:C5:58:B1:3E:DD:56:84:D5:1B:FA:14:CA:C2
ValiditySat, 09 Nov 2024 06:44:47 GMT - Fri, 07 Feb 2025 06:44:46 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 315x448, components 3
Size
158 kB (158544 bytes)
Hash
6612916071e40544dac4af5f4ad37a89
401939e077fc76b9541a6fca2bc1382fb7dedf70
0695671b2e1de8755fdc791bf499aca6ec3c1973e2d030a3a6b000b2767aac7f

HTTP Headers

GET /images/2023/11/24/Leo-2023.jpg HTTP/1.1
Host: myimg.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 07 Dec 2024 22:27:40 GMT
content-type: image/jpeg
content-length: 158544
cache-control: public, max-age=604800
expires: Sat, 14 Dec 2024 22:27:39 GMT
last-modified: Fri, 24 Nov 2023 09:33:16 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4veVLtyxc80kpl8cPcCrMa2l655bNXEi%2BSC5o3HxCdMdjx2c4QZLdrAlnbJLBsIafyL2ltQtrIBWpgwmJs5RP0tJHHI3%2FBO3aChSZdutv20uJd84kBLCmx83kR2zUg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8ee7f1be1e0d0b4d-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=628&min_rtt=401&rtt_var=52&sent=256&recv=133&lost=0&retrans=3&sent_bytes=329961&recv_bytes=2450&delivery_rate=34801716&cwnd=188&unsent_bytes=0&cid=8973fbe70754b2dc&ts=325&x=0"
X-Firefox-Spdy: h2

GET www.googletagmanager.com/gtag/js?id=G-QNSMP0M04T

142.250.74.168

200 OK

99 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-QNSMP0M04T
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint8F:6D:67:20:75:1C:E2:F2:C3:65:DF:AC:EA:22:D8:AD:ED:0A:08:BA
ValidityMon, 21 Oct 2024 08:36:57 GMT - Mon, 13 Jan 2025 08:36:56 GMT

File type
JavaScript source, ASCII text, with very long lines (5945)
Size
99 kB (98984 bytes)
Hash
d136689da5abe2da6621ba8a50334990
9a25db3366a60092f17142a435ed7be6364e78aa
b00023170fa146a7246caa5e032548715a9e1d297d2a51fe4727b818a6d22365

HTTP Headers

GET /gtag/js?id=G-QNSMP0M04T HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 07 Dec 2024 22:27:40 GMT
expires: Sat, 07 Dec 2024 22:27:40 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:838:0
cross-origin-opener-policy-report-only: same-origin; report-to=coop_reporting
report-to: {"group":"coop_reporting","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:838:0"}],}
server: Google Tag Manager
content-length: 98984
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET arvigorothan.com/tag.min.js

172.67.150.119

200 OK

29 kB

URL GET HTTP/2
arvigorothan.com/tag.min.js
IP
172.67.150.119:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectarvigorothan.com
Fingerprint26:48:70:42:FE:96:F4:B3:B3:97:CC:DC:62:4D:88:51:7E:AF:01:5E
ValidityFri, 06 Dec 2024 15:37:52 GMT - Thu, 06 Mar 2025 15:37:51 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
29 kB (28854 bytes)
Hash
2eeea61eb013dc83a41eafa1703c29b2
a50df19172681e73e3d4f561e5ce1d0b1e7009ca
a11d2141877d0c5e71945d23d73045d76d56813b6664477d8c03eed853b2b64b

HTTP Headers

GET /tag.min.js HTTP/1.1
Host: arvigorothan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 07 Dec 2024 22:27:40 GMT
content-type: text/javascript; charset=utf-8
x-trace-id: 4ad4025fc086c0d40ba4b7c4bb93fdc6
cache-control: max-age=86400
last-modified: Thu, 05 Dec 2024 12:16:24 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
expires: Sun, 08 Dec 2024 12:25:47 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 36113
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0pxDBzt6Bu9mrsGUuatXx%2B5U8yNhmpC8yiJWeAECp6xSqHGvqzV54cxcfw1gVVt8D%2BzugYYatuWwF%2BE7sH%2BMpvN4YSSK76%2F%2BUOCZJN3feLCUf3WLJNKmTKDvNu%2Fp3%2FkVIRzr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee7f1c07d130b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=560&min_rtt=486&rtt_var=196&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3287&recv_bytes=1185&delivery_rate=6714064&cwnd=253&unsent_bytes=0&cid=d991dd1a010aa847&ts=44&x=0"
X-Firefox-Spdy: h2

GET bolly4u.pet/wp-content/uploads/2024/11/cropped-favicon-32x32-1-300x300.png

172.67.165.197

200 OK

4.9 kB

URL GET HTTP/3
bolly4u.pet/wp-content/uploads/2024/11/cropped-favicon-32x32-1-300x300.png
IP
172.67.165.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectbolly4u.pet
Fingerprint14:0D:A6:B8:DD:E1:78:24:2E:B1:02:34:08:16:19:4B:96:AE:00:B5
ValidityWed, 04 Dec 2024 04:49:53 GMT - Tue, 04 Mar 2025 04:49:52 GMT

File type
PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced
Size
4.9 kB (4906 bytes)
Hash
9b38bf6b3482f9f104a2ffbce0fc02e1
2351d9d8e8952924554af826ae97eca5f69022dd
f41344a2f3b5057f391b9f60edc090c93bc785ea6a648268045ca6e8027f92ea

HTTP Headers

GET /wp-content/uploads/2024/11/cropped-favicon-32x32-1-300x300.png HTTP/1.1
Host: bolly4u.pet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/trending/
Cookie: xla=s4t
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 07 Dec 2024 22:27:40 GMT
content-type: image/png
content-length: 4906
cache-control: public, max-age=604800
expires: Sat, 14 Dec 2024 22:27:40 GMT
last-modified: Wed, 20 Nov 2024 07:30:48 GMT
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UHN3zt8mcwScBg%2F5zaSRLtMAa6WTVkyOUdTs4qtvDQcF3voECJmF7JKoFtXf5xkQCcJLIB9eNUsHUyrcnnTX849Wz7vPu5dwTmkj8Ug6F1wNxT01Gn7mBir8n1MyTA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8ee7f1c1ac0e56be-OSL
server-timing: cfL4;desc="?proto=QUIC&rtt=6642&min_rtt=1213&rtt_var=4830&sent=91&recv=27&lost=0&retrans=0&sent_bytes=80068&recv_bytes=4718&delivery_rate=19656&cwnd=32700&unsent_bytes=0&cid=c4fccac3e1591aef&ts=3479&x=1", cfExtPri, cfHdrFlush;dur=0

GET bolly4u.pet/wp-content/themes/bolly4u/assets/favicon-16x16.png

172.67.165.197

200 OK

1.1 kB

URL GET HTTP/3
bolly4u.pet/wp-content/themes/bolly4u/assets/favicon-16x16.png
IP
172.67.165.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectbolly4u.pet
Fingerprint14:0D:A6:B8:DD:E1:78:24:2E:B1:02:34:08:16:19:4B:96:AE:00:B5
ValidityWed, 04 Dec 2024 04:49:53 GMT - Tue, 04 Mar 2025 04:49:52 GMT

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Size
1.1 kB (1063 bytes)
Hash
f9d44135b9c7cb9c4c5f6274e3bbc39e
88e4645a91bc67eb31101d4502a3b39c540b05b4
75e9d1980f012130a0b40315dec29da5609d5af2a0ddd1c3ce2bcf5fa83d1b29

HTTP Headers

GET /wp-content/themes/bolly4u/assets/favicon-16x16.png HTTP/1.1
Host: bolly4u.pet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/trending/
Cookie: xla=s4t
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 07 Dec 2024 22:27:40 GMT
content-type: image/png
content-length: 1063
cache-control: public, max-age=604800
expires: Sat, 14 Dec 2024 22:27:40 GMT
last-modified: Wed, 20 Nov 2024 07:19:50 GMT
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=64ar7v9cPt%2ByRGmdlNJ5es%2F0nxV1La95c8fSy5N5EAq4IxNaD1c5zuhxxGfK5Hu4n3aqbZhdbylAq61ENx0QhQAnJMl6CGFTRWm%2FEREMsHKmEOMO58ra2O5uLGKgkA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8ee7f1c1ac0f56be-OSL
server-timing: cfL4;desc="?proto=QUIC&rtt=6461&min_rtt=1213&rtt_var=3985&sent=96&recv=28&lost=0&retrans=0&sent_bytes=85862&recv_bytes=4764&delivery_rate=907617&cwnd=32700&unsent_bytes=0&cid=c4fccac3e1591aef&ts=3488&x=1", cfExtPri, cfHdrFlush;dur=0

GET bolly4u.pet/cdn-cgi/challenge-platform/h/g/scripts/jsd/f9063374b04d/main.js?

172.67.165.197

200 OK

4.1 kB

URL GET HTTP/3
bolly4u.pet/cdn-cgi/challenge-platform/h/g/scripts/jsd/f9063374b04d/main.js?
IP
172.67.165.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectbolly4u.pet
Fingerprint14:0D:A6:B8:DD:E1:78:24:2E:B1:02:34:08:16:19:4B:96:AE:00:B5
ValidityWed, 04 Dec 2024 04:49:53 GMT - Tue, 04 Mar 2025 04:49:52 GMT

File type
JavaScript source, ASCII text, with very long lines (8704), with no line terminators
Size
4.1 kB (4073 bytes)
Hash
ebc873bb503bb3c93ce103ddbd09b1fc
c17a0782d6d31b8fb24c6c390ba0eed33c226438
7331f07d901071e93cc5155371600b87a076217a6f72eb0bd8427643c2f67ab3

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/f9063374b04d/main.js? HTTP/1.1
Host: bolly4u.pet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: xla=s4t; _ga_QNSMP0M04T=GS1.1.1733610460.1.0.1733610460.0.0.0; _ga=GA1.1.910698664.1733610461
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 07 Dec 2024 22:27:40 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, stale-if-error=10800, stale-while-revalidate=10800, public
x-content-type-options: nosniff
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kdML1b2MXyiyBNorX%2FsGVX%2FrxFa4zKptFJ6NVcj0RIA40aweGE9I21ksY29JE%2FaDlr3BwA%2FewBd6IXemDzIyQR5RT8WfykDdAfy8C49MdZcogz%2BHQi%2FRwufnFSmc%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 8ee7f1c26d2256be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5831&min_rtt=1213&rtt_var=4248&sent=99&recv=30&lost=0&retrans=0&sent_bytes=87762&recv_bytes=5134&delivery_rate=980878&cwnd=32700&unsent_bytes=0&cid=c4fccac3e1591aef&ts=3501&x=1", cfExtPri, cfHdrFlush;dur=0

GET greerogloo.net/?rb=7QqI41E12ErVv4k4QQaenehfdBeo8_PlL-W_VQR1zWXa9qigpkRKlOGP72shUNQ_4BFqc6b77Szo-nrzJiNp6V-GK3vYgWYR_KDxb_svSYgx7OyAmg8-FgFwL8_G6vzB2nt43meZ-CTn6ayTcspfJYQKLb6bEV5jLWe9bn6iW1hACKoABgiJMe4NYTIDHKhq8i9TVtGo2fAZ47H7yAWdoQripHlZNjkb6dHhRT0FZ75z3rxFI6oyHSByeuVi3aWYIuYRzaUfZ-4TSKVBoZV1Ng%3D%3D&request_ab2=0&zoneid=8436387&js_build=iclick-v1.1021.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=1&pl=https%3A%2F%2Fbolly4u.pet%2Ftrending%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&tt=2&wgl=&js_build=iclick-v1.1021.0&navlng=en-US&vsbl=true&pnt=0&pnrc=0&bs=cadfb850-93b2-4aad-9101-0f9b97fe9cad&wasm=1&userId=00812b2ed3904ca5eadd2491c6e56657&m=link

139.45.197.245

200 OK

12 kB

URL GET HTTP/2
greerogloo.net/?rb=7QqI41E12ErVv4k4QQaenehfdBeo8_PlL-W_VQR1zWXa9qigpkRKlOGP72shUNQ_4BFqc6b77Szo-nrzJiNp6V-GK3vYgWYR_KDxb_svSYgx7OyAmg8-FgFwL8_G6vzB2nt43meZ-CTn6ayTcspfJYQKLb6bEV5jLWe9bn6iW1hACKoABgiJMe4NYTIDHKhq8i9TVtGo2fAZ47H7yAWdoQripHlZNjkb6dHhRT0FZ75z3rxFI6oyHSByeuVi3aWYIuYRzaUfZ-4TSKVBoZV1Ng%3D%3D&request_ab2=0&zoneid=8436387&js_build=iclick-v1.1021.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=1&pl=https%3A%2F%2Fbolly4u.pet%2Ftrending%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&tt=2&wgl=&js_build=iclick-v1.1021.0&navlng=en-US&vsbl=true&pnt=0&pnrc=0&bs=cadfb850-93b2-4aad-9101-0f9b97fe9cad&wasm=1&userId=00812b2ed3904ca5eadd2491c6e56657&m=link
IP
139.45.197.245:443
ASN
#9002 RETN Limited

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerLet's Encrypt
Subjectgreerogloo.net
Fingerprint89:CE:B7:E4:4A:48:BF:EF:98:19:E7:8E:47:B2:75:00:47:C9:A0:C1
ValiditySat, 16 Nov 2024 16:41:45 GMT - Fri, 14 Feb 2025 16:41:44 GMT

File type
gzip compressed data, max speed, from Unix
Size
12 kB (11851 bytes)
Hash
519735490314425c52d566ae8e97295c
4ceed2d421f47c4fcf6e08dbf2ef619c78cc4f10
7d35b2900c8377941a4b6994d5580f9aaa195772317ea96ee6407cf590d59702

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?rb=7QqI41E12ErVv4k4QQaenehfdBeo8_PlL-W_VQR1zWXa9qigpkRKlOGP72shUNQ_4BFqc6b77Szo-nrzJiNp6V-GK3vYgWYR_KDxb_svSYgx7OyAmg8-FgFwL8_G6vzB2nt43meZ-CTn6ayTcspfJYQKLb6bEV5jLWe9bn6iW1hACKoABgiJMe4NYTIDHKhq8i9TVtGo2fAZ47H7yAWdoQripHlZNjkb6dHhRT0FZ75z3rxFI6oyHSByeuVi3aWYIuYRzaUfZ-4TSKVBoZV1Ng%3D%3D&request_ab2=0&zoneid=8436387&js_build=iclick-v1.1021.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=1&pl=https%3A%2F%2Fbolly4u.pet%2Ftrending%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&tt=2&wgl=&js_build=iclick-v1.1021.0&navlng=en-US&vsbl=true&pnt=0&pnrc=0&bs=cadfb850-93b2-4aad-9101-0f9b97fe9cad&wasm=1&userId=00812b2ed3904ca5eadd2491c6e56657&m=link HTTP/1.1
Host: greerogloo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bolly4u.pet/
Origin: https://bolly4u.pet
DNT: 1
Connection: keep-alive
Cookie: OAID=00812b2ed3904ca5eadd2491c6e56657; oaidts=1733610460
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 07 Dec 2024 22:27:41 GMT
content-type: application/json
x-trace-id: c6e9651e5fe4f680ad2d9d637b25b0d8
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: https://bolly4u.pet
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=00812b2ed3904ca5eadd2491c6e56657; expires=Sun, 07 Dec 2025 22:27:40 GMT; path=/; secure; SameSite=None
oaidts=1733610460; expires=Sun, 07 Dec 2025 22:27:40 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Sat, 14 Dec 2024 22:27:40 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

GET my.rtmark.net/gid.js?userId=00812b2ed3904ca5eadd2491c6e56657

188.114.97.1

200 OK

5.3 kB

URL GET HTTP/2
my.rtmark.net/gid.js?userId=00812b2ed3904ca5eadd2491c6e56657
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectmy.rtmark.net
Fingerprint8A:B7:CD:87:FA:39:07:A8:88:41:1C:9E:2D:0E:97:51:61:75:C1:34
ValidityWed, 06 Nov 2024 10:31:42 GMT - Tue, 04 Feb 2025 10:31:41 GMT

File type
JSON text data
Size
5.3 kB (5315 bytes)
Hash
ac8b1d6a424fe6513789298c68c9dbe0
6c6ffcb459bb19d8557bfd5c7eb1e712cf902c6a
874ef734d07693dd325e31e38c9c5b72d35f471b2ade826767010ccf08ee313f

HTTP Headers

GET /gid.js?userId=00812b2ed3904ca5eadd2491c6e56657 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bolly4u.pet
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 07 Dec 2024 22:27:40 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://bolly4u.pet
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
timing-allow-origin: *, *
set-cookie: ID=00812b2ed3904ca5eadd2491c6e56657; expires=Sun, 07 Dec 2025 22:27:40 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fJtc0vrGVgVoQg91aVK%2BgrPTQJee0Vd2by7eXi2pjIiaVujrJO%2BrttoLuVTUGGno%2FQCSi73dXvKWV88UUEZb6UA0TWviEwO3wLK1JUqVCw4BUz7nBkuhpf332ko6BLpi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ee7f1c42b855699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=5821&min_rtt=461&rtt_var=10722&sent=8&recv=11&lost=0&retrans=0&sent_bytes=3203&recv_bytes=1100&delivery_rate=7215946&cwnd=254&unsent_bytes=0&cid=0206281b55c080e1&ts=66&x=0"
X-Firefox-Spdy: h2

GET bolly4u.pet/wp-content/plugins/contact-form-7/includes/js/index.js?ver=6.0.1

172.67.165.197

200 OK

14 kB

URL GET HTTP/3
bolly4u.pet/wp-content/plugins/contact-form-7/includes/js/index.js?ver=6.0.1
IP
172.67.165.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectbolly4u.pet
Fingerprint14:0D:A6:B8:DD:E1:78:24:2E:B1:02:34:08:16:19:4B:96:AE:00:B5
ValidityWed, 04 Dec 2024 04:49:53 GMT - Tue, 04 Mar 2025 04:49:52 GMT

File type
JavaScript source, ASCII text, with very long lines (13452), with no line terminators
Size
14 kB (13452 bytes)
Hash
2912c657d0592cc532dff73d0d2ce7bb
70a679e2769825236f83bcc56965a9d0bd86c4e9
ddcce687729cb358abf9d0d8e1217a097859be2b0d18c23d7c851b38c87bc9c0

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=6.0.1 HTTP/1.1
Host: bolly4u.pet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/trending/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 07 Dec 2024 22:27:39 GMT
content-type: text/javascript
last-modified: Wed, 27 Nov 2024 08:57:02 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: HIT
age: 3638
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YEBZzbe%2Ba5NUnyZvVey4t0QLdRepP0Ynxx67tW1JuvCbEw1E%2B5j%2FLK445R4o24OrQURwCo7YMdmT%2Felmsyjil0xPgPuc3LTzcRyEGdgFFs0zHDQ9Xo62vYtxvHO1zg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8ee7f1bd8da756be-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=QUIC&rtt=2781&min_rtt=1213&rtt_var=1336&sent=50&recv=20&lost=0&retrans=0&sent_bytes=36762&recv_bytes=3667&delivery_rate=3716234&cwnd=24000&unsent_bytes=0&cid=c4fccac3e1591aef&ts=2722&x=1", cfExtPri, cfHdrFlush;dur=0

GET bolly4u.pet/wp-includes/css/dist/block-library/style.min.css?ver=6.7.1

172.67.165.197

200 OK

115 kB

URL GET HTTP/3
bolly4u.pet/wp-includes/css/dist/block-library/style.min.css?ver=6.7.1
IP
172.67.165.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectbolly4u.pet
Fingerprint14:0D:A6:B8:DD:E1:78:24:2E:B1:02:34:08:16:19:4B:96:AE:00:B5
ValidityWed, 04 Dec 2024 04:49:53 GMT - Tue, 04 Mar 2025 04:49:52 GMT

File type

Size
115 kB (114706 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.7.1 HTTP/1.1
Host: bolly4u.pet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/trending/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 07 Dec 2024 22:27:39 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Sat, 14 Dec 2024 21:22:41 GMT
last-modified: Thu, 07 Nov 2024 16:05:23 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 3898
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TSsO9k4rhA3jCFXJufsJTAv02Kv9wZpP0MpT0WbPpl2wZnYI1mlBWR%2BYojrpNrmw1z0WLAA43gqnCVfN6aHqUtVP6A8IPCN63nLNHXEm36P1BJZnBjiWnt19in7SXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8ee7f1bd5d2856be-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=QUIC&rtt=3154&min_rtt=1708&rtt_var=1673&sent=24&recv=12&lost=0&retrans=0&sent_bytes=13090&recv_bytes=2167&delivery_rate=344666&cwnd=12000&unsent_bytes=0&cid=c4fccac3e1591aef&ts=2698&x=1", cfExtPri, cfHdrFlush;dur=0

GET bolly4u.pet/C1AnsfMhSdIxqd6GYCLEiYEhPQD3D2Tzs93bgwxyy2NFjPIx-8OJKCJ7F5HaWX4cm-5RcBkezp57nzfl6Jo_AA==

172.67.165.197

301 Moved Permanently

137 kB

URL User Request GET HTTP/2
bolly4u.pet/C1AnsfMhSdIxqd6GYCLEiYEhPQD3D2Tzs93bgwxyy2NFjPIx-8OJKCJ7F5HaWX4cm-5RcBkezp57nzfl6Jo_AA==
IP
172.67.165.197:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectbolly4u.pet
Fingerprint14:0D:A6:B8:DD:E1:78:24:2E:B1:02:34:08:16:19:4B:96:AE:00:B5
ValidityWed, 04 Dec 2024 04:49:53 GMT - Tue, 04 Mar 2025 04:49:52 GMT

File type

Size
137 kB (136780 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /C1AnsfMhSdIxqd6GYCLEiYEhPQD3D2Tzs93bgwxyy2NFjPIx-8OJKCJ7F5HaWX4cm-5RcBkezp57nzfl6Jo_AA== HTTP/1.1
Host: bolly4u.pet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Sat, 07 Dec 2024 22:27:37 GMT
content-type: text/html; charset=UTF-8
location: https://bolly4u.pet/trending/
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: max-age=14400, must-revalidate
x-litespeed-cache: hit
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nrCPdA5PXI6B4oEm6IwdO2Z8J2Kx234yDcsyeUDQ3W1qiSbxZvqdizZz9G3wCTo8lBfAn0iAYcvbmlDgiGjNTKnfM207Oq8G%2Ft1qXNpfkzNHpnppVqELYHhOzG6FrA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8ee7f1abcfa91c06-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=5634&min_rtt=437&rtt_var=10406&sent=8&recv=11&lost=0&retrans=0&sent_bytes=3270&recv_bytes=1308&delivery_rate=8059369&cwnd=251&unsent_bytes=0&cid=a042166567f2eda3&ts=126&x=0"
X-Firefox-Spdy: h2

GET bolly4u.pet/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=6.0.1

172.67.165.197

200 OK

2.9 kB

URL GET HTTP/3
bolly4u.pet/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=6.0.1
IP
172.67.165.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectbolly4u.pet
Fingerprint14:0D:A6:B8:DD:E1:78:24:2E:B1:02:34:08:16:19:4B:96:AE:00:B5
ValidityWed, 04 Dec 2024 04:49:53 GMT - Tue, 04 Mar 2025 04:49:52 GMT

File type
ASCII text, with very long lines (3172), with no line terminators
Size
2.9 kB (2894 bytes)
Hash
4ff394b4fc55e546c2457e1a49a044fa
0f3fe404c0821a795cb73aa6bb5c062d52af7e68
4858dafdb763b5027e97ca50c5747329e16d4c19ecc575aff7454335e71cba33

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=6.0.1 HTTP/1.1
Host: bolly4u.pet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/trending/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 07 Dec 2024 22:27:39 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Sat, 14 Dec 2024 21:22:41 GMT
last-modified: Wed, 27 Nov 2024 08:57:02 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 3898
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BDq%2FgPL2Pucv2per1PrH0sbKKlJ8aLkWJ4JRGNxoyJ7E9K%2FRh57gAHeFCFNi49sF0vqyMoyDZAATi%2Fdd5Y2nmy%2FLtdXOamhjh%2BQE3TD5Z4TqLccyvCuDey0Mk3r6jg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8ee7f1bd5d2b56be-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=QUIC&rtt=3154&min_rtt=1708&rtt_var=1673&sent=22&recv=12&lost=0&retrans=0&sent_bytes=11328&recv_bytes=2167&delivery_rate=344666&cwnd=12000&unsent_bytes=0&cid=c4fccac3e1591aef&ts=2695&x=1", cfExtPri, cfHdrFlush;dur=0

GET greerogloo.net/5/8436387/?oo=1&js_build=iclick-v1.1021.0&dmn=arvigorothan.com&tt=2&ix=0

139.45.197.245

200 OK

4.0 kB

URL GET HTTP/2
greerogloo.net/5/8436387/?oo=1&js_build=iclick-v1.1021.0&dmn=arvigorothan.com&tt=2&ix=0
IP
139.45.197.245:443
ASN
#9002 RETN Limited

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerLet's Encrypt
Subjectgreerogloo.net
Fingerprint89:CE:B7:E4:4A:48:BF:EF:98:19:E7:8E:47:B2:75:00:47:C9:A0:C1
ValiditySat, 16 Nov 2024 16:41:45 GMT - Fri, 14 Feb 2025 16:41:44 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (3965), with no line terminators
Size
4.0 kB (3961 bytes)
Hash
caf2cdf710485d8563b883f1f3d5c26e
384ca602cfabe481589ed9d437f17c9a571094d1
bfde18912797286eceef21f53c35cbee636ddbc033e0b7a89e47d94fc64a1322

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5/8436387/?oo=1&js_build=iclick-v1.1021.0&dmn=arvigorothan.com&tt=2&ix=0 HTTP/1.1
Host: greerogloo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bolly4u.pet
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 07 Dec 2024 22:27:40 GMT
content-type: application/json
x-trace-id: dc8fd09b4ea6b7c42b57f9b0594c4ad7
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://yonmewon.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: https://bolly4u.pet
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=00812b2ed3904ca5eadd2491c6e56657; expires=Sun, 07 Dec 2025 22:27:40 GMT; path=/; secure; SameSite=None
oaidts=1733610460; expires=Sun, 07 Dec 2025 22:27:40 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

GET myimg.click/images/2024/08/15/Stree-2-2024.jpg

188.114.97.1

200 OK

66 kB

URL GET HTTP/2
myimg.click/images/2024/08/15/Stree-2-2024.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectmyimg.click
FingerprintD0:AF:68:3C:C6:17:92:C5:58:B1:3E:DD:56:84:D5:1B:FA:14:CA:C2
ValiditySat, 09 Nov 2024 06:44:47 GMT - Fri, 07 Feb 2025 06:44:46 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 315x448, components 3
Size
66 kB (66079 bytes)
Hash
1d8158c5c91860222a516355cf408944
05629d5117df377160e7c4c664eeb2f508733be8
e69d4439524e9d2e14728eb57f2ede1fae7003ca8db1b7e27d36ad98f2e388af

HTTP Headers

GET /images/2024/08/15/Stree-2-2024.jpg HTTP/1.1
Host: myimg.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 07 Dec 2024 22:27:39 GMT
content-type: image/jpeg
content-length: 66079
cache-control: public, max-age=604800
expires: Sat, 14 Dec 2024 00:07:40 GMT
last-modified: Thu, 15 Aug 2024 06:32:10 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 80399
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=x6cQNRiHRNzQrzbmJt4v1XP83Jx5JjcfrucO03fuDDJpVK5D9tOwuf141XsrjlhUYIBQTsxOWjfr%2Fg0EQ4CPMN9jrbOLu24dCFJKLsxxIUQbleyUeZY16j5Y7W%2F%2BCQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8ee7f1be6e870b4d-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=621&min_rtt=401&rtt_var=58&sent=153&recv=68&lost=0&retrans=2&sent_bytes=191257&recv_bytes=2450&delivery_rate=54333958&cwnd=151&unsent_bytes=0&cid=8973fbe70754b2dc&ts=142&x=0"
X-Firefox-Spdy: h2

GET bolly4u.pet/wp-includes/js/dist/i18n.min.js?ver=5e580eb46a90c2b997e6

172.67.165.197

200 OK

9.1 kB

URL GET HTTP/3
bolly4u.pet/wp-includes/js/dist/i18n.min.js?ver=5e580eb46a90c2b997e6
IP
172.67.165.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectbolly4u.pet
Fingerprint14:0D:A6:B8:DD:E1:78:24:2E:B1:02:34:08:16:19:4B:96:AE:00:B5
ValidityWed, 04 Dec 2024 04:49:53 GMT - Tue, 04 Mar 2025 04:49:52 GMT

File type
JavaScript source, ASCII text, with very long lines (9425), with no line terminators
Size
9.1 kB (9141 bytes)
Hash
1fb2af886396b544159f85c0c83bd895
e95db4a68dcaf71d20f92f4626ad7818496b3c35
0b05f9ebb0e1023e006019337a5642980ac33491097276b0851b9e8e42ae5daf

HTTP Headers

GET /wp-includes/js/dist/i18n.min.js?ver=5e580eb46a90c2b997e6 HTTP/1.1
Host: bolly4u.pet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/trending/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 07 Dec 2024 22:27:39 GMT
content-type: text/javascript
last-modified: Thu, 15 Feb 2024 16:53:15 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: HIT
age: 3638
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vooq3q9UQ0w%2Bm11xWfGJFzIg4qFhC%2FRsPplSqlT9Zca82OlC9JNL1%2FUYY%2Bqj4kt7bGutIvhsHD9ZS3WVCwm5uJ6Ax%2FQx3lPCUR9MSPY2BsQ3y%2Bb%2FbU%2BUmuNq5JphQA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8ee7f1bd8d9c56be-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=QUIC&rtt=2781&min_rtt=1213&rtt_var=1336&sent=43&recv=20&lost=0&retrans=0&sent_bytes=29735&recv_bytes=3667&delivery_rate=3716234&cwnd=24000&unsent_bytes=0&cid=c4fccac3e1591aef&ts=2718&x=1", cfExtPri, cfHdrFlush;dur=0

POST bolly4u.pet/cdn-cgi/challenge-platform/h/g/jsd/r/8ee7f1aca87f1c06

172.67.165.197

200 OK

0 B

URL POST HTTP/3
bolly4u.pet/cdn-cgi/challenge-platform/h/g/jsd/r/8ee7f1aca87f1c06
IP
172.67.165.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectbolly4u.pet
Fingerprint14:0D:A6:B8:DD:E1:78:24:2E:B1:02:34:08:16:19:4B:96:AE:00:B5
ValidityWed, 04 Dec 2024 04:49:53 GMT - Tue, 04 Mar 2025 04:49:52 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/jsd/r/8ee7f1aca87f1c06 HTTP/1.1
Host: bolly4u.pet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12149
Origin: https://bolly4u.pet
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/trending/
Cookie: xla=s4t; _ga_QNSMP0M04T=GS1.1.1733610460.1.0.1733610460.0.0.0; _ga=GA1.1.910698664.1733610461
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 07 Dec 2024 22:27:40 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
priority: u=3,i=?0
set-cookie: cf_clearance=; Path=/; Expires=Thu, 01-Jan-70 00:00:00 GMT; Domain=.bolly4u.pet; Priority=High; HttpOnly; Secure; SameSite=None
cf_clearance=jUe3hmyxS7P1t_VSnwAzf9r3Y5yK02vWw.e4WuX7pXU-1733610460-1.2.1.1-K4pbBIGq9XkNt5hE5AjynVgnvQ8PoGwstLFKbqg6WhVB2g0sOVoQjZjvxOlzX3ig7nCcTvoqIai3Xwa7yw8_6prrPH3z8Sobqroc5smL6OHw_.i0vIKES8PUbGXP0Q8KjkOutFvkozY17IgTwjWG12yYb6hZcQza2B2EsZZDEieSvcDXzGAqwrr39XEQPPY9auza7I_5b47a7eNZJRYPbqiXZqbTE78vsXQtv27b5VMajvrSnbQRGLBg1N9Vo2ydtl0ScdwdFwFydvzzWhwr_YDG.irFVtowrvl2ZonCZJY6GXtk2Co6ZwZweFUHXUAshkUoGX5Jq5QSEd_aOJrQnw; Path=/; Expires=Sun, 07-Dec-25 22:27:40 GMT; Domain=.bolly4u.pet; Priority=High; HttpOnly; Secure; SameSite=None; Partitioned
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9MnmRpGFJXMXxFMWrgb9Wl1%2F7Y1x%2FI95m%2F5W9aAMerRDZ0BSgTCr4DDI7SQd7YGaejMJ9DM3i2Jfm%2F0r2hZ%2FmfmoQ4kTHxZmUfAA7BTwBnsr%2Fjf%2BDJUXj9cwFQE15g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8ee7f1c3ae9b56be-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5317&min_rtt=1213&rtt_var=4214&sent=108&recv=41&lost=0&retrans=0&sent_bytes=92797&recv_bytes=18072&delivery_rate=418376&cwnd=32700&unsent_bytes=0&cid=c4fccac3e1591aef&ts=3699&x=1", cfExtPri, cfHdrFlush;dur=0

GET bolly4u.pet/wp-includes/js/dist/hooks.min.js?ver=4d63a3d491d11ffd8ac6

172.67.165.197

200 OK

4.8 kB

URL GET HTTP/3
bolly4u.pet/wp-includes/js/dist/hooks.min.js?ver=4d63a3d491d11ffd8ac6
IP
172.67.165.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectbolly4u.pet
Fingerprint14:0D:A6:B8:DD:E1:78:24:2E:B1:02:34:08:16:19:4B:96:AE:00:B5
ValidityWed, 04 Dec 2024 04:49:53 GMT - Tue, 04 Mar 2025 04:49:52 GMT

File type
JavaScript source, ASCII text, with very long lines (4857), with no line terminators
Size
4.8 kB (4776 bytes)
Hash
cfbe9331246b6a20bc00d02c1db2ed47
d8b879cbb8cb0084001505a04a9487ff985c683e
f810169ba5c970d191ecfd6385f2a1f8a95aea42d1bbb1ad039c5e4f70e56bea

HTTP Headers

GET /wp-includes/js/dist/hooks.min.js?ver=4d63a3d491d11ffd8ac6 HTTP/1.1
Host: bolly4u.pet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/trending/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 07 Dec 2024 22:27:39 GMT
content-type: text/javascript
last-modified: Mon, 30 Sep 2024 05:11:31 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: HIT
age: 3638
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=s3PLiSWWujOFs%2FrMrpCM%2B5VtgLiixGD%2FRJsD6yt5w6bgs3RBuU%2FMBrWEHvr6Zpobj45mdqhE1BO7XYBgVPD7dbFrFmblP5D9WBHVvtBdT6fu2qtDPY1oXX9sqP0Jvw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8ee7f1bd8d9656be-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=QUIC&rtt=2781&min_rtt=1213&rtt_var=1336&sent=47&recv=20&lost=0&retrans=0&sent_bytes=34304&recv_bytes=3667&delivery_rate=3716234&cwnd=24000&unsent_bytes=0&cid=c4fccac3e1591aef&ts=2721&x=1", cfExtPri, cfHdrFlush;dur=0

GET bolly4u.pet/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=6.0.1

172.67.165.197

200 OK

12 kB

URL GET HTTP/3
bolly4u.pet/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=6.0.1
IP
172.67.165.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectbolly4u.pet
Fingerprint14:0D:A6:B8:DD:E1:78:24:2E:B1:02:34:08:16:19:4B:96:AE:00:B5
ValidityWed, 04 Dec 2024 04:49:53 GMT - Tue, 04 Mar 2025 04:49:52 GMT

File type
JavaScript source, ASCII text, with very long lines (12512), with no line terminators
Size
12 kB (12512 bytes)
Hash
2e187162915b1d22fd4558fee30f5613
3c76d4209fdbcbd3650655852ad4ed73846e15ff
6d60e3b25e56d35148888b5a08c8eb0ff3806f9698d4f6f54a35eab7d27f4c2f

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=6.0.1 HTTP/1.1
Host: bolly4u.pet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/trending/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 07 Dec 2024 22:27:39 GMT
content-type: text/javascript
last-modified: Wed, 27 Nov 2024 08:57:02 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: HIT
age: 3638
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CeF6lxpFWCn%2Fqkusnh4gXwCkAgZ6O15R6kAC50Kw%2F5J%2BXZO648pjoFr7xygYWMUH%2FDXg2wfBm3%2B9kraEA9JswLnvIetjgzeSDB%2FrA8LxI01WN5E%2BwxsJUN5TbCFWUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8ee7f1bd8da256be-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=QUIC&rtt=2781&min_rtt=1213&rtt_var=1336&sent=55&recv=20&lost=0&retrans=0&sent_bytes=41922&recv_bytes=3667&delivery_rate=3716234&cwnd=24000&unsent_bytes=0&cid=c4fccac3e1591aef&ts=2729&x=1", cfExtPri, cfHdrFlush;dur=0

GET bolly4u.pet/wp-content/themes/bolly4u/script.js?ver=1.3

172.67.165.197

200 OK

114 kB

URL GET HTTP/3
bolly4u.pet/wp-content/themes/bolly4u/script.js?ver=1.3
IP
172.67.165.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectbolly4u.pet
Fingerprint14:0D:A6:B8:DD:E1:78:24:2E:B1:02:34:08:16:19:4B:96:AE:00:B5
ValidityWed, 04 Dec 2024 04:49:53 GMT - Tue, 04 Mar 2025 04:49:52 GMT

File type
JavaScript source, ASCII text, with very long lines (1438)
Size
114 kB (113833 bytes)
Hash
72336ace6d9aa5f6f22c4906e653a9ac
49c7b007e3b1d0c2ebe079d6f3becacdf03020d2
a13b51ccd6073246b60d49cb27030f0f54d0b6a8177b994f0ef683fd16150a02

HTTP Headers

GET /wp-content/themes/bolly4u/script.js?ver=1.3 HTTP/1.1
Host: bolly4u.pet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bolly4u.pet/trending/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 07 Dec 2024 22:27:39 GMT
content-type: text/javascript
last-modified: Wed, 20 Nov 2024 07:19:50 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: HIT
age: 3638
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OG%2B7nQmpHf3jUNEJIFFIZA9FReAIWb%2BHqeEX8vS4VvxjsuURPeQzmL1olwfBecW5EhUUmeGTjuGN4cR3i5oyjxo2uJ%2F2W5CK%2BPr%2F32z%2BLT8j03J2NRVtoEhvGlpPTg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8ee7f1bd9dc256be-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=QUIC&rtt=2781&min_rtt=1213&rtt_var=1336&sent=59&recv=20&lost=0&retrans=0&sent_bytes=46339&recv_bytes=3667&delivery_rate=3716234&cwnd=24000&unsent_bytes=0&cid=c4fccac3e1591aef&ts=2730&x=1", cfExtPri, cfHdrFlush;dur=0

GET bolly4u.pet/cdn-cgi/challenge-platform/scripts/jsd/main.js

172.67.165.197

302 Found

8.7 kB

URL GET HTTP/3
bolly4u.pet/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
172.67.165.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bolly4u.pet/trending/
Certificate
IssuerGoogle Trust Services
Subjectbolly4u.pet
Fingerprint14:0D:A6:B8:DD:E1:78:24:2E:B1:02:34:08:16:19:4B:96:AE:00:B5
ValidityWed, 04 Dec 2024 04:49:53 GMT - Tue, 04 Mar 2025 04:49:52 GMT

File type

Size
8.7 kB (8704 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: bolly4u.pet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: xla=s4t
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 302 Found
date: Sat, 07 Dec 2024 22:27:40 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/f9063374b04d/main.js?
cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=10800, public
access-control-allow-origin: *
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mB4qR12L1mfP%2FQE0BsazVawSY6yh33bZ5Kaz%2FDk1eh7Ws7%2BqZ1lGKNjsfGlY7cRUAFlhAcPcuAFZ0%2BnEmYmJrMaqTWuAVebh%2BvZpCB2y7%2BBVoZzxIhh036W%2BNdvi5Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8ee7f1c17bc756be-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6293&min_rtt=1213&rtt_var=5507&sent=89&recv=24&lost=0&retrans=0&sent_bytes=79277&recv_bytes=4051&delivery_rate=1017767&cwnd=32700&unsent_bytes=0&cid=c4fccac3e1591aef&ts=3360&x=1", cfExtPri, cfHdrFlush;dur=0

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (17)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by