envious-long.com/favicon.ico
188.72.219.35 0 B URL envious-long.com/favicon.ico
IP 188.72.219.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /favicon.ico HTTP/1.1
Host: envious-long.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: uniqCookie=12a4a734238128104a7faa0d793e25ee; kadCCap=172538:1:1714761010; kadACap=401659:1:1713565739; kadCSCap=300232:1:1714774299; kadASCap=546469:1:1714775668; kadRPixJ=bnVsbA==; kadUnP3=CBsQ/4/UsQYaDQi16oQCEAMY3NDUsQYaDQi26oQCEAEYzcPVsQYaDQj2iP8BEBAYwqvRsQYaDQjIuf4BEAIYtITRsQYaDQip+uwBEAEYsOjVsQYaDQjzz50CEAEY9d3UsQYaDQi63rsCEAMYjo7RsQYaDQifgMUCEAEYm8LVsQYaDQixoqgCEAIY1tzRsQYaDQjEwv4BEAEYrcDVsQYaDQjTgagCEAYY/s/RsQYiCggDEBsY/4/UsQYqDAiz+CgQARj13dSxBioMCLiOJRAQGMKr0bEGKgwI7ZglEAEYrcDVsQYqDAjj7CwQARibwtWxBioMCPSWJRACGLSE0bEGKgwIkNEeEAEYsOjVsQYqDAiG2yUQARjNw9WxBioMCIXbJRADGNzQ1LEGKgwIhv4rEAMYjo7RsQYqDAiS1ykQAhjW3NGxBioMCNH/KRAGGP7P0bEG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 03 May 2024 23:48:38 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-content-type-options: nosniff
X-Firefox-Spdy: h2
deywepri.com/l?v=E0lAbaQq
88.85.69.213200 OK 3.9 kB URL User Request POST HTTP/1.1 deywepri.com/l?v=E0lAbaQq
IP 88.85.69.213:443
Certificate IssuerLet's Encrypt
Subjectdeywepri.com
FingerprintDE:4C:75:DA:2A:BF:21:15:4C:FA:CE:71:C3:FA:18:F8:F1:50:D4:3A
ValiditySat, 06 Apr 2024 23:02:46 GMT - Fri, 05 Jul 2024 23:02:45 GMT
File type HTML document, ASCII text, with very long lines (921)
Hash 44611769585312ee5b19dcfd5285d83e
6a1baa67697219fd76f6555444e646920f33236d
30ba0ba49edb9127b975d0502f48e37913b8544439b8bea47f6c2e7a89592ab1
POST /l?v=E0lAbaQq HTTP/1.1
Host: deywepri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 898
Origin: null
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 May 2024 23:48:38 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Content-Type-Options: nosniff
Content-Encoding: br
deywepri.com/views/grecaptcha/css/style.css
88.85.69.213200 OK 599 B URL GET HTTP/1.1 deywepri.com/views/grecaptcha/css/style.css
IP 88.85.69.213:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerLet's Encrypt
Subjectdeywepri.com
FingerprintDE:4C:75:DA:2A:BF:21:15:4C:FA:CE:71:C3:FA:18:F8:F1:50:D4:3A
ValiditySat, 06 Apr 2024 23:02:46 GMT - Fri, 05 Jul 2024 23:02:45 GMT
Hash 27eac474447efeacaa8d51b91912b26d
f630300c7d5c71d2d87472512f4ed4d5fbb5b89a
69790d23d3ec08dbfa6909de36996b4cd3b0154e57b78ccb0e8a281f5e6e72ce
GET /views/grecaptcha/css/style.css HTTP/1.1
Host: deywepri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://deywepri.com/l?v=E0lAbaQq
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 May 2024 23:48:38 GMT
Content-Type: text/css
Last-Modified: Fri, 22 Mar 2024 10:38:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"65fd5f98-67e"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Content-Type-Options: nosniff
Content-Encoding: br
deywepri.com/views/grecaptcha/css/mainstream.css
88.85.69.213200 OK 170 B URL GET HTTP/1.1 deywepri.com/views/grecaptcha/css/mainstream.css
IP 88.85.69.213:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerLet's Encrypt
Subjectdeywepri.com
FingerprintDE:4C:75:DA:2A:BF:21:15:4C:FA:CE:71:C3:FA:18:F8:F1:50:D4:3A
ValiditySat, 06 Apr 2024 23:02:46 GMT - Fri, 05 Jul 2024 23:02:45 GMT
Hash 52b8c08e14b61f9dec8aa0ca6243dea2
1afe3e1ec5ea900ddbbca25fa085f898fdca6856
c19a3b5e10e979b08b2bcb55f68849e96e390c9bfd0b323a64a451bfbb95bf1c
GET /views/grecaptcha/css/mainstream.css HTTP/1.1
Host: deywepri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://deywepri.com/l?v=E0lAbaQq
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 May 2024 23:48:38 GMT
Content-Type: text/css
Last-Modified: Fri, 22 Mar 2024 10:38:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"65fd5f98-2d1"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Content-Type-Options: nosniff
Content-Encoding: br
deywepri.com/views/grecaptcha/js/recaptcha.min.js?v=1714656232868562729
88.85.69.213200 OK 546 B URL GET HTTP/1.1 deywepri.com/views/grecaptcha/js/recaptcha.min.js?v=1714656232868562729
IP 88.85.69.213:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerLet's Encrypt
Subjectdeywepri.com
FingerprintDE:4C:75:DA:2A:BF:21:15:4C:FA:CE:71:C3:FA:18:F8:F1:50:D4:3A
ValiditySat, 06 Apr 2024 23:02:46 GMT - Fri, 05 Jul 2024 23:02:45 GMT
File type JavaScript source, ASCII text, with very long lines (1115)
Hash 26ba95d3318a71a043b60f28d2a4ef62
2a60fcd6c6ffd1a9b1268507db9c8e56a232b4df
e935e010bb697396b415fecbdc8e92dc4a3d7277649dfea0c70631fbe5c67505
GET /views/grecaptcha/js/recaptcha.min.js?v=1714656232868562729 HTTP/1.1
Host: deywepri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://deywepri.com/l?v=E0lAbaQq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 May 2024 23:48:38 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Mar 2024 10:38:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"65fd5f98-4f6"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Content-Type-Options: nosniff
Content-Encoding: br
deywepri.com/views/grecaptcha/js/debugMode.js?v=1714656232868562729
88.85.69.213200 OK 434 B URL GET HTTP/1.1 deywepri.com/views/grecaptcha/js/debugMode.js?v=1714656232868562729
IP 88.85.69.213:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerLet's Encrypt
Subjectdeywepri.com
FingerprintDE:4C:75:DA:2A:BF:21:15:4C:FA:CE:71:C3:FA:18:F8:F1:50:D4:3A
ValiditySat, 06 Apr 2024 23:02:46 GMT - Fri, 05 Jul 2024 23:02:45 GMT
Hash 9e39ff189e016a78bc35c603f434eae3
8082d791393f3f08aaec171491d57b76d6d6d5aa
22f93a906aa144d4a67e38e0ad3eb6d5b7338949a66390864dec7d3131e362ff
GET /views/grecaptcha/js/debugMode.js?v=1714656232868562729 HTTP/1.1
Host: deywepri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://deywepri.com/l?v=E0lAbaQq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 May 2024 23:48:38 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Mar 2024 10:38:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"65fd5f98-553"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Content-Type-Options: nosniff
Content-Encoding: br
deywepri.com/views/grecaptcha/js/botDetect.min.js?v=1714656232868562729
88.85.69.213200 OK 9.0 kB URL GET HTTP/1.1 deywepri.com/views/grecaptcha/js/botDetect.min.js?v=1714656232868562729
IP 88.85.69.213:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerLet's Encrypt
Subjectdeywepri.com
FingerprintDE:4C:75:DA:2A:BF:21:15:4C:FA:CE:71:C3:FA:18:F8:F1:50:D4:3A
ValiditySat, 06 Apr 2024 23:02:46 GMT - Fri, 05 Jul 2024 23:02:45 GMT
File type JavaScript source, ASCII text, with very long lines (29124)
Hash f7687ff36d6654cde4e042385c02d11f
92b2adb164f45ac1dbc5538b9f3ffdccfed8e482
ba9b728987cd01302f5a311e28bf6513dc2b04d43c8b47743e206ccc7608522e
GET /views/grecaptcha/js/botDetect.min.js?v=1714656232868562729 HTTP/1.1
Host: deywepri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://deywepri.com/l?v=E0lAbaQq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 May 2024 23:48:38 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Mar 2024 10:38:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"65fd5f98-7225"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Content-Type-Options: nosniff
Content-Encoding: br
deywepri.com/views/grecaptcha/js/touchEvent.min.js?v=1714656232868562729
88.85.69.213200 OK 5.3 kB URL GET HTTP/1.1 deywepri.com/views/grecaptcha/js/touchEvent.min.js?v=1714656232868562729
IP 88.85.69.213:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerLet's Encrypt
Subjectdeywepri.com
FingerprintDE:4C:75:DA:2A:BF:21:15:4C:FA:CE:71:C3:FA:18:F8:F1:50:D4:3A
ValiditySat, 06 Apr 2024 23:02:46 GMT - Fri, 05 Jul 2024 23:02:45 GMT
File type JavaScript source, ASCII text, with very long lines (20222)
Hash da7c38d2a4e1f5d413629b404cb01836
3be32f1e0c02ae5b2f4401e8a3ee1f67f14822e7
69b3260be19acba9e09cbcd30fc608e0f60fbe7cb097483dc906827e8429e3a0
GET /views/grecaptcha/js/touchEvent.min.js?v=1714656232868562729 HTTP/1.1
Host: deywepri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://deywepri.com/l?v=E0lAbaQq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 May 2024 23:48:38 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Mar 2024 10:38:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"65fd5f98-4f92"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Content-Type-Options: nosniff
Content-Encoding: br
deywepri.com/views/grecaptcha/js/events.min.js?v=1714656232868562729
88.85.69.213200 OK 2.5 kB URL GET HTTP/1.1 deywepri.com/views/grecaptcha/js/events.min.js?v=1714656232868562729
IP 88.85.69.213:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerLet's Encrypt
Subjectdeywepri.com
FingerprintDE:4C:75:DA:2A:BF:21:15:4C:FA:CE:71:C3:FA:18:F8:F1:50:D4:3A
ValiditySat, 06 Apr 2024 23:02:46 GMT - Fri, 05 Jul 2024 23:02:45 GMT
File type JavaScript source, ASCII text, with very long lines (7126), with no line terminators
Hash 4fb85ea7794a57ee813b86db9ff670df
d9ea12cefc454ad893e25fe9282b73b7f493089b
d87e4f84ee00f66b89738f8f7b4566f3008c36ad27fe9cdaa173eac99f37bb61
GET /views/grecaptcha/js/events.min.js?v=1714656232868562729 HTTP/1.1
Host: deywepri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://deywepri.com/l?v=E0lAbaQq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 May 2024 23:48:38 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Mar 2024 10:38:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"65fd5f98-1bd6"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Content-Type-Options: nosniff
Content-Encoding: br
deywepri.com/views/grecaptcha/js/hanalytics.min.js?v=1714656232868562729
88.85.69.213200 OK 3.0 kB URL GET HTTP/1.1 deywepri.com/views/grecaptcha/js/hanalytics.min.js?v=1714656232868562729
IP 88.85.69.213:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerLet's Encrypt
Subjectdeywepri.com
FingerprintDE:4C:75:DA:2A:BF:21:15:4C:FA:CE:71:C3:FA:18:F8:F1:50:D4:3A
ValiditySat, 06 Apr 2024 23:02:46 GMT - Fri, 05 Jul 2024 23:02:45 GMT
File type JavaScript source, ASCII text, with very long lines (8053)
Hash 3c12e7c0ee844149c50f2c547c979c0a
0e257907505db9ce27e9386da79c8db883455ca3
f70d91cf7c7080ac7863b956f3caaf55546f1b1021b70ea3ae9d1627e2f46788
GET /views/grecaptcha/js/hanalytics.min.js?v=1714656232868562729 HTTP/1.1
Host: deywepri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://deywepri.com/l?v=E0lAbaQq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 May 2024 23:48:38 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Mar 2024 10:38:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"65fd5f98-1fa8"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Content-Type-Options: nosniff
Content-Encoding: br
deywepri.com/views/grecaptcha/js/cacheIcon.min.js?v=1714656232868562729
88.85.69.213200 OK 900 B URL GET HTTP/1.1 deywepri.com/views/grecaptcha/js/cacheIcon.min.js?v=1714656232868562729
IP 88.85.69.213:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerLet's Encrypt
Subjectdeywepri.com
FingerprintDE:4C:75:DA:2A:BF:21:15:4C:FA:CE:71:C3:FA:18:F8:F1:50:D4:3A
ValiditySat, 06 Apr 2024 23:02:46 GMT - Fri, 05 Jul 2024 23:02:45 GMT
File type JavaScript source, ASCII text, with very long lines (1999), with no line terminators
Hash 6bc1f7fded5a7e3131bd940ed293ea49
bbd6df8fd579acecfb773d6074abe1d44f4ac46b
eda54e4682f917bf18bf48619ad08dcb5035c26b271a55e55feffcd9a75ec237
GET /views/grecaptcha/js/cacheIcon.min.js?v=1714656232868562729 HTTP/1.1
Host: deywepri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://deywepri.com/l?v=E0lAbaQq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 May 2024 23:48:38 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Mar 2024 10:38:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"65fd5f98-7cf"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Content-Type-Options: nosniff
Content-Encoding: br
deywepri.com/views/grecaptcha/js/checkLogin.min.js?v=1714656232868562729
88.85.69.213200 OK 663 B URL GET HTTP/1.1 deywepri.com/views/grecaptcha/js/checkLogin.min.js?v=1714656232868562729
IP 88.85.69.213:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerLet's Encrypt
Subjectdeywepri.com
FingerprintDE:4C:75:DA:2A:BF:21:15:4C:FA:CE:71:C3:FA:18:F8:F1:50:D4:3A
ValiditySat, 06 Apr 2024 23:02:46 GMT - Fri, 05 Jul 2024 23:02:45 GMT
File type JavaScript source, ASCII text, with very long lines (1804), with no line terminators
Hash 1e3212d9af95966463cfe347669ac693
b14c94dc2c743ba816419275c349ad15f85e906c
f4c922a7f3513aa6574af7930e8884f972f9cfd2670b50a56d861a1328798e0a
GET /views/grecaptcha/js/checkLogin.min.js?v=1714656232868562729 HTTP/1.1
Host: deywepri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://deywepri.com/l?v=E0lAbaQq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 May 2024 23:48:38 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Mar 2024 10:38:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"65fd5f98-70c"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Content-Type-Options: nosniff
Content-Encoding: br
deywepri.com/views/grecaptcha/js/extFpHash.js?v=1714656232868562729
88.85.69.213200 OK 97 kB URL GET HTTP/1.1 deywepri.com/views/grecaptcha/js/extFpHash.js?v=1714656232868562729
IP 88.85.69.213:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerLet's Encrypt
Subjectdeywepri.com
FingerprintDE:4C:75:DA:2A:BF:21:15:4C:FA:CE:71:C3:FA:18:F8:F1:50:D4:3A
ValiditySat, 06 Apr 2024 23:02:46 GMT - Fri, 05 Jul 2024 23:02:45 GMT
File type JavaScript source, ASCII text, with very long lines (65465)
Hash d0ab0c5780d9c77ab54e202c769b1433
c298c6ed6cfb8d35efcbe967344d2684347fd791
970fc826d5ed2e9acdd93772526abb6941c0735c6a76621969f47a1e1e1d0ae1
GET /views/grecaptcha/js/extFpHash.js?v=1714656232868562729 HTTP/1.1
Host: deywepri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://deywepri.com/l?v=E0lAbaQq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 May 2024 23:48:38 GMT
Content-Type: application/javascript
Last-Modified: Fri, 22 Mar 2024 10:38:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"65fd5f98-41f2c"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Content-Type-Options: nosniff
Content-Encoding: br
deywepri.com/views/grecaptcha/img/mainstream/laptop.png
88.85.69.213200 OK 1.2 MB URL GET HTTP/1.1 deywepri.com/views/grecaptcha/img/mainstream/laptop.png
IP 88.85.69.213:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerLet's Encrypt
Subjectdeywepri.com
FingerprintDE:4C:75:DA:2A:BF:21:15:4C:FA:CE:71:C3:FA:18:F8:F1:50:D4:3A
ValiditySat, 06 Apr 2024 23:02:46 GMT - Fri, 05 Jul 2024 23:02:45 GMT
File type PNG image data, 1436 x 1025, 8-bit/color RGBA, non-interlaced
Size 1.2 MB (1192830 bytes)
Hash 64c05ce3df8cc7e9f2d6a828a5de9bb9
193d3891f2d1e8aa3ea0efdad64c0dadc8e2ce3e
940e231d1846ab2e4091fff0840fd4e68fc04742098006d81a6cfe463f236dd5
GET /views/grecaptcha/img/mainstream/laptop.png HTTP/1.1
Host: deywepri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://deywepri.com/views/grecaptcha/css/mainstream.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 May 2024 23:48:38 GMT
Content-Type: image/png
Content-Length: 1192830
Last-Modified: Fri, 22 Mar 2024 10:38:16 GMT
Connection: keep-alive
ETag: "65fd5f98-12337e"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Content-Type-Options: nosniff
Accept-Ranges: bytes
dull-egg.pro/aoGpE./qe_ms9tuuZvU-lxkyPzTAQ_xCNDjEgF5-MHDIQJmKY_WMRNJOZPD-0RzSNTDUY_zWMXjYcZm-cb0cldkeP_TgQh2iNjD-kl5mOnDok_mqcr0sltk-Mvjw0xmyc_0AlBkCMDz-1F6GbH2I5_lKbLmM9N0-cPGQFRzSc_yUZVyWcXm-lZkaPbTcN_jeNfGgNhm-Mjzkkl5mN_moEp2qNrW-QtxuNvTwF_kyYzWAZBl-NDjEgFxGN_zINJhKOLD-QN4OMPGQQ_zSJTnUVVu-aXXYFZCae_VcRd5ecfG-Uh9iMjCkZ_1mbnmolpx-Qrnsltaub_2w5xlyPzT-ABmCdDWE5_pGcHUIJJ5-RLmMVNlOZ_DQ0RwSJTn-VVuWaXXYF_CaebUcZdv-cfmg1hhid_Dk0lwmJnn-Bp0qPrTsA_mucvnwYx9-MzCAZBoCc_zE1FxGYHS-ZJsKcLGMk_9OMPzQIR1-MTiUZVoWa_XYRZJaZbD-1dleNfWgU_5iZjTkllj-ZnWoJpiqY_WsQt3uOvT-Mx3yNzDAM_zCNDjENFh-NH2IEJyKM_jMINwOOPW-YR0SZTiUZ_yWZXWYZZE-bb2c1dhea_Wg4h9i
188.72.219.36200 OK 0 B URL POST HTTP/2 dull-egg.pro/aoGpE./qe_ms9tuuZvU-lxkyPzTAQ_xCNDjEgF5-MHDIQJmKY_WMRNJOZPD-0RzSNTDUY_zWMXjYcZm-cb0cldkeP_TgQh2iNjD-kl5mOnDok_mqcr0sltk-Mvjw0xmyc_0AlBkCMDz-1F6GbH2I5_lKbLmM9N0-cPGQFRzSc_yUZVyWcXm-lZkaPbTcN_jeNfGgNhm-Mjzkkl5mN_moEp2qNrW-QtxuNvTwF_kyYzWAZBl-NDjEgFxGN_zINJhKOLD-QN4OMPGQQ_zSJTnUVVu-aXXYFZCae_VcRd5ecfG-Uh9iMjCkZ_1mbnmolpx-Qrnsltaub_2w5xlyPzT-ABmCdDWE5_pGcHUIJJ5-RLmMVNlOZ_DQ0RwSJTn-VVuWaXXYF_CaebUcZdv-cfmg1hhid_Dk0lwmJnn-Bp0qPrTsA_mucvnwYx9-MzCAZBoCc_zE1FxGYHS-ZJsKcLGMk_9OMPzQIR1-MTiUZVoWa_XYRZJaZbD-1dleNfWgU_5iZjTkllj-ZnWoJpiqY_WsQt3uOvT-Mx3yNzDAM_zCNDjENFh-NH2IEJyKM_jMINwOOPW-YR0SZTiUZ_yWZXWYZZE-bb2c1dhea_Wg4h9i
IP 188.72.219.36:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerLet's Encrypt
Subjectdull-egg.pro
Fingerprint2C:38:E2:A2:7C:32:0F:35:69:9E:5F:4E:16:78:F1:B6:84:34:5C:35
ValiditySun, 14 Apr 2024 03:22:01 GMT - Sat, 13 Jul 2024 03:22:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /aoGpE./qe_ms9tuuZvU-lxkyPzTAQ_xCNDjEgF5-MHDIQJmKY_WMRNJOZPD-0RzSNTDUY_zWMXjYcZm-cb0cldkeP_TgQh2iNjD-kl5mOnDok_mqcr0sltk-Mvjw0xmyc_0AlBkCMDz-1F6GbH2I5_lKbLmM9N0-cPGQFRzSc_yUZVyWcXm-lZkaPbTcN_jeNfGgNhm-Mjzkkl5mN_moEp2qNrW-QtxuNvTwF_kyYzWAZBl-NDjEgFxGN_zINJhKOLD-QN4OMPGQQ_zSJTnUVVu-aXXYFZCae_VcRd5ecfG-Uh9iMjCkZ_1mbnmolpx-Qrnsltaub_2w5xlyPzT-ABmCdDWE5_pGcHUIJJ5-RLmMVNlOZ_DQ0RwSJTn-VVuWaXXYF_CaebUcZdv-cfmg1hhid_Dk0lwmJnn-Bp0qPrTsA_mucvnwYx9-MzCAZBoCc_zE1FxGYHS-ZJsKcLGMk_9OMPzQIR1-MTiUZVoWa_XYRZJaZbD-1dleNfWgU_5iZjTkllj-ZnWoJpiqY_WsQt3uOvT-Mx3yNzDAM_zCNDjENFh-NH2IEJyKM_jMINwOOPW-YR0SZTiUZ_yWZXWYZZE-bb2c1dhea_Wg4h9i HTTP/1.1
Host: dull-egg.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 61
Origin: https://deywepri.com
DNT: 1
Connection: keep-alive
Referer: https://deywepri.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 May 2024 23:48:38 GMT
content-length: 0
expires: Mon, 26 Jul 2011 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-WoW64
access-control-allow-origin: https://deywepri.com
p3p: CP="CUR ADM OUR NOR STA NID"
access-control-allow-credentials: true
vary: Origin
last-modified: Fri, 03 May 2024 23:48:38 GMT
x-content-type-options: nosniff
X-Firefox-Spdy: h2
deywepri.com/favicon.ico
88.85.69.213200 OK 19 kB IP 88.85.69.213:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerLet's Encrypt
Subjectdeywepri.com
FingerprintDE:4C:75:DA:2A:BF:21:15:4C:FA:CE:71:C3:FA:18:F8:F1:50:D4:3A
ValiditySat, 06 Apr 2024 23:02:46 GMT - Fri, 05 Jul 2024 23:02:45 GMT
File type ASCII text, with very long lines (19321), with no line terminators
Hash b8511bc84d69b72d0194c29a3ce52968
9d7935e6aef48e623fdf1432d8847a83c44bf0ae
fbc556740a68a3c5b4dc61c37baa5c74fbb1c9fd4420811b625e557dee86fd53
GET /favicon.ico HTTP/1.1
Host: deywepri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://deywepri.com/l?v=E0lAbaQq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 May 2024 23:48:40 GMT
Content-Type: image/x-icon
Content-Length: 19321
Connection: keep-alive
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Content-Type-Options: nosniff
deywepri.com/bdt
88.85.69.213200 OK 2 B IP 88.85.69.213:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerLet's Encrypt
Subjectdeywepri.com
FingerprintDE:4C:75:DA:2A:BF:21:15:4C:FA:CE:71:C3:FA:18:F8:F1:50:D4:3A
ValiditySat, 06 Apr 2024 23:02:46 GMT - Fri, 05 Jul 2024 23:02:45 GMT
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /bdt HTTP/1.1
Host: deywepri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 2128
Origin: https://deywepri.com
DNT: 1
Connection: keep-alive
Referer: https://deywepri.com/l?v=E0lAbaQq
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 May 2024 23:48:41 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 2
Connection: keep-alive
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Content-Type-Options: nosniff
dull-egg.pro/aoGpE./qe_ms9tuuZvU-lxkyPzTAQ_xCNDjEgF5-MHDIQJmKY_WMRNJOZPD-0RzSNTDUY_zWMXjYcZm-cb0cldkeP_TgQh2iNjD-kl5mOnDok_mqcr0sltk-Mvjw0xmyc_0AlBkCMDz-1F6GbH2I5_lKbLmM9N0-cPGQFRzSc_yUZVyWcXm-lZkaPbTcN_jeNfGgNhm-Mjzkkl5mN_moEp2qNrW-QtxuNvTwF_kyYzWAZBl-NDjEgFxGN_zINJhKOLD-QN4OMPGQQ_zSJTnUVVu-aXXYFZCae_VcRd5ecfG-Uh9iMjCkZ_1mbnmolpx-Qrnsltaub_2w5xlyPzT-ABmCdDWE5_pGcHUIJJ5-RLmMVNlOZ_DQ0RwSJTn-VVuWaXXYF_CaebUcZdv-cfmg1hhid_Dk0lwmJnn-Bp0qPrTsA_mucvnwYx9-MzCAZBoCc_zE1FxGYHS-ZJsKcLGMk_9OMPzQIR1-MTiUZVoWa_XYRZJaZbD-1dleNfWgU_5iZjTkllj-ZnWoJpiqY_WsQt3uOvT-Mx3yNzDAM_zCNDjENFh-NH2IEJyKM_jMINwOOPW-YR0SZTiUZ_yWZXWYZZE-bb2c1dhea_Wg4h9i
188.72.219.36200 OK 0 B URL POST HTTP/2 dull-egg.pro/aoGpE./qe_ms9tuuZvU-lxkyPzTAQ_xCNDjEgF5-MHDIQJmKY_WMRNJOZPD-0RzSNTDUY_zWMXjYcZm-cb0cldkeP_TgQh2iNjD-kl5mOnDok_mqcr0sltk-Mvjw0xmyc_0AlBkCMDz-1F6GbH2I5_lKbLmM9N0-cPGQFRzSc_yUZVyWcXm-lZkaPbTcN_jeNfGgNhm-Mjzkkl5mN_moEp2qNrW-QtxuNvTwF_kyYzWAZBl-NDjEgFxGN_zINJhKOLD-QN4OMPGQQ_zSJTnUVVu-aXXYFZCae_VcRd5ecfG-Uh9iMjCkZ_1mbnmolpx-Qrnsltaub_2w5xlyPzT-ABmCdDWE5_pGcHUIJJ5-RLmMVNlOZ_DQ0RwSJTn-VVuWaXXYF_CaebUcZdv-cfmg1hhid_Dk0lwmJnn-Bp0qPrTsA_mucvnwYx9-MzCAZBoCc_zE1FxGYHS-ZJsKcLGMk_9OMPzQIR1-MTiUZVoWa_XYRZJaZbD-1dleNfWgU_5iZjTkllj-ZnWoJpiqY_WsQt3uOvT-Mx3yNzDAM_zCNDjENFh-NH2IEJyKM_jMINwOOPW-YR0SZTiUZ_yWZXWYZZE-bb2c1dhea_Wg4h9i
IP 188.72.219.36:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerLet's Encrypt
Subjectdull-egg.pro
Fingerprint2C:38:E2:A2:7C:32:0F:35:69:9E:5F:4E:16:78:F1:B6:84:34:5C:35
ValiditySun, 14 Apr 2024 03:22:01 GMT - Sat, 13 Jul 2024 03:22:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /aoGpE./qe_ms9tuuZvU-lxkyPzTAQ_xCNDjEgF5-MHDIQJmKY_WMRNJOZPD-0RzSNTDUY_zWMXjYcZm-cb0cldkeP_TgQh2iNjD-kl5mOnDok_mqcr0sltk-Mvjw0xmyc_0AlBkCMDz-1F6GbH2I5_lKbLmM9N0-cPGQFRzSc_yUZVyWcXm-lZkaPbTcN_jeNfGgNhm-Mjzkkl5mN_moEp2qNrW-QtxuNvTwF_kyYzWAZBl-NDjEgFxGN_zINJhKOLD-QN4OMPGQQ_zSJTnUVVu-aXXYFZCae_VcRd5ecfG-Uh9iMjCkZ_1mbnmolpx-Qrnsltaub_2w5xlyPzT-ABmCdDWE5_pGcHUIJJ5-RLmMVNlOZ_DQ0RwSJTn-VVuWaXXYF_CaebUcZdv-cfmg1hhid_Dk0lwmJnn-Bp0qPrTsA_mucvnwYx9-MzCAZBoCc_zE1FxGYHS-ZJsKcLGMk_9OMPzQIR1-MTiUZVoWa_XYRZJaZbD-1dleNfWgU_5iZjTkllj-ZnWoJpiqY_WsQt3uOvT-Mx3yNzDAM_zCNDjENFh-NH2IEJyKM_jMINwOOPW-YR0SZTiUZ_yWZXWYZZE-bb2c1dhea_Wg4h9i HTTP/1.1
Host: dull-egg.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 6519
Origin: https://deywepri.com
DNT: 1
Connection: keep-alive
Referer: https://deywepri.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 May 2024 23:48:41 GMT
content-length: 0
expires: Mon, 26 Jul 2011 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-WoW64
p3p: CP="CUR ADM OUR NOR STA NID"
access-control-allow-credentials: true
vary: Origin
last-modified: Fri, 03 May 2024 23:48:41 GMT
access-control-allow-origin: https://deywepri.com
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.amazon.com/favicon.ico
3.164.225.59200 OK 18 kB URL GET HTTP/2 www.amazon.com/favicon.ico
IP 3.164.225.59:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerDigiCert Inc
Subjectwww.amazon.com
Fingerprint62:55:EA:53:8D:A8:3F:87:B5:55:C5:54:EE:F6:18:25:C8:72:23:61
ValidityTue, 28 Nov 2023 00:00:00 GMT - Mon, 11 Nov 2024 23:59:59 GMT
File type MS Windows icon resource - 4 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel
Hash ca6619b86c2f6e6068b69ba3aaddb7e4
c44a1bb9d14385334eb851fbb0afb19d961c1ee7
17d02e2db6dbedb95dd449d06868c147ac2c3b5371497bcb9407e75336a99e09
GET /favicon.ico HTTP/1.1
Host: www.amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://deywepri.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/x-icon
content-length: 17542
server: Server
date: Fri, 03 May 2024 23:48:08 GMT
x-amz-rid: Y6042HX5C4GMMK6MY891
accept-ranges: bytes
last-modified: Tue, 21 Sep 2010 17:37:41 GMT
x-content-type-options: nosniff
strict-transport-security: max-age=47474747; includeSubDomains; preload
x-frame-options: SAMEORIGIN
etag: "4486-490c87c5a6340"
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 47cc7d5981f182b935da67eb4606a37e.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN53-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 0ikF4PFFhgxxGa5yWjTFbrHzNKb3TIWH-Ju_05Q0_QCvApW_mYxkxQ==
age: 34
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/yD/r/d4ZIVX-5C-b.ico
31.13.72.12404 Not Found 0 B URL GET HTTP/2 static.xx.fbcdn.net/rsrc.php/yD/r/d4ZIVX-5C-b.ico
IP 31.13.72.12:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerDigiCert Inc
Subject*.facebook.com
FingerprintEA:B7:EA:36:FD:19:2A:6B:AF:26:79:EA:6B:EF:BA:8A:62:15:94:52
ValiditySun, 11 Feb 2024 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rsrc.php/yD/r/d4ZIVX-5C-b.ico HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://deywepri.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
x-fatal-request: static.xx.fbcdn.net
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
timing-allow-origin: *
reporting-endpoints: permissions_policy="https://www.xx.facebook.com/ajax/browser_error_reports/"
report-to: {"max_age":21600,"endpoints":[{"url":"https:\/\/www.xx.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"}
content-security-policy-report-only: default-src data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self';script-src *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src 'unsafe-inline';connect-src *.fbcdn.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';img-src data: blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script';
document-policy: force-load-at-top
permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), private-state-token-issuance=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), shared-storage=(), shared-storage-select-url=(), private-state-token-redemption=(), usb=(), window-management=(), xr-spatial-tracking=();report-to="permissions_policy"
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-xss-protection: 0
content-type: text/html; charset="utf-8"
x-fb-debug: sKH5YGoYbqKXzmwS2vt4R8l2NPQVw74E9SDjYXux9fN0fEwk0dk77tRduhe5v5vwY41Uk30jUjZgN6I3Y3t2MQ==
content-length: 0
proxy-status: http_request_error; e_fb_configversion="AcLLTPNBbp4sjhIPlKcmGovsVtbQTPZJ75GpGxTuyqLyfWZWFMLOqqrED1R8Uw"; e_clientaddr="AcJwcBTdTutoR6p60-ZSDfAYsUuj1VQ1aYz3sT0YfVpkRh-BRlyYtb1RigbCm6cYDW4n_rwhwO-3xDCRGiN-rVC4J3fq9Cu7KBw6b86MrIyWYiPH8A"; e_fb_vipport="AcKTnN0XzmGVybFzb_-wK71juB_EMGiIbElcwPyy_LirHvCqCeWz7ZNZNkHw"; e_upip="AcKrrNmZL4419FLj0-GidQ1yYdkjN9DxdM7DOq19YleKfg-1rj6xf53G8eN1Cq7XNDWYOif5PtBQSAg4R2KgXelpjEymFrgFVQ"; e_fb_requestsequencenumber="AcKIHf6idRUE3KJchAa2XW3ZgZzQKyKus1hGueU60qioPU1zR3NLiDNd4g"; e_fb_hostheader="AcLePst3Clw2wKPxr7KV8iJZ6ikxUmzMlApSif-IlBZ6RzxKN4mcIwukIb_ZJZ8CEQ-bLHEXJZ1PF73jXg"; e_fb_vipaddr="AcIlWdObW-9Ob3z8nHhhIaGsriYW-AsWNYEoNtwfU3gqva2k0Tk2Oqv3Q8kI1eBPaRJ2J_Vu5s6Hd3vn1r0Pz8a6owikz1wZ9w"; e_fb_requesthandler="AcI-mehHnOi8u5Orjjty3Yk7j4BqDXbruen0vB32phXvKDayAAObhuTjk_pgWvarwWYKHZB2LQ8"; e_fb_requesttime="AcKrzTKZNwUsoqLkuNZvqOpzHlvqIvV-XPD_Rbo22-Sfd_br49WeaMrb31A_o-5RXoENbB8bUA"; e_fb_builduser="AcJ3BQUhvqptbatTy3XGgDcKgW_JAUNmFqCmQaD45YlxqzyMuHTHrRRXfeMYiqcUEbo"; e_fb_httpversion="AcKJ-ZsaE8odIG6H4yvTZzjXg_kSJxUOCQgzvReeL8rjJcalGvN9XhrmjMo4"; e_fb_binaryversion="AcLgbAjs6wdR0swuAQ_GKKcGbkPgH7F_MUllMWvUERlxnBfzYSsIj8qtxv1QhyZpgWs7frU3yNAu6lf6nxi-JysnST2APoJgep8"; e_proxy="AcLPgXFezplHu5TBfg2Zo8uZLbL9r9dYM_KME7e5NDHa16hKTY2w7h9FwryuEV-VYC0xH9mNFQauf4SOIEI", http_request_error; e_fb_configversion="AcLPyJz_gR56iup3VYC_XZo53gtaYvqcY43ycyUcpafUeHvnP35UjPh56px6yw"; e_clientaddr="AcISn42H_hGyTfpkJx8sI8bfvVH06J12_DV7t_PCyVCoilPIk97c8Jwv7D5FevAA4lfzeUhZyRtWcrUb"; e_fb_vipport="AcI6QhuFVHAkRFNxR7rGpsgV_3R2MGouQ8Y9v1Joqdn8pSi51AEGTV-YiSb3"; e_fb_requestsequencenumber="AcIlDA1rH1Glef9Ui3rI482dVq2MVpZCnF4S5yl5Mj2MY1TVXvv8h69S7Q"; e_fb_hostheader="AcJpMHS72EVgX8DMiJD8Hmsw0F0P6oX2m0WMGTlCpa_xJje5S2ZUEJ-srJzEokPcBDTCaJmJOW95jFgV3Q"; e_fb_vipaddr="AcImvncNNJlRr1VvEdiueYPvwBEj53lZjlvJu6qFLo8hocUMGPO07KymRaoTBiVfz4WDbwY"; e_fb_requesthandler="AcJ5kh0SfAJKBeUotRlm0m3VXCzTvV6ziqj99ArWkvRcdeMKz0KB9nBE4R6n4RyiZnjNNmQu3T4hFg"; e_fb_requesttime="AcKNlg6keRH0OvKlEnCvsVpKG8cOYUgWjyZGrHJFfOb1w2lVQPhlobUA7wD6oAm8seE9Gny-zw"; e_fb_builduser="AcLT1u19DxoY4k40DlQvlxR0Ktsmu2NFHmvo2SoezaR1HBY0lDwLQME2fRST95yJ-AE"; e_fb_httpversion="AcKW-SJAm_EeU2VUy--DGmd5TUR8V-1NjEsc_wlm7iUBfxI97YbxqqGjXloy"; e_fb_binaryversion="AcJKbwgdBEigjC-YXZHo9s3uKXVZpaLY1f_VaO3fX8qmQzKAf4rw7Ifh4EZ_IE6hVQZx3USPP_RPtbBfhcgfrojnlkv2UVLDiDE"; e_proxy="AcJZi5WahDetVu2DAYgIFHT-lYLgWrN3ASFNQ9tdr9HOP-9hGRG8fcO_Dng6oSUizZdkDHFGaCvobxQ"
date: Fri, 03 May 2024 23:48:42 GMT
x-fb-connection-quality: EXCELLENT; q=0.9, rtt=7, rtx=0, c=13, mss=1380, tbw=3465, tp=-1, tpl=-1, uplat=0, ullat=-1
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
accounts.google.com/ServiceLogin?service=blogger&hl=de&passive=1209600&continue=https://www.blogger.com/favicon.ico
74.125.131.84302 Found 0 B URL GET HTTP/2 accounts.google.com/ServiceLogin?service=blogger&hl=de&passive=1209600&continue=https://www.blogger.com/favicon.ico
IP 74.125.131.84:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint9A:72:A8:C3:56:5C:93:B4:72:C7:5B:1B:60:BB:0F:3E:1E:C4:1B:67
ValidityTue, 16 Apr 2024 04:20:36 GMT - Tue, 09 Jul 2024 04:20:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ServiceLogin?service=blogger&hl=de&passive=1209600&continue=https://www.blogger.com/favicon.ico HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:awmV_sVbgAhfFD0evfu14lj59QrtCw:ZX2KruRlC_hJosS9; Expires=Sun, 03-May-2026 23:48:42 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 03 May 2024 23:48:42 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.blogger.com/favicon.ico&hl=de&passive=1209600&service=blogger&ifkv=AaSxoQzp_-pIL2ZqeRfysHWSSPKJtMZs_vig1EH5naTG71vsLYDyuCt3xWEtAEZiCf8nOzc_6njuXQ
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-vgF_ra825Ek4xekoVSMgHg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: unsafe-none
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
newassets.hcaptcha.com/captcha/v1/50fb34a/static/hcaptcha.html
104.18.124.91 2.2 kB URL newassets.hcaptcha.com/captcha/v1/50fb34a/static/hcaptcha.html
IP 104.18.124.91:0
File type HTML document, ASCII text, with very long lines (1165)
Hash 59836782f9d8b5cebefc67dfe2b0698d
ff4453e7c1bba8633aa11c9c86061b0fbdacb19d
04e0e037618a972453ea1fa2e3fe9e36794968ae9725d2ae853cb06e3761c1af
GET /captcha/v1/50fb34a/static/hcaptcha.html HTTP/1.1
Host: newassets.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://deywepri.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 03 May 2024 23:48:41 GMT
content-type: text/html
cache-control: public, max-age=1209600
alt-svc: h3=":443"; ma=86400
vary: Origin, Accept-Encoding
cf-cache-status: HIT
expires: Fri, 17 May 2024 23:48:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e424b26be656b5-OSL
content-encoding: br
newassets.hcaptcha.com/captcha/v1/50fb34a/hcaptcha.js
104.18.124.91200 OK 109 kB URL GET HTTP/3 newassets.hcaptcha.com/captcha/v1/50fb34a/hcaptcha.js
IP 104.18.124.91:443
Requested by https://newassets.hcaptcha.com/captcha/v1/50fb34a/static/hcaptcha.html#frame=checkbox&id=0kxj10657yh&host=deywepri.com&sentry=true&reportapi=https%3A%2F%2Faccounts.hcaptcha.com&recaptchacompat=true&custom=false&hl=en&tplinks=on&pstissuer=https%3A%2F%2Fpst-issuer.hcaptcha.com&sitekey=35afe8c0-9ebe-460b-b981-2dd69519f5c8&theme=light&origin=https%3A%2F%2Fdeywepri.com
Certificate IssuerLet's Encrypt
Subjecthcaptcha.com
Fingerprint8F:BD:51:60:5C:FC:EA:F0:74:47:AB:AC:1B:84:1A:7E:3C:68:A7:E5
ValidityFri, 15 Mar 2024 00:09:38 GMT - Thu, 13 Jun 2024 00:09:37 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (41625)
Size 109 kB (109154 bytes)
Hash c6438f98ac4acd11054d196bf44310de
00a348466d30d26c486e48d464a2432dfcc28b69
1c7ee73f66b781ba78bdfd7189fc368805cb5e642ad5f095b505a206c5a19ba5
GET /captcha/v1/50fb34a/hcaptcha.js HTTP/1.1
Host: newassets.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newassets.hcaptcha.com/captcha/v1/50fb34a/static/hcaptcha.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 03 May 2024 23:48:42 GMT
content-type: application/javascript
etag: W/"43a836cde2f57b4747b92444069ecfc9"
cache-control: public, max-age=1209600
alt-svc: h3=":443"; ma=86400
vary: Origin, Accept-Encoding
cf-cache-status: HIT
expires: Fri, 17 May 2024 23:48:42 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e424b32c4256b5-OSL
content-encoding: br
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
74.125.131.84302 Found 0 B URL GET HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
IP 74.125.131.84:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint9A:72:A8:C3:56:5C:93:B4:72:C7:5B:1B:60:BB:0F:3E:1E:C4:1B:67
ValidityTue, 16 Apr 2024 04:20:36 GMT - Tue, 09 Jul 2024 04:20:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:1LQM6B8JZ9TXZw3BRUWoPrYwAMLCgw:leS2UfWAKON1kBhj; Expires=Sun, 03-May-2026 23:48:42 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 03 May 2024 23:48:42 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AaSxoQznWaTJ2hhcHjP5e0Ms6XVPDtabdCPP7DCZPNzEau48OWLU9dvtOV7mFrzjD9tWf5F59qQUjg
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-kcZAngl3iIcYCwdw8jfRHw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: unsafe-none
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mail.yandex.ru/?retpath=https://mail.yandex.ru/favicon.ico?666
77.88.21.37 60 B URL GET mail.yandex.ru/?retpath=https://mail.yandex.ru/favicon.ico?666
IP 77.88.21.37:0
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerGlobalSign nv-sa
Subjectmail.yandex.ru
Fingerprint9F:BB:D2:D1:C8:B0:07:2D:1C:25:B9:DD:C2:EF:A8:AE:9F:A3:4E:9A
ValidityMon, 16 Oct 2023 07:59:00 GMT - Fri, 17 May 2024 07:59:00 GMT
File type ASCII text, with no line terminators
Hash 3ce3efffbe76c9e8938ee4068be0887e
c87dbc227147babc95d061c8acdefa75d275bed4
b287f90a45063299afd73544f5f78c33842fb8d230223a822df96c29300dbe8f
GET /?retpath=https://mail.yandex.ru/favicon.ico?666 HTTP/1.1
Host: mail.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 03 May 2024 23:48:42 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 60
Connection: keep-alive
Set-Cookie: yandexuid=1842031661714780122; Domain=.yandex.ru; Path=/; Expires=Wed, 03 May 2034 23:48:42 GMT
Location: https://360.yandex.ru/mail
Vary: Accept
NEL: {"report_to": "network-errors", "max_age": 604800, "success_fraction": 0.005, "failure_fraction": 0.5}
Report-To: {"group": "network-errors", "max_age": 604800, "endpoints": [{"url": "https://dr.yandex.net/ya360/nel", "priority": 1}, {"url": "https://dr2.yandex.net/ya360/nel", "priority": 2}]}
x-dns-prefetch-control: off
Cache-Control: private,no-cache,no-store,must-revalidate,max-age=0
X-Request-Id: 7d7398ad54d259cd53c454b402fc8020
Strict-Transport-Security: max-age=315360000
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
dull-egg.pro/YWm_RY0ZP.3apbv-bdmeVfJgZ_Di0j0kMlT-Yn4oOpTqA_0sJtmuFvk-SxWyQz9AM_zCQD2EMFz-IH3IJJnKN_JMZNDO0P0-NRjSQT5UO_TWgX5YJZn-NbJcZdDeI_9gJhniNjJ-ZlDmMn9oe_mq9rusZtW-5vvwdxHyB_hAcB3CMDm-cFnGJHpIZ_DK0LzMYNz-RPjQZRjSM_5UOVTWZXh-NZjaVbkcM_TeUfxgZhG-FjmkZlTmY_4oMpTqcrz-YtTugv0wO_DyBzkAMBy-ZD1EbFmGl_xIQJnKlLU-eNXOBPlQP_TSATmUdVW-5XpYcZUaJ_5cWdme9fu-ZhTi0jwkJ_nmVnuoapX-FrCsetUuZ_lwZxWyQz9-MBCCZD1Eb_mGlHxIQJn-lLGMbN3OJ_tQYRXSQT9-MVCWZXwYd_Da0bwcJdn-Jf2gPhTiA_mkalHmMn9-cpWqErmsb_HuBvpwPxT-MzyANBTCI_mEaFGGlH0-SJWKQL9MZ_TOVPlQORW-UT5UYV2WV_iYYZmaFbk-NdzekfzgN_ziQjzkMlz-YnzoYpTqd_hsMtjuIvy-MxDylzmAN_GCYDmEcFm-VHmIRJGK9_tMYNWOlPu-PRQS
188.72.219.36200 OK 0 B URL POST HTTP/2 dull-egg.pro/YWm_RY0ZP.3apbv-bdmeVfJgZ_Di0j0kMlT-Yn4oOpTqA_0sJtmuFvk-SxWyQz9AM_zCQD2EMFz-IH3IJJnKN_JMZNDO0P0-NRjSQT5UO_TWgX5YJZn-NbJcZdDeI_9gJhniNjJ-ZlDmMn9oe_mq9rusZtW-5vvwdxHyB_hAcB3CMDm-cFnGJHpIZ_DK0LzMYNz-RPjQZRjSM_5UOVTWZXh-NZjaVbkcM_TeUfxgZhG-FjmkZlTmY_4oMpTqcrz-YtTugv0wO_DyBzkAMBy-ZD1EbFmGl_xIQJnKlLU-eNXOBPlQP_TSATmUdVW-5XpYcZUaJ_5cWdme9fu-ZhTi0jwkJ_nmVnuoapX-FrCsetUuZ_lwZxWyQz9-MBCCZD1Eb_mGlHxIQJn-lLGMbN3OJ_tQYRXSQT9-MVCWZXwYd_Da0bwcJdn-Jf2gPhTiA_mkalHmMn9-cpWqErmsb_HuBvpwPxT-MzyANBTCI_mEaFGGlH0-SJWKQL9MZ_TOVPlQORW-UT5UYV2WV_iYYZmaFbk-NdzekfzgN_ziQjzkMlz-YnzoYpTqd_hsMtjuIvy-MxDylzmAN_GCYDmEcFm-VHmIRJGK9_tMYNWOlPu-PRQS
IP 188.72.219.36:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerLet's Encrypt
Subjectdull-egg.pro
Fingerprint2C:38:E2:A2:7C:32:0F:35:69:9E:5F:4E:16:78:F1:B6:84:34:5C:35
ValiditySun, 14 Apr 2024 03:22:01 GMT - Sat, 13 Jul 2024 03:22:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /YWm_RY0ZP.3apbv-bdmeVfJgZ_Di0j0kMlT-Yn4oOpTqA_0sJtmuFvk-SxWyQz9AM_zCQD2EMFz-IH3IJJnKN_JMZNDO0P0-NRjSQT5UO_TWgX5YJZn-NbJcZdDeI_9gJhniNjJ-ZlDmMn9oe_mq9rusZtW-5vvwdxHyB_hAcB3CMDm-cFnGJHpIZ_DK0LzMYNz-RPjQZRjSM_5UOVTWZXh-NZjaVbkcM_TeUfxgZhG-FjmkZlTmY_4oMpTqcrz-YtTugv0wO_DyBzkAMBy-ZD1EbFmGl_xIQJnKlLU-eNXOBPlQP_TSATmUdVW-5XpYcZUaJ_5cWdme9fu-ZhTi0jwkJ_nmVnuoapX-FrCsetUuZ_lwZxWyQz9-MBCCZD1Eb_mGlHxIQJn-lLGMbN3OJ_tQYRXSQT9-MVCWZXwYd_Da0bwcJdn-Jf2gPhTiA_mkalHmMn9-cpWqErmsb_HuBvpwPxT-MzyANBTCI_mEaFGGlH0-SJWKQL9MZ_TOVPlQORW-UT5UYV2WV_iYYZmaFbk-NdzekfzgN_ziQjzkMlz-YnzoYpTqd_hsMtjuIvy-MxDylzmAN_GCYDmEcFm-VHmIRJGK9_tMYNWOlPu-PRQS HTTP/1.1
Host: dull-egg.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1431
Origin: https://deywepri.com
DNT: 1
Connection: keep-alive
Referer: https://deywepri.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 May 2024 23:48:42 GMT
content-length: 0
expires: Mon, 26 Jul 2011 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-WoW64
access-control-allow-origin: https://deywepri.com
p3p: CP="CUR ADM OUR NOR STA NID"
access-control-allow-credentials: true
vary: Origin
last-modified: Fri, 03 May 2024 23:48:42 GMT
x-content-type-options: nosniff
X-Firefox-Spdy: h2
accounts.google.com/InteractiveLogin?continue=https://www.blogger.com/favicon.ico&hl=de&passive=1209600&service=blogger&ifkv=AaSxoQzp_-pIL2ZqeRfysHWSSPKJtMZs_vig1EH5naTG71vsLYDyuCt3xWEtAEZiCf8nOzc_6njuXQ
74.125.131.84302 Found 425 B URL GET HTTP/2 accounts.google.com/InteractiveLogin?continue=https://www.blogger.com/favicon.ico&hl=de&passive=1209600&service=blogger&ifkv=AaSxoQzp_-pIL2ZqeRfysHWSSPKJtMZs_vig1EH5naTG71vsLYDyuCt3xWEtAEZiCf8nOzc_6njuXQ
IP 74.125.131.84:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint9A:72:A8:C3:56:5C:93:B4:72:C7:5B:1B:60:BB:0F:3E:1E:C4:1B:67
ValidityTue, 16 Apr 2024 04:20:36 GMT - Tue, 09 Jul 2024 04:20:35 GMT
File type HTML document, ASCII text, with very long lines (398)
Hash 81526e975b52bdd3900a9e0afc05cae4
03b5261faabd603cec2a81caf565db28eaba8bd8
2d7b3466d7516f59bd318b100eaff7866215b51de875b9f5cf81507ee9b3e1fb
GET /InteractiveLogin?continue=https://www.blogger.com/favicon.ico&hl=de&passive=1209600&service=blogger&ifkv=AaSxoQzp_-pIL2ZqeRfysHWSSPKJtMZs_vig1EH5naTG71vsLYDyuCt3xWEtAEZiCf8nOzc_6njuXQ HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:aUYprlbwQ26HCrlpDT2EzSjkSt7B2Q:XfvGN3fOZ38NBG_o;Path=/;Expires=Sun, 03-May-2026 23:48:42 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 03 May 2024 23:48:42 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.blogger.com%2Ffavicon.ico&hl=de&ifkv=AaSxoQw7tEk07Ye5Lw9uACv7dMJD4b_FP1DF_UfrddlOYa7_hJHmCPvLc4TdPgD1kW95c3LfasErDg&passive=1209600&service=blogger&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1309158148%3A1714780122530464&theme=mn&ddm=0
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-security-policy: script-src 'nonce-uhBXn9Uxhsjm9PSk0wprdQ' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 425
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AaSxoQxL0VEhoNTtm3WZ6Hd6Uz8kiBiNYG0Aj7hxKaYajybkNo5GQR2icZ94ObOUXlsl99owM9r3cg
74.125.131.84302 Found 427 B URL GET HTTP/2 accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AaSxoQxL0VEhoNTtm3WZ6Hd6Uz8kiBiNYG0Aj7hxKaYajybkNo5GQR2icZ94ObOUXlsl99owM9r3cg
IP 74.125.131.84:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint9A:72:A8:C3:56:5C:93:B4:72:C7:5B:1B:60:BB:0F:3E:1E:C4:1B:67
ValidityTue, 16 Apr 2024 04:20:36 GMT - Tue, 09 Jul 2024 04:20:35 GMT
File type HTML document, ASCII text, with very long lines (402)
Hash b157088134954eb51131a507540ad673
497f0db776c35e117ec287fbfdb35e00d75f2128
4e3d236cfde4e49934759a2fbfb53070ec990d27091baa06f1911198f585a980
GET /InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AaSxoQxL0VEhoNTtm3WZ6Hd6Uz8kiBiNYG0Aj7hxKaYajybkNo5GQR2icZ94ObOUXlsl99owM9r3cg HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:VvOVt-nmhgAsiY4H3A00X0MYXNtxdQ:fcGDcNyOXFKyNE_6;Path=/;Expires=Sun, 03-May-2026 23:48:42 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 03 May 2024 23:48:42 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQxYFZwg8qD1WmKL7X0mJKOfMYfjmw_wG5TgV4paDdJGbv1WqWanR7SkQVSkLm4o73NdZND48g&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S134605515%3A1714780122535898&theme=mn&ddm=0
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-security-policy: script-src 'nonce-1UeAqXbz89r5D7f6oCsmnA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 427
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AaSxoQznWaTJ2hhcHjP5e0Ms6XVPDtabdCPP7DCZPNzEau48OWLU9dvtOV7mFrzjD9tWf5F59qQUjg
74.125.131.84302 Found 430 B URL GET HTTP/3 accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AaSxoQznWaTJ2hhcHjP5e0Ms6XVPDtabdCPP7DCZPNzEau48OWLU9dvtOV7mFrzjD9tWf5F59qQUjg
IP 74.125.131.84:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File type HTML document, ASCII text, with very long lines (407)
Hash 6a53fc2dc25b6090b9d69826185eaad0
bfbca54e90d232cdae9e4d39b766301d0bc95629
a6dbf4cd11b71e0e3aad1e2db65aaa072c3d3e63e922e5f7fcfc650018b1aaa8
GET /InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AaSxoQznWaTJ2hhcHjP5e0Ms6XVPDtabdCPP7DCZPNzEau48OWLU9dvtOV7mFrzjD9tWf5F59qQUjg HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:C9fsaCjsKktCajrVbYP6Z8OqxeIdeA:h0dWsQc1OPhn-O7V;Path=/;Expires=Sun, 03-May-2026 23:48:42 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 03 May 2024 23:48:42 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQxlcPONYeRFr7459_PDurlp_e85pdbADHHfKcxjK9xwcXFjrotjKQxKk4DXpv3PywHZD8zyGA&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-250757086%3A1714780122548216&theme=mn&ddm=0
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-security-policy: script-src 'nonce-y-yVhuBUWOqsS6KLIxj6Ow' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 430
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
360.yandex.ru/mail
87.250.250.16 40 B IP 87.250.250.16:0
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerGlobalSign nv-sa
Subject360.yandex.ru
Fingerprint5C:38:91:03:85:A4:6A:16:22:07:A0:87:6E:9F:0E:69:B6:41:DF:C0
ValidityFri, 26 Apr 2024 13:55:42 GMT - Tue, 26 Nov 2024 13:55:42 GMT
File type ASCII text, with no line terminators
Hash e5c431fe834b596bb79ac5cac9ade0b3
530bb7036f70dcf9da12d12f3b33eef5597b4c91
a269514d773dc4dc17f124145fe88233f069ba836ca53da28bf2489b1a8c5d3a
GET /mail HTTP/1.1
Host: 360.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Content-Length: 40
Content-Type: text/plain; charset=utf-8
Date: Fri, 03 May 2024 23:48:42 GMT
Location: /mail/
Set-Cookie: _yasc=YfPJkPJE8Vd8pv07Ym6GZvhQ595B2gTg9eN8mki+cg9fAZMAmG7KCD/yfQN/3ETK; domain=.yandex.ru; path=/; expires=Mon, 01 May 2034 23:48:42 GMT; secure
i=tkRGPdjCLVaOuD2IbJj0xIrHu3P7mJshxXASnmRkMdv+8zmTppHubBxpMCQszt/SrIRQ4aaREgwVdtZhcTrn16BLFqM=; Expires=Sun, 03-May-2026 23:48:42 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=2405013161714780122; Expires=Sun, 03-May-2026 23:48:42 GMT; Domain=.yandex.ru; Path=/; Secure; SameSite=None
Vary: Accept
newassets.hcaptcha.com/c/f922a41/hsw.js
104.18.124.91200 OK 203 kB URL GET HTTP/3 newassets.hcaptcha.com/c/f922a41/hsw.js
IP 104.18.124.91:443
Requested by https://newassets.hcaptcha.com/captcha/v1/50fb34a/static/hcaptcha.html#frame=challenge&id=0kxj10657yh&host=deywepri.com&sentry=true&reportapi=https%3A%2F%2Faccounts.hcaptcha.com&recaptchacompat=true&custom=false&hl=en&tplinks=on&pstissuer=https%3A%2F%2Fpst-issuer.hcaptcha.com&sitekey=35afe8c0-9ebe-460b-b981-2dd69519f5c8&theme=light&origin=https%3A%2F%2Fdeywepri.com
Certificate IssuerLet's Encrypt
Subjecthcaptcha.com
Fingerprint8F:BD:51:60:5C:FC:EA:F0:74:47:AB:AC:1B:84:1A:7E:3C:68:A7:E5
ValidityFri, 15 Mar 2024 00:09:38 GMT - Thu, 13 Jun 2024 00:09:37 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Size 203 kB (203188 bytes)
Hash a015c3f04def6c02f6d3a815ff97f100
2322366db22def41a31f2dae0a2133ad75e6d1ac
42d9a4011ac36ae483e8e3cb4bb2b3829b96bf366bbc1c0e2ab40d4d7deb9240
GET /c/f922a41/hsw.js HTTP/1.1
Host: newassets.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newassets.hcaptcha.com/captcha/v1/50fb34a/static/hcaptcha.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 03 May 2024 23:48:42 GMT
content-type: application/javascript
etag: W/"a015c3f04def6c02f6d3a815ff97f100"
cache-control: public, max-age=3024000
alt-svc: h3=":443"; ma=86400
vary: Origin, Accept-Encoding
cf-cache-status: HIT
expires: Fri, 07 Jun 2024 23:48:42 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e424b64dfe56b5-OSL
content-encoding: br
www.baidu.com/favicon.ico
103.235.46.40 2.0 kB URL GET www.baidu.com/favicon.ico
IP 103.235.46.40:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type MS Windows icon resource - 1 icon, 64x64, 32 bits/pixel
Hash 717b138033a41361b32b60fc5062ab2a
af9841b6f0923f890f41feec52c94a0cd68f01d8
c70088079fe9441a726c66ce0e73ae38315ec80051d3dd542c41b82fa0a1993a
GET /favicon.ico HTTP/1.1
Host: www.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://deywepri.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 1966
Content-Type: image/x-icon
Date: Fri, 03 May 2024 23:48:43 GMT
Etag: "423e-5bd257db4e500"
Last-Modified: Wed, 10 Mar 2021 02:33:24 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: Apache
Set-Cookie: BAIDUID=24E2BDDC96D26DF79C290E3DF10D38FB:FG=1; expires=Sat, 03-May-25 23:48:43 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
Vary: Accept-Encoding,User-Agent
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQxYFZwg8qD1WmKL7X0mJKOfMYfjmw_wG5TgV4paDdJGbv1WqWanR7SkQVSkLm4o73NdZND48g&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S134605515%3A1714780122535898&theme=mn&ddm=0
74.125.131.84403 Forbidden 41 kB URL GET HTTP/3 accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQxYFZwg8qD1WmKL7X0mJKOfMYfjmw_wG5TgV4paDdJGbv1WqWanR7SkQVSkLm4o73NdZND48g&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S134605515%3A1714780122535898&theme=mn&ddm=0
IP 74.125.131.84:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (18348)
Hash 49efdc6b1d70dbb5baa5dde34b9c3b30
de0df19304cff9dbe4f4220a4d3b0a9180b18b03
d7b433fdad4d56335df1af76effc1d9864a621a2399c512ac8c9458adbc07496
GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQxYFZwg8qD1WmKL7X0mJKOfMYfjmw_wG5TgV4paDdJGbv1WqWanR7SkQVSkLm4o73NdZND48g&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S134605515%3A1714780122535898&theme=mn&ddm=0 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 03 May 2024 23:48:42 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-yXoV2GEW2FDUXAbfWIru-A' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
passport.baidu.com//v2/?login&redirect_to=https://www.baidu.com/favicon.ico
103.235.46.9301 Moved Permanently 184 B URL GET HTTP/1.1 passport.baidu.com//v2/?login&redirect_to=https://www.baidu.com/favicon.ico
IP 103.235.46.9:443
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash 2b7e31ced8db56cadcc7127bfabe57c1
5b4be340df4fe663cafd5cada2945c743e711f36
66448fc8a8e49044e7619323442c4e74392249928f5f5ef0853e62b9ffe9fb82
GET //v2/?login&redirect_to=https://www.baidu.com/favicon.ico HTTP/1.1
Host: passport.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Connection: keep-alive
Content-Length: 184
Content-Type: text/html
Date: Fri, 03 May 2024 23:48:43 GMT
Location: https://passport.baidu.com/v2/?login&fr=old&login&redirect_to=https://www.baidu.com/favicon.ico
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: BWS
Set-Cookie: BAIDUID=BEB392E7C49F6715ED7BC1F79A3FE735:FG=1; expires=Sat, 03-May-25 23:48:43 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
Strict-Transport-Security: max-age=31536000
Tracecode: 41781006940429699338050407
dull-egg.pro/aoGpE./qe_ms9tuuZvU-lxkyPzTAQ_xCNDjEgF5-MHDIQJmKY_WMRNJOZPD-0RzSNTDUY_zWMXjYcZm-cb0cldkeP_TgQh2iNjD-kl5mOnDok_mqcr0sltk-Mvjw0xmyc_0AlBkCMDz-1F6GbH2I5_lKbLmM9N0-cPGQFRzSc_yUZVyWcXm-lZkaPbTcN_jeNfGgNhm-Mjzkkl5mN_moEp2qNrW-QtxuNvTwF_kyYzWAZBl-NDjEgFxGN_zINJhKOLD-QN4OMPGQQ_zSJTnUVVu-aXXYFZCae_VcRd5ecfG-Uh9iMjCkZ_1mbnmolpx-Qrnsltaub_2w5xlyPzT-ABmCdDWE5_pGcHUIJJ5-RLmMVNlOZ_DQ0RwSJTn-VVuWaXXYF_CaebUcZdv-cfmg1hhid_Dk0lwmJnn-Bp0qPrTsA_mucvnwYx9-MzCAZBoCc_zE1FxGYHS-ZJsKcLGMk_9OMPzQIR1-MTiUZVoWa_XYRZJaZbD-1dleNfWgU_5iZjTkllj-ZnWoJpiqY_WsQt3uOvT-Mx3yNzDAM_zCNDjENFh-NH2IEJyKM_jMINwOOPW-YR0SZTiUZ_yWZXWYZZE-bb2c1dhea_Wg4h9i
188.72.219.36200 OK 0 B URL POST HTTP/2 dull-egg.pro/aoGpE./qe_ms9tuuZvU-lxkyPzTAQ_xCNDjEgF5-MHDIQJmKY_WMRNJOZPD-0RzSNTDUY_zWMXjYcZm-cb0cldkeP_TgQh2iNjD-kl5mOnDok_mqcr0sltk-Mvjw0xmyc_0AlBkCMDz-1F6GbH2I5_lKbLmM9N0-cPGQFRzSc_yUZVyWcXm-lZkaPbTcN_jeNfGgNhm-Mjzkkl5mN_moEp2qNrW-QtxuNvTwF_kyYzWAZBl-NDjEgFxGN_zINJhKOLD-QN4OMPGQQ_zSJTnUVVu-aXXYFZCae_VcRd5ecfG-Uh9iMjCkZ_1mbnmolpx-Qrnsltaub_2w5xlyPzT-ABmCdDWE5_pGcHUIJJ5-RLmMVNlOZ_DQ0RwSJTn-VVuWaXXYF_CaebUcZdv-cfmg1hhid_Dk0lwmJnn-Bp0qPrTsA_mucvnwYx9-MzCAZBoCc_zE1FxGYHS-ZJsKcLGMk_9OMPzQIR1-MTiUZVoWa_XYRZJaZbD-1dleNfWgU_5iZjTkllj-ZnWoJpiqY_WsQt3uOvT-Mx3yNzDAM_zCNDjENFh-NH2IEJyKM_jMINwOOPW-YR0SZTiUZ_yWZXWYZZE-bb2c1dhea_Wg4h9i
IP 188.72.219.36:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerLet's Encrypt
Subjectdull-egg.pro
Fingerprint2C:38:E2:A2:7C:32:0F:35:69:9E:5F:4E:16:78:F1:B6:84:34:5C:35
ValiditySun, 14 Apr 2024 03:22:01 GMT - Sat, 13 Jul 2024 03:22:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /aoGpE./qe_ms9tuuZvU-lxkyPzTAQ_xCNDjEgF5-MHDIQJmKY_WMRNJOZPD-0RzSNTDUY_zWMXjYcZm-cb0cldkeP_TgQh2iNjD-kl5mOnDok_mqcr0sltk-Mvjw0xmyc_0AlBkCMDz-1F6GbH2I5_lKbLmM9N0-cPGQFRzSc_yUZVyWcXm-lZkaPbTcN_jeNfGgNhm-Mjzkkl5mN_moEp2qNrW-QtxuNvTwF_kyYzWAZBl-NDjEgFxGN_zINJhKOLD-QN4OMPGQQ_zSJTnUVVu-aXXYFZCae_VcRd5ecfG-Uh9iMjCkZ_1mbnmolpx-Qrnsltaub_2w5xlyPzT-ABmCdDWE5_pGcHUIJJ5-RLmMVNlOZ_DQ0RwSJTn-VVuWaXXYF_CaebUcZdv-cfmg1hhid_Dk0lwmJnn-Bp0qPrTsA_mucvnwYx9-MzCAZBoCc_zE1FxGYHS-ZJsKcLGMk_9OMPzQIR1-MTiUZVoWa_XYRZJaZbD-1dleNfWgU_5iZjTkllj-ZnWoJpiqY_WsQt3uOvT-Mx3yNzDAM_zCNDjENFh-NH2IEJyKM_jMINwOOPW-YR0SZTiUZ_yWZXWYZZE-bb2c1dhea_Wg4h9i HTTP/1.1
Host: dull-egg.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 110
Origin: https://deywepri.com
DNT: 1
Connection: keep-alive
Referer: https://deywepri.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 May 2024 23:48:43 GMT
content-length: 0
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-WoW64
expires: Mon, 26 Jul 2011 05:00:00 GMT
access-control-allow-credentials: true
vary: Origin
last-modified: Fri, 03 May 2024 23:48:43 GMT
access-control-allow-origin: https://deywepri.com
p3p: CP="CUR ADM OUR NOR STA NID"
x-content-type-options: nosniff
X-Firefox-Spdy: h2
passport.baidu.com/v2/?login&fr=old&login&redirect_to=https://www.baidu.com/favicon.ico
103.235.46.9200 OK 6.3 kB URL GET HTTP/1.1 passport.baidu.com/v2/?login&fr=old&login&redirect_to=https://www.baidu.com/favicon.ico
IP 103.235.46.9:443
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (1336)
Hash b4f6197e758bc57d6b2af2af28761b0f
b3bf61d4aed9faf7c76b5f16fc54bd67a1d12514
38c7aa03a5b9a53fa0f28bbdd786d333f5058955cbe032dbfdf1da204fd1af11
GET /v2/?login&fr=old&login&redirect_to=https://www.baidu.com/favicon.ico HTTP/1.1
Host: passport.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Trace-ID
Connection: keep-alive
Content-Security-Policy-Report-Only: object-src 'none'; script-src 'self' 'unsafe-inline' 'unsafe-eval' 'report-sample' wappass.baidu.com:* passport.baidu.com:* wappass.bdimg.com:* passport.bdimg.com:* ppui-static-wap.cdn.bcebos.com:* ppui-static-pc.cdn.bcebos.com:* hm.baidu.com:* fe.bdimg.com:* msg.baidu.com:* pdc.baidu.com:* img.baidu.com:* openapi.baidu.com:* res.wx.qq.com:* qqq.gtimg.cn:* s.bdstatic.com:* ufosdk.baidu.com:* qapm.baidu.com:* libs.baidu.com:* ext.baidu.com:* apps.baidu.com:* s3.pstatp.com:* tb2.bdstatic.com:* b.bdstatic.com:* msg.baidu.com:* www.baidu.com:* po.srf.baidu.com:* pan.baidu.com:* play.baidu.com:* tb1.bdstatic.com:* dup.baidustatic.com:* static.tieba.baidu.com:* gss2.bdstatic.com:* blob: baiduboxapp: bootupbaiduhd: sofire.bdstatic.com:* id6.me:* opencloud.wostore.cn:* nisbj2.10010.com:* nisbj3.10010.com:* verify.cmpassport.com:* www.cmpassport.com:* nisbj1.10010.com:* mbd.baidu.com:* dlswbr.baidu.com:* dmpstatic.cdn.bcebos.com:* cdn.bootcss.com:* safe.cdn.bcebos.com:*; report-uri https://report-uri.baidu.com/report?app=passport;
Content-Type: text/html
Date: Fri, 03 May 2024 23:48:43 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Referrer-Policy: no-referrer-when-downgrade, strict-origin-when-cross-origin
Server: BWS
Set-Cookie: BAIDUID=BEB392E7C49F6715A3591ADBD35EA1B0:FG=1; expires=Sat, 03-May-25 23:48:43 GMT; max-age=31536000; path=/; domain=.baidu.com; version=1
Strict-Transport-Security: max-age=31536000
Trace-Id: DC330601
Tracecode: 22147794830390114570050407
Vary: Accept-Encoding
Transfer-Encoding: chunked
dull-egg.pro/aoGpE./qe_ms9tuuZvU-lxkyPzTAQ_xCNDjEgF5-MHDIQJmKY_WMRNJOZPD-0RzSNTDUY_zWMXjYcZm-cb0cldkeP_TgQh2iNjD-kl5mOnDok_mqcr0sltk-Mvjw0xmyc_0AlBkCMDz-1F6GbH2I5_lKbLmM9N0-cPGQFRzSc_yUZVyWcXm-lZkaPbTcN_jeNfGgNhm-Mjzkkl5mN_moEp2qNrW-QtxuNvTwF_kyYzWAZBl-NDjEgFxGN_zINJhKOLD-QN4OMPGQQ_zSJTnUVVu-aXXYFZCae_VcRd5ecfG-Uh9iMjCkZ_1mbnmolpx-Qrnsltaub_2w5xlyPzT-ABmCdDWE5_pGcHUIJJ5-RLmMVNlOZ_DQ0RwSJTn-VVuWaXXYF_CaebUcZdv-cfmg1hhid_Dk0lwmJnn-Bp0qPrTsA_mucvnwYx9-MzCAZBoCc_zE1FxGYHS-ZJsKcLGMk_9OMPzQIR1-MTiUZVoWa_XYRZJaZbD-1dleNfWgU_5iZjTkllj-ZnWoJpiqY_WsQt3uOvT-Mx3yNzDAM_zCNDjENFh-NH2IEJyKM_jMINwOOPW-YR0SZTiUZ_yWZXWYZZE-bb2c1dhea_Wg4h9i
188.72.219.36200 OK 0 B URL POST HTTP/2 dull-egg.pro/aoGpE./qe_ms9tuuZvU-lxkyPzTAQ_xCNDjEgF5-MHDIQJmKY_WMRNJOZPD-0RzSNTDUY_zWMXjYcZm-cb0cldkeP_TgQh2iNjD-kl5mOnDok_mqcr0sltk-Mvjw0xmyc_0AlBkCMDz-1F6GbH2I5_lKbLmM9N0-cPGQFRzSc_yUZVyWcXm-lZkaPbTcN_jeNfGgNhm-Mjzkkl5mN_moEp2qNrW-QtxuNvTwF_kyYzWAZBl-NDjEgFxGN_zINJhKOLD-QN4OMPGQQ_zSJTnUVVu-aXXYFZCae_VcRd5ecfG-Uh9iMjCkZ_1mbnmolpx-Qrnsltaub_2w5xlyPzT-ABmCdDWE5_pGcHUIJJ5-RLmMVNlOZ_DQ0RwSJTn-VVuWaXXYF_CaebUcZdv-cfmg1hhid_Dk0lwmJnn-Bp0qPrTsA_mucvnwYx9-MzCAZBoCc_zE1FxGYHS-ZJsKcLGMk_9OMPzQIR1-MTiUZVoWa_XYRZJaZbD-1dleNfWgU_5iZjTkllj-ZnWoJpiqY_WsQt3uOvT-Mx3yNzDAM_zCNDjENFh-NH2IEJyKM_jMINwOOPW-YR0SZTiUZ_yWZXWYZZE-bb2c1dhea_Wg4h9i
IP 188.72.219.36:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerLet's Encrypt
Subjectdull-egg.pro
Fingerprint2C:38:E2:A2:7C:32:0F:35:69:9E:5F:4E:16:78:F1:B6:84:34:5C:35
ValiditySun, 14 Apr 2024 03:22:01 GMT - Sat, 13 Jul 2024 03:22:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /aoGpE./qe_ms9tuuZvU-lxkyPzTAQ_xCNDjEgF5-MHDIQJmKY_WMRNJOZPD-0RzSNTDUY_zWMXjYcZm-cb0cldkeP_TgQh2iNjD-kl5mOnDok_mqcr0sltk-Mvjw0xmyc_0AlBkCMDz-1F6GbH2I5_lKbLmM9N0-cPGQFRzSc_yUZVyWcXm-lZkaPbTcN_jeNfGgNhm-Mjzkkl5mN_moEp2qNrW-QtxuNvTwF_kyYzWAZBl-NDjEgFxGN_zINJhKOLD-QN4OMPGQQ_zSJTnUVVu-aXXYFZCae_VcRd5ecfG-Uh9iMjCkZ_1mbnmolpx-Qrnsltaub_2w5xlyPzT-ABmCdDWE5_pGcHUIJJ5-RLmMVNlOZ_DQ0RwSJTn-VVuWaXXYF_CaebUcZdv-cfmg1hhid_Dk0lwmJnn-Bp0qPrTsA_mucvnwYx9-MzCAZBoCc_zE1FxGYHS-ZJsKcLGMk_9OMPzQIR1-MTiUZVoWa_XYRZJaZbD-1dleNfWgU_5iZjTkllj-ZnWoJpiqY_WsQt3uOvT-Mx3yNzDAM_zCNDjENFh-NH2IEJyKM_jMINwOOPW-YR0SZTiUZ_yWZXWYZZE-bb2c1dhea_Wg4h9i HTTP/1.1
Host: dull-egg.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 108
Origin: https://deywepri.com
DNT: 1
Connection: keep-alive
Referer: https://deywepri.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 May 2024 23:48:44 GMT
content-length: 0
pragma: no-cache
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-WoW64
expires: Mon, 26 Jul 2011 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
access-control-allow-credentials: true
vary: Origin
last-modified: Fri, 03 May 2024 23:48:44 GMT
access-control-allow-origin: https://deywepri.com
p3p: CP="CUR ADM OUR NOR STA NID"
x-content-type-options: nosniff
X-Firefox-Spdy: h2
dull-egg.pro/YWm_RY0ZP.3apbv-bdmeVfJgZ_Di0j0kMlT-Yn4oOpTqA_0sJtmuFvk-SxWyQz9AM_zCQD2EMFz-IH3IJJnKN_JMZNDO0P0-NRjSQT5UO_TWgX5YJZn-NbJcZdDeI_9gJhniNjJ-ZlDmMn9oe_mq9rusZtW-5vvwdxHyB_hAcB3CMDm-cFnGJHpIZ_DK0LzMYNz-RPjQZRjSM_5UOVTWZXh-NZjaVbkcM_TeUfxgZhG-FjmkZlTmY_4oMpTqcrz-YtTugv0wO_DyBzkAMBy-ZD1EbFmGl_xIQJnKlLU-eNXOBPlQP_TSATmUdVW-5XpYcZUaJ_5cWdme9fu-ZhTi0jwkJ_nmVnuoapX-FrCsetUuZ_lwZxWyQz9-MBCCZD1Eb_mGlHxIQJn-lLGMbN3OJ_tQYRXSQT9-MVCWZXwYd_Da0bwcJdn-Jf2gPhTiA_mkalHmMn9-cpWqErmsb_HuBvpwPxT-MzyANBTCI_mEaFGGlH0-SJWKQL9MZ_TOVPlQORW-UT5UYV2WV_iYYZmaFbk-NdzekfzgN_ziQjzkMlz-YnzoYpTqd_hsMtjuIvy-MxDylzmAN_GCYDmEcFm-VHmIRJGK9_tMYNWOlPu-PRQS
188.72.219.36200 OK 0 B URL POST HTTP/2 dull-egg.pro/YWm_RY0ZP.3apbv-bdmeVfJgZ_Di0j0kMlT-Yn4oOpTqA_0sJtmuFvk-SxWyQz9AM_zCQD2EMFz-IH3IJJnKN_JMZNDO0P0-NRjSQT5UO_TWgX5YJZn-NbJcZdDeI_9gJhniNjJ-ZlDmMn9oe_mq9rusZtW-5vvwdxHyB_hAcB3CMDm-cFnGJHpIZ_DK0LzMYNz-RPjQZRjSM_5UOVTWZXh-NZjaVbkcM_TeUfxgZhG-FjmkZlTmY_4oMpTqcrz-YtTugv0wO_DyBzkAMBy-ZD1EbFmGl_xIQJnKlLU-eNXOBPlQP_TSATmUdVW-5XpYcZUaJ_5cWdme9fu-ZhTi0jwkJ_nmVnuoapX-FrCsetUuZ_lwZxWyQz9-MBCCZD1Eb_mGlHxIQJn-lLGMbN3OJ_tQYRXSQT9-MVCWZXwYd_Da0bwcJdn-Jf2gPhTiA_mkalHmMn9-cpWqErmsb_HuBvpwPxT-MzyANBTCI_mEaFGGlH0-SJWKQL9MZ_TOVPlQORW-UT5UYV2WV_iYYZmaFbk-NdzekfzgN_ziQjzkMlz-YnzoYpTqd_hsMtjuIvy-MxDylzmAN_GCYDmEcFm-VHmIRJGK9_tMYNWOlPu-PRQS
IP 188.72.219.36:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerLet's Encrypt
Subjectdull-egg.pro
Fingerprint2C:38:E2:A2:7C:32:0F:35:69:9E:5F:4E:16:78:F1:B6:84:34:5C:35
ValiditySun, 14 Apr 2024 03:22:01 GMT - Sat, 13 Jul 2024 03:22:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /YWm_RY0ZP.3apbv-bdmeVfJgZ_Di0j0kMlT-Yn4oOpTqA_0sJtmuFvk-SxWyQz9AM_zCQD2EMFz-IH3IJJnKN_JMZNDO0P0-NRjSQT5UO_TWgX5YJZn-NbJcZdDeI_9gJhniNjJ-ZlDmMn9oe_mq9rusZtW-5vvwdxHyB_hAcB3CMDm-cFnGJHpIZ_DK0LzMYNz-RPjQZRjSM_5UOVTWZXh-NZjaVbkcM_TeUfxgZhG-FjmkZlTmY_4oMpTqcrz-YtTugv0wO_DyBzkAMBy-ZD1EbFmGl_xIQJnKlLU-eNXOBPlQP_TSATmUdVW-5XpYcZUaJ_5cWdme9fu-ZhTi0jwkJ_nmVnuoapX-FrCsetUuZ_lwZxWyQz9-MBCCZD1Eb_mGlHxIQJn-lLGMbN3OJ_tQYRXSQT9-MVCWZXwYd_Da0bwcJdn-Jf2gPhTiA_mkalHmMn9-cpWqErmsb_HuBvpwPxT-MzyANBTCI_mEaFGGlH0-SJWKQL9MZ_TOVPlQORW-UT5UYV2WV_iYYZmaFbk-NdzekfzgN_ziQjzkMlz-YnzoYpTqd_hsMtjuIvy-MxDylzmAN_GCYDmEcFm-VHmIRJGK9_tMYNWOlPu-PRQS HTTP/1.1
Host: dull-egg.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 86
Origin: https://deywepri.com
DNT: 1
Connection: keep-alive
Referer: https://deywepri.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 May 2024 23:49:02 GMT
content-length: 0
expires: Mon, 26 Jul 2011 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-WoW64
p3p: CP="CUR ADM OUR NOR STA NID"
access-control-allow-credentials: true
vary: Origin
last-modified: Fri, 03 May 2024 23:49:02 GMT
access-control-allow-origin: https://deywepri.com
x-content-type-options: nosniff
X-Firefox-Spdy: h2
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
74.125.131.84302 Found 0 B URL GET HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
IP 74.125.131.84:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint9A:72:A8:C3:56:5C:93:B4:72:C7:5B:1B:60:BB:0F:3E:1E:C4:1B:67
ValidityTue, 16 Apr 2024 04:20:36 GMT - Tue, 09 Jul 2024 04:20:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:Qi40GwEJx24m9-yusMJC_wlf1ZkZiQ:2eOQ9LAzoCgJ8oCv; Expires=Sun, 03-May-2026 23:48:42 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 03 May 2024 23:48:42 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AaSxoQxL0VEhoNTtm3WZ6Hd6Uz8kiBiNYG0Aj7hxKaYajybkNo5GQR2icZ94ObOUXlsl99owM9r3cg
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy: unsafe-none
content-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-dTFYR22P0Ee9Tk8UD_D5Gw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
deliverytraffico.com/0b085559bbdffdb520aa77a4607ee9f9/
146.190.238.229302 Found 168 B URL GET HTTP/2 deliverytraffico.com/0b085559bbdffdb520aa77a4607ee9f9/
IP 146.190.238.229:443
ASN #14061 DIGITALOCEAN-ASN
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerLet's Encrypt
Subjectdeliverytraffico.com
Fingerprint82:63:01:CA:CA:6E:00:21:A3:32:CF:1A:C1:5A:AD:DC:B3:96:1B:67
ValiditySat, 27 Apr 2024 23:03:56 GMT - Fri, 26 Jul 2024 23:03:55 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /0b085559bbdffdb520aa77a4607ee9f9/ HTTP/1.1
Host: deliverytraffico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://deywepri.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Fri, 03 May 2024 23:48:38 GMT
content-type: text/html; charset=UTF-8
location: https://wavylandscape.pro/buW.NvlwPx3-Nz0AYBXCR_1EcFzG1Hm-YJWKlLsM
access-control-allow-origin: https://deywepri.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
deliverytraffico.com/37a21b48e24ed1184aa8b073cbd7f7f6/?rid=uplRMNev9EBkYTNKYksb0DDVXT49yUrU&host=landings-eu01.sdkl.info
146.190.238.229200 OK 14 B URL GET HTTP/2 deliverytraffico.com/37a21b48e24ed1184aa8b073cbd7f7f6/?rid=uplRMNev9EBkYTNKYksb0DDVXT49yUrU&host=landings-eu01.sdkl.info
IP 146.190.238.229:443
ASN #14061 DIGITALOCEAN-ASN
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerLet's Encrypt
Subjectdeliverytraffico.com
Fingerprint82:63:01:CA:CA:6E:00:21:A3:32:CF:1A:C1:5A:AD:DC:B3:96:1B:67
ValiditySat, 27 Apr 2024 23:03:56 GMT - Fri, 26 Jul 2024 23:03:55 GMT
File type ASCII text, with no line terminators
Hash c7a2377feeb4a2ea7470a8f3361cadd4
90978eb556bfdc5b8d5c827d77d3f7893349d606
5a6a29ee17ce768dda0fb65615d1d2ae4490f9ce1c33b30c2341a856bd3dc8c0
GET /37a21b48e24ed1184aa8b073cbd7f7f6/?rid=uplRMNev9EBkYTNKYksb0DDVXT49yUrU&host=landings-eu01.sdkl.info HTTP/1.1
Host: deliverytraffico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://deywepri.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 03 May 2024 23:48:38 GMT
content-type: text/html; charset=UTF-8
content-encoding: br
X-Firefox-Spdy: h2
www.amazon.com/ap/signin/178-4417027-1316064?_encoding=UTF8&openid.assoc_handle=usflex&openid.claimed_id=http%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0%2Fidentifier_select&openid.identity=http%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0%2Fidentifier_select&openid.mode=checkid_setup&openid.ns=http%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0&openid.ns.pape=http%3A%2F%2Fspecs.openid.net%2Fextensions%2Fpape%2F1.0&openid.pape.max_auth_age=10000000&openid.return_to=https%3A%2F%2Fwww.amazon.com%2Ffavicon.ico
0.0.0.0 0 B URL GET www.amazon.com/ap/signin/178-4417027-1316064?_encoding=UTF8&openid.assoc_handle=usflex&openid.claimed_id=http%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0%2Fidentifier_select&openid.identity=http%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0%2Fidentifier_select&openid.mode=checkid_setup&openid.ns=http%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0&openid.ns.pape=http%3A%2F%2Fspecs.openid.net%2Fextensions%2Fpape%2F1.0&openid.pape.max_auth_age=10000000&openid.return_to=https%3A%2F%2Fwww.amazon.com%2Ffavicon.ico
IP 0.0.0.0:0
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerDigiCert Inc
Subjectwww.amazon.com
Fingerprint62:55:EA:53:8D:A8:3F:87:B5:55:C5:54:EE:F6:18:25:C8:72:23:61
ValidityTue, 28 Nov 2023 00:00:00 GMT - Mon, 11 Nov 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ap/signin/178-4417027-1316064?_encoding=UTF8&openid.assoc_handle=usflex&openid.claimed_id=http%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0%2Fidentifier_select&openid.identity=http%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0%2Fidentifier_select&openid.mode=checkid_setup&openid.ns=http%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0&openid.ns.pape=http%3A%2F%2Fspecs.openid.net%2Fextensions%2Fpape%2F1.0&openid.pape.max_auth_age=10000000&openid.return_to=https%3A%2F%2Fwww.amazon.com%2Ffavicon.ico HTTP/1.1
Host: www.amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
server: Server
date: Fri, 03 May 2024 23:48:42 GMT
x-amz-rid: 6NQ55YQFM75KP493RG03
strict-transport-security: max-age=47474747; includeSubDomains; preload
vary: Content-Type,Accept-Encoding,User-Agent
content-encoding: gzip
p3p: policyref="http://www.amazon.com/w3c/p3p.xml",CP="CAO DSP LAW CUR ADM IVAo IVDo CONo OTPo OUR DELi PUBi OTRi BUS PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA HEA PRE LOC GOV OTC "
x-frame-options: SAMEORIGIN
x-cache: Miss from cloudfront
via: 1.1 47cc7d5981f182b935da67eb4606a37e.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN53-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: Q4OokOrfVv4F4SCOQBk36xro-Ck0uVZKDHZzuH1pXjrXeLj8IihqLg==
X-Firefox-Spdy: h2
360.yandex.ru/mail/
0.0.0.0 0 B IP 0.0.0.0:0
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerGlobalSign nv-sa
Subject360.yandex.ru
Fingerprint5C:38:91:03:85:A4:6A:16:22:07:A0:87:6E:9F:0E:69:B6:41:DF:C0
ValidityFri, 26 Apr 2024 13:55:42 GMT - Tue, 26 Nov 2024 13:55:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /mail/ HTTP/1.1
Host: 360.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate, proxy-revalidate, no-cache, no-store, private
Content-Encoding: gzip
Content-Security-Policy: default-src 'none'; script-src yastatic.net https://*.static-dev.mail.yandex.net/s3/psf/ 'unsafe-eval' 'nonce-9c5T+qqS0UpjhR6mWXnt/g==' 'self' 'unsafe-inline' mc.yandex.ru mc.yandex.az mc.yandex.by mc.yandex.co.il mc.yandex.com mc.yandex.com.am mc.yandex.com.ge mc.yandex.com.tr mc.yandex.ee mc.yandex.fr mc.yandex.kg mc.yandex.kz mc.yandex.lt mc.yandex.lv mc.yandex.md mc.yandex.ru mc.yandex.tj mc.yandex.tm mc.yandex.ua mc.yandex.uz mc.webvisor.com mc.webvisor.org mc.admetrica.ru yastatic.net; style-src yastatic.net https://*.static-dev.mail.yandex.net/s3/psf/ 'unsafe-inline' 'self' fonts.googleapis.com; font-src yastatic.net https://*.static-dev.mail.yandex.net/s3/psf/ fonts.gstatic.com; media-src yastatic.net https://*.static-dev.mail.yandex.net/s3/psf/ 'unsafe-inline' 'self' storage.yandexcloud.net s3.mds.yandex.net; img-src yastatic.net https://*.static-dev.mail.yandex.net/s3/psf/ 'self' data: blob: mc.yandex.ru mc.yandex.az mc.yandex.by mc.yandex.co.il mc.yandex.com mc.yandex.com.am mc.yandex.com.ge mc.yandex.com.tr mc.yandex.ee mc.yandex.fr mc.yandex.kg mc.yandex.kz mc.yandex.lt mc.yandex.lv mc.yandex.md mc.yandex.ru mc.yandex.tj mc.yandex.tm mc.yandex.ua mc.yandex.uz mc.webvisor.com mc.webvisor.org mc.admetrica.ru yastatic.net downloader.disk.yandex.ru downloader.disk.yandex.net yandex.ru favicon.yandex.net storage.yandexcloud.net s3.mds.yandex.net avatars.mds.yandex.net *.storage.yandex.net *.disk.yandex.net; connect-src yandex.ru mc.yandex.ru mc.yandex.az mc.yandex.by mc.yandex.co.il mc.yandex.com mc.yandex.com.am mc.yandex.com.ge mc.yandex.com.tr mc.yandex.ee mc.yandex.fr mc.yandex.kg mc.yandex.kz mc.yandex.lt mc.yandex.lv mc.yandex.md mc.yandex.ru mc.yandex.tj mc.yandex.tm mc.yandex.ua mc.yandex.uz mc.webvisor.com mc.webvisor.org mc.admetrica.ru yandexmetrica.com:* 'self' api.passport.yandex.ru mail.yandex.ru https://pdd.yandex.ru:* https://pdd.yandex.com:* api-stable.dst.yandex.ru cloud-api.yandex.ru yastatic.net https://*.static-dev.mail.yandex.net/s3/psf/; frame-src yastatic.net https://*.static-dev.mail.yandex.net/s3/psf/ 'self' blob: mc.yandex.ru forms.yandex.ru www.youtube.com yandex.ru trust.yandex.ru; child-src 'self' blob: mc.yandex.ru; base-uri 'self'; frame-ancestors 'self' https://*.webvisor.com https://metrika.yandex.com https://metrika.yandex.ru; report-uri https://csp.yandex.net/csp?from=tuning&project=tuning&yandex_login=&yandexuid=7424143291714780123;
Content-Type: text/html; charset=utf-8
Date: Fri, 03 May 2024 23:48:43 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Pragma: no-cache
Set-Cookie: _yasc=Jb9uLsiIjS/JdxEbLKD+VSopD+wfcChT2gvLK7pgWQppYmW9yRsSIxSNZIKhbEaD; domain=.yandex.ru; path=/; expires=Mon, 01 May 2034 23:48:43 GMT; secure
i=FEzfRT1eEm5VGzxdvcZZuAy8soGx9XarGelhriHlSSK9NDxDevHenK9oRiKbCPW6yIoNEyZx2m1MGAasLWAetabT6PE=; Expires=Sun, 03-May-2026 23:48:43 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=7424143291714780123; Expires=Sun, 03-May-2026 23:48:43 GMT; Domain=.yandex.ru; Path=/; Secure; SameSite=None
Transfer-Encoding: chunked
Vary: Accept-Encoding
X-Response-With: YMail
www.google.com/favicon.ico
0.0.0.0 0 B URL GET www.google.com/favicon.ico
IP 0.0.0.0:0
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintC6:A2:DC:31:5A:53:FA:DD:55:71:A3:F4:DD:43:3D:16:71:B8:B3:99
ValidityTue, 16 Apr 2024 04:20:32 GMT - Tue, 09 Jul 2024 04:20:31 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://deywepri.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1494
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 17:26:57 GMT
expires: Sat, 11 May 2024 17:26:57 GMT
cache-control: public, max-age=691200
last-modified: Tue, 22 Oct 2019 18:30:00 GMT
content-type: image/x-icon
vary: Accept-Encoding
age: 22905
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
newassets.hcaptcha.com/captcha/v1/50fb34a/static/hcaptcha.html
104.18.124.91200 OK 1.8 kB URL GET HTTP/3 newassets.hcaptcha.com/captcha/v1/50fb34a/static/hcaptcha.html
IP 104.18.124.91:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerLet's Encrypt
Subjecthcaptcha.com
Fingerprint8F:BD:51:60:5C:FC:EA:F0:74:47:AB:AC:1B:84:1A:7E:3C:68:A7:E5
ValidityFri, 15 Mar 2024 00:09:38 GMT - Thu, 13 Jun 2024 00:09:37 GMT
File type HTML document, ASCII text, with very long lines (1803), with no line terminators
Hash 1061da5ccf4d00902874135c386f3cec
3fbf23dcb9452a187c9ec136a7f5538776f8b9ad
f472028d948ffa52e1eb7cd913034240f740dab373e73ab17c07891dca16cd72
GET /captcha/v1/50fb34a/static/hcaptcha.html HTTP/1.1
Host: newassets.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://deywepri.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 03 May 2024 23:48:41 GMT
content-type: text/html
cache-control: public, max-age=1209600
alt-svc: h3=":443"; ma=86400
vary: Origin, Accept-Encoding
cf-cache-status: HIT
expires: Fri, 17 May 2024 23:48:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e424b26be756b5-OSL
content-encoding: br
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.blogger.com%2Ffavicon.ico&hl=de&ifkv=AaSxoQw7tEk07Ye5Lw9uACv7dMJD4b_FP1DF_UfrddlOYa7_hJHmCPvLc4TdPgD1kW95c3LfasErDg&passive=1209600&service=blogger&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1309158148%3A1714780122530464&theme=mn&ddm=0
74.125.131.84403 Forbidden 0 B URL GET HTTP/3 accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.blogger.com%2Ffavicon.ico&hl=de&ifkv=AaSxoQw7tEk07Ye5Lw9uACv7dMJD4b_FP1DF_UfrddlOYa7_hJHmCPvLc4TdPgD1kW95c3LfasErDg&passive=1209600&service=blogger&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1309158148%3A1714780122530464&theme=mn&ddm=0
IP 74.125.131.84:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.blogger.com%2Ffavicon.ico&hl=de&ifkv=AaSxoQw7tEk07Ye5Lw9uACv7dMJD4b_FP1DF_UfrddlOYa7_hJHmCPvLc4TdPgD1kW95c3LfasErDg&passive=1209600&service=blogger&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1309158148%3A1714780122530464&theme=mn&ddm=0 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 03 May 2024 23:48:42 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: script-src 'nonce-uBjPreEUkUpbI2WFvvQ2RA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.hcaptcha.com/1/api.js?v=1714656232868562729
104.18.124.91200 OK 387 kB URL GET HTTP/2 www.hcaptcha.com/1/api.js?v=1714656232868562729
IP 104.18.124.91:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerLet's Encrypt
Subjecthcaptcha.com
Fingerprint8F:BD:51:60:5C:FC:EA:F0:74:47:AB:AC:1B:84:1A:7E:3C:68:A7:E5
ValidityFri, 15 Mar 2024 00:09:38 GMT - Thu, 13 Jun 2024 00:09:37 GMT
Size 387 kB (387118 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1/api.js?v=1714656232868562729 HTTP/1.1
Host: www.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://deywepri.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 03 May 2024 23:48:38 GMT
content-type: application/javascript
cf-ray: 87e4249e1fb5712b-OSL
cf-cache-status: HIT
age: 0
cache-control: max-age=300
etag: W/"43a836cde2f57b4747b92444069ecfc9"
expires: Fri, 17 May 2024 19:20:56 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
alt-svc: h3=":443"; ma=86400
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
newassets.hcaptcha.com/captcha/v1/50fb34a/static/hcaptcha.html
104.18.124.91200 OK 1.8 kB URL GET HTTP/3 newassets.hcaptcha.com/captcha/v1/50fb34a/static/hcaptcha.html
IP 104.18.124.91:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerLet's Encrypt
Subjecthcaptcha.com
Fingerprint8F:BD:51:60:5C:FC:EA:F0:74:47:AB:AC:1B:84:1A:7E:3C:68:A7:E5
ValidityFri, 15 Mar 2024 00:09:38 GMT - Thu, 13 Jun 2024 00:09:37 GMT
File type HTML document, ASCII text, with very long lines (1803), with no line terminators
Hash 1061da5ccf4d00902874135c386f3cec
3fbf23dcb9452a187c9ec136a7f5538776f8b9ad
f472028d948ffa52e1eb7cd913034240f740dab373e73ab17c07891dca16cd72
GET /captcha/v1/50fb34a/static/hcaptcha.html HTTP/1.1
Host: newassets.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://deywepri.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 03 May 2024 23:48:41 GMT
content-type: text/html
cache-control: public, max-age=1209600
alt-svc: h3=":443"; ma=86400
vary: Origin, Accept-Encoding
cf-cache-status: HIT
expires: Fri, 17 May 2024 23:48:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e424b26be656b5-OSL
content-encoding: br
wavylandscape.pro/buW.NvlwPx3-Nz0AYBXCR_1EcFzG1Hm-YJWKlLsM
88.85.94.240200 OK 168 B URL GET HTTP/2 wavylandscape.pro/buW.NvlwPx3-Nz0AYBXCR_1EcFzG1Hm-YJWKlLsM
IP 88.85.94.240:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerLet's Encrypt
Subjectwavylandscape.pro
Fingerprint06:F3:E5:2D:DD:24:FD:A0:F5:6C:74:C8:48:9D:F3:E3:AA:BB:56:A9
ValiditySun, 28 Apr 2024 01:03:10 GMT - Sat, 27 Jul 2024 01:03:09 GMT
File type HTML document, ASCII text, with no line terminators
Hash 9e0c04f6a728b6a6b4cf6033ef73800b
eb16f7f814f9960764a7fcf7d1d8e9a86afc728f
b7d9c4839c6c376dee60d4c451e6ba68b4d1883e60d7187ccdd1575befca836d
GET /buW.NvlwPx3-Nz0AYBXCR_1EcFzG1Hm-YJWKlLsM HTTP/1.1
Host: wavylandscape.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://deywepri.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 03 May 2024 23:48:39 GMT
content-type: text/html;charset=UTF-8
vary: Accept-Encoding
pragma: no-cache
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-WoW64
expires: Mon, 26 Jul 2011 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-content-type-options: nosniff
content-encoding: br
X-Firefox-Spdy: h2
api2.hcaptcha.com/checksiteconfig?v=50fb34a&host=deywepri.com&sitekey=35afe8c0-9ebe-460b-b981-2dd69519f5c8&sc=1&swa=1&spst=0
104.18.124.91200 OK 718 B URL POST HTTP/3 api2.hcaptcha.com/checksiteconfig?v=50fb34a&host=deywepri.com&sitekey=35afe8c0-9ebe-460b-b981-2dd69519f5c8&sc=1&swa=1&spst=0
IP 104.18.124.91:443
Requested by https://newassets.hcaptcha.com/captcha/v1/50fb34a/static/hcaptcha.html#frame=challenge&id=0kxj10657yh&host=deywepri.com&sentry=true&reportapi=https%3A%2F%2Faccounts.hcaptcha.com&recaptchacompat=true&custom=false&hl=en&tplinks=on&pstissuer=https%3A%2F%2Fpst-issuer.hcaptcha.com&sitekey=35afe8c0-9ebe-460b-b981-2dd69519f5c8&theme=light&origin=https%3A%2F%2Fdeywepri.com
Certificate IssuerLet's Encrypt
Subjecthcaptcha.com
Fingerprint8F:BD:51:60:5C:FC:EA:F0:74:47:AB:AC:1B:84:1A:7E:3C:68:A7:E5
ValidityFri, 15 Mar 2024 00:09:38 GMT - Thu, 13 Jun 2024 00:09:37 GMT
File type troff or preprocessor input, ASCII text, with very long lines (734), with no line terminators
Hash 501b74b8b6d9a9b5905a32158a977836
cfba71845029b6cf46cacc576e297ff43eb5c65d
2683df9ea725e169198dc357d9558fbc44d519a9d39f9c9ebe49a9a54ce3405c
POST /checksiteconfig?v=50fb34a&host=deywepri.com&sitekey=35afe8c0-9ebe-460b-b981-2dd69519f5c8&sc=1&swa=1&spst=0 HTTP/1.1
Host: api2.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://newassets.hcaptcha.com
DNT: 1
Connection: keep-alive
Referer: https://newassets.hcaptcha.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/3 200 OK
date: Fri, 03 May 2024 23:48:42 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control, Content-Type, DNT, Referer, User-Agent
access-control-allow-methods: GET, HEAD, POST, OPTIONS
access-control-allow-origin: https://newassets.hcaptcha.com
vary: Origin, Accept-Encoding
cf-cache-status: DYNAMIC
set-cookie: __cflb=0H28vk2VKwPbLoawFj9mU2fhedYxxWRD1tiHqNGVzjP; SameSite=None; Secure; path=/; expires=Sat, 04-May-24 00:18:42 GMT; HttpOnly
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e424b5cd9956b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQxlcPONYeRFr7459_PDurlp_e85pdbADHHfKcxjK9xwcXFjrotjKQxKk4DXpv3PywHZD8zyGA&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-250757086%3A1714780122548216&theme=mn&ddm=0
74.125.131.84403 Forbidden 0 B URL GET HTTP/3 accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQxlcPONYeRFr7459_PDurlp_e85pdbADHHfKcxjK9xwcXFjrotjKQxKk4DXpv3PywHZD8zyGA&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-250757086%3A1714780122548216&theme=mn&ddm=0
IP 74.125.131.84:443
Requested by https://deywepri.com/l?v=E0lAbaQq
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQxlcPONYeRFr7459_PDurlp_e85pdbADHHfKcxjK9xwcXFjrotjKQxKk4DXpv3PywHZD8zyGA&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-250757086%3A1714780122548216&theme=mn&ddm=0 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 03 May 2024 23:48:42 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport, script-src 'nonce-OXTC-owhWDUQv0kQzMCgZw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000