cdn-adef.akamaized.net/landings/277880/1672929850/js/translete.js?1672929850
95.101.10.34200 OK 559 B URL GET HTTP/1.1 cdn-adef.akamaized.net/landings/277880/1672929850/js/translete.js?1672929850
IP 95.101.10.34:443
ASN #20940 Akamai International B.V.
Requested by https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
Hash ec54980cfed635492cef5628111560d2
a5dbc3628701447711d16decd4409070c9967714
b402b988b04cea3b1ba157a14aa973998a6f5cad4d079dfc81622d77c3ba7558
GET /landings/277880/1672929850/js/translete.js?1672929850 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: vFZe1twy45P/ZoEIHe3455BdvEiLL0HpIcYOXcvU2U34Ef91qh0NvUk8jxWJds71PrE9LUlhRAo=
x-amz-request-id: J9Z8A5QA1B1APGET
Last-Modified: Thu, 05 Jan 2023 14:44:12 GMT
ETag: "ec54980cfed635492cef5628111560d2"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 12 May 2023 08:03:37 GMT
Content-Length: 559
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/277880/1672929850/js/second_back_multi.js?1672929850
95.101.10.34200 OK 779 B URL GET HTTP/1.1 cdn-adef.akamaized.net/landings/277880/1672929850/js/second_back_multi.js?1672929850
IP 95.101.10.34:443
ASN #20940 Akamai International B.V.
Requested by https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File type HTML document, ASCII text
Hash 4034050f2be05cd41b77c4bb153f89eb
395187f1b6ad0a67fcdede70756a1c455903d84d
717b9e3b39eb201ec4cf8ade5f0ce9f2f2537b02b0b7f822ae159a8d1496df60
GET /landings/277880/1672929850/js/second_back_multi.js?1672929850 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: 704FEAJNxbpYP8DcZUUYkVkma9ZYVDFMsEa07ugGtP/eaUJm8reubFZT6JgSwrRpGbDnuxGsd+A=
x-amz-request-id: GP5D2FQ41MDQARM6
Last-Modified: Thu, 05 Jan 2023 14:44:12 GMT
ETag: "4034050f2be05cd41b77c4bb153f89eb"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 12 May 2023 08:03:37 GMT
Content-Length: 779
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/277880/1672929850/js/js.cockie.min.js?1672929850
95.101.10.34200 OK 921 B URL GET HTTP/1.1 cdn-adef.akamaized.net/landings/277880/1672929850/js/js.cockie.min.js?1672929850
IP 95.101.10.34:443
ASN #20940 Akamai International B.V.
Requested by https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
Hash ee34078cc4ca5f836c668cdabfea8637
5e344a985d5544b25695323eecf113e5f147767a
2977fda7a224fff42e1ff6b1d7a93448597c69555326e14a147abc6cab313ed7
GET /landings/277880/1672929850/js/js.cockie.min.js?1672929850 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: MTotl9ob077Y6JieqvG0LfT3g6h4qLEzkAXc2GnfEdlO+w4WHIcuIHVWnPjv9NXf6j2I0bIw4SQ=
x-amz-request-id: JBB596H06230R044
Last-Modified: Thu, 05 Jan 2023 14:44:12 GMT
ETag: "ee34078cc4ca5f836c668cdabfea8637"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 12 May 2023 08:03:37 GMT
Content-Length: 921
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/277880/1672929850/css/style.css?1672929850
95.101.10.34200 OK 2.1 kB URL GET HTTP/1.1 cdn-adef.akamaized.net/landings/277880/1672929850/css/style.css?1672929850
IP 95.101.10.34:443
ASN #20940 Akamai International B.V.
Requested by https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File type ASCII text, with CRLF line terminators
Hash 5bed53ec2acdb0d3942f5aad30cf38ef
b91e33fc134e51aea656b0a94d63df04a8456675
ab74489bd7cfaf882a6244d8bd14c6c5755d87b85f92c4cf1b122d7a6fbb8803
GET /landings/277880/1672929850/css/style.css?1672929850 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: eLWs/tI0ejBbHTpDBtC0y4JpmyWMbrNULDO7K5FjJsvYC0WJXvsIUO4VOeTIg/DnLhOxBNSXxRM=
x-amz-request-id: ZSK73WQNKF7GHNG4
Last-Modified: Thu, 05 Jan 2023 14:44:12 GMT
ETag: "5bed53ec2acdb0d3942f5aad30cf38ef"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 12 May 2023 08:03:37 GMT
Content-Length: 2072
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/277880/1672929850/js/site-protect2.0.js?1672929850
95.101.10.34200 OK 1.1 kB URL GET HTTP/1.1 cdn-adef.akamaized.net/landings/277880/1672929850/js/site-protect2.0.js?1672929850
IP 95.101.10.34:443
ASN #20940 Akamai International B.V.
Requested by https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
Hash fc96ab06b0f9fcea6731405215ae5daf
8af9f27d895eb69754919a2fc0d74760fecd3860
9243e166cbcd628fd992eba59544ebf99328fd4db7c0c08c2fb28a7af14d759e
GET /landings/277880/1672929850/js/site-protect2.0.js?1672929850 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: 1qWHVIwzl3Ne3lkb56N7NrBEk2cGYJb7WdMEuwHmKZrt4ykZpyNAtZhZdTm6CU7yOd8nAtedi7Y=
x-amz-request-id: 6VADZCEJ4HW24D8D
Last-Modified: Thu, 05 Jan 2023 14:44:12 GMT
ETag: "fc96ab06b0f9fcea6731405215ae5daf"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 12 May 2023 08:03:38 GMT
Content-Length: 1068
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdnjs.claudflare.io/ajax/libs/jquery/3.6.0/b/jquery.min.js?1672929850
206.189.196.86200 OK 92 kB URL GET HTTP/1.1 cdnjs.claudflare.io/ajax/libs/jquery/3.6.0/b/jquery.min.js?1672929850
IP 206.189.196.86:443
ASN #14061 DIGITALOCEAN-ASN
Requested by https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate IssuerLet's Encrypt
Subjectcdnjs.claudflare.io
FingerprintBF:D4:AB:9A:D0:EB:75:E1:A0:33:BA:D0:58:58:99:64:E0:75:B9:0C
ValidityThu, 06 Apr 2023 22:54:27 GMT - Wed, 05 Jul 2023 22:54:26 GMT
File type ASCII text, with very long lines (65447)
Hash c8cd1d171d2f9b2297250ce8808385eb
5e09427e80066156f0b5d4916982d70ed64a9b17
5c2c0bb8c88580c3a8edd2039a81971a50905f0e60484c7b3151450de42531a8
Analyzer Verdict Alert quad9 Sinkholed
GET /ajax/libs/jquery/3.6.0/b/jquery.min.js?1672929850 HTTP/1.1
Host: cdnjs.claudflare.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.0 (Ubuntu)
Date: Fri, 12 May 2023 08:03:38 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 92013
Connection: keep-alive
Cache-Control: public, max-age=43200
Expires: Fri, 12 May 2023 20:03:38 GMT
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 89df013e8608d07679738c5bed6b85f6
49951a3cf8def7832e44ef5d8448ccea2f9c0391
2680bd8acd47863cffaafb8d8c7384abe08358ce137bdb2e4fcf9ab61840f7e6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 12 May 2023 08:03:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 89df013e8608d07679738c5bed6b85f6
49951a3cf8def7832e44ef5d8448ccea2f9c0391
2680bd8acd47863cffaafb8d8c7384abe08358ce137bdb2e4fcf9ab61840f7e6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 12 May 2023 08:03:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:443
Requested by https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ptm.totalhighlyefficientdefence.site
DNT: 1
Connection: keep-alive
Referer: https://cdn-adef.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 06 May 2023 20:50:05 GMT
expires: Sun, 05 May 2024 20:50:05 GMT
cache-control: public, max-age=31536000
age: 472413
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 89df013e8608d07679738c5bed6b85f6
49951a3cf8def7832e44ef5d8448ccea2f9c0391
2680bd8acd47863cffaafb8d8c7384abe08358ce137bdb2e4fcf9ab61840f7e6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 12 May 2023 08:03:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 89df013e8608d07679738c5bed6b85f6
49951a3cf8def7832e44ef5d8448ccea2f9c0391
2680bd8acd47863cffaafb8d8c7384abe08358ce137bdb2e4fcf9ab61840f7e6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 12 May 2023 08:03:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 89df013e8608d07679738c5bed6b85f6
49951a3cf8def7832e44ef5d8448ccea2f9c0391
2680bd8acd47863cffaafb8d8c7384abe08358ce137bdb2e4fcf9ab61840f7e6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 12 May 2023 08:03:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:443
Requested by https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ptm.totalhighlyefficientdefence.site
DNT: 1
Connection: keep-alive
Referer: https://cdn-adef.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 06 May 2023 20:54:29 GMT
expires: Sun, 05 May 2024 20:54:29 GMT
cache-control: public, max-age=31536000
age: 472149
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.163200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.163:443
Requested by https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ptm.totalhighlyefficientdefence.site
DNT: 1
Connection: keep-alive
Referer: https://cdn-adef.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 06 May 2023 06:02:59 GMT
expires: Sun, 05 May 2024 06:02:59 GMT
cache-control: public, max-age=31536000
age: 525639
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
142.250.74.163200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP 142.250.74.163:443
Requested by https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT
File type Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Hash b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ptm.totalhighlyefficientdefence.site
DNT: 1
Connection: keep-alive
Referer: https://cdn-adef.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 06 May 2023 11:41:27 GMT
expires: Sun, 05 May 2024 11:41:27 GMT
cache-control: public, max-age=31536000
age: 505331
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51S7ACc6CsQ.woff2
142.250.74.163200 OK 17 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51S7ACc6CsQ.woff2
IP 142.250.74.163:443
Requested by https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT
File type Web Open Font Format (Version 2), TrueType, length 17336, version 1.0\012- data
Hash eec8dbfc49267c4d33cf31b49661bf37
0f49d4563cf9e22e3af6907d0785b9a6facadbf0
661d4b208656c006e7aab58acf7784857963123675de2302279fbe6c05313547
GET /s/roboto/v30/KFOjCnqEu92Fr1Mu51S7ACc6CsQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ptm.totalhighlyefficientdefence.site
DNT: 1
Connection: keep-alive
Referer: https://cdn-adef.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17336
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 10 May 2023 13:44:56 GMT
expires: Thu, 09 May 2024 13:44:56 GMT
cache-control: public, max-age=31536000
age: 152322
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 89df013e8608d07679738c5bed6b85f6
49951a3cf8def7832e44ef5d8448ccea2f9c0391
2680bd8acd47863cffaafb8d8c7384abe08358ce137bdb2e4fcf9ab61840f7e6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 12 May 2023 08:03:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn-adef.akamaized.net/landings/277880/1672929850/images/logo.png
95.101.10.34200 OK 3.6 kB URL GET HTTP/1.1 cdn-adef.akamaized.net/landings/277880/1672929850/images/logo.png
IP 95.101.10.34:443
ASN #20940 Akamai International B.V.
Requested by https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File type PNG image data, 100 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash fac400941652b9e4da713b818ca13822
67546046d8f76504855e095ba9dcc5e4bcaddd0e
0da8e901848697aca8328a2a3c26a024b7163bd0eeafddf72f4ac119553fba87
GET /landings/277880/1672929850/images/logo.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: VKgAB15X2MxKAMS9ivGIra5qG6xzDyDk89gJ2NHmje44s2rsbozHzLLIAciZIfUmNwdVSDDymoM=
x-amz-request-id: 6VA1B5H88H0NZ2VS
Last-Modified: Thu, 05 Jan 2023 14:44:12 GMT
ETag: "fac400941652b9e4da713b818ca13822"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 3619
Date: Fri, 12 May 2023 08:03:38 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/277880/1672929850/images/logo-red.png
95.101.10.34200 OK 5.4 kB URL GET HTTP/1.1 cdn-adef.akamaized.net/landings/277880/1672929850/images/logo-red.png
IP 95.101.10.34:443
ASN #20940 Akamai International B.V.
Requested by https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File type PNG image data, 100 x 115, 8-bit/color RGBA, non-interlaced\012- data
Hash af5ea8de2e2fa7543cdacc04ad53d4ca
09b884ce4522058ca7fcad459c40d5f30ac3b111
f2a23eb9ee6b06f7b3daaa71257a75fb51832c3956c091741026536b14e4414b
GET /landings/277880/1672929850/images/logo-red.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: PgFqjVlYxMObn7m2ZjgA/1rhRePw5+o9hDZMjtx56cBhk180qXRFO4UaxV+vaGDJnfC9AYTg164=
x-amz-request-id: 6VA2NR2002BN7B8T
Last-Modified: Thu, 05 Jan 2023 14:44:12 GMT
ETag: "af5ea8de2e2fa7543cdacc04ad53d4ca"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 5391
Date: Fri, 12 May 2023 08:03:38 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
route.frest.pro/is_redirect
104.21.77.196200 OK 17 B URL POST HTTP/2 route.frest.pro/is_redirect
IP 104.21.77.196:443
Requested by https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate IssuerGoogle Trust Services LLC
Subjectfrest.pro
FingerprintBF:79:17:15:EB:F6:8D:E0:44:93:02:1B:18:9B:0E:C8:06:68:24:E1
ValidityFri, 14 Apr 2023 08:42:39 GMT - Thu, 13 Jul 2023 08:42:38 GMT
File type JSON data\012- , ASCII text
Hash 6dec798efb56f56f33660938f6249ff6
e889219883cef38754dc1e5df7ca5277b3b314c8
b493cdb3b30ea63f6a924f814dfccfcfe305dac02106f9994ce2bcb2e8ed28c4
POST /is_redirect HTTP/1.1
Host: route.frest.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 10
Origin: https://ptm.totalhighlyefficientdefence.site
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 12 May 2023 08:03:39 GMT
content-type: application/json
content-length: 17
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type, Access-Control-Allow-Headers, X-Requested-With
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nYbk0yU0zGBNPDpz80N%2BZXr98uPERiqSPY2DhSppHGgpZSWmOW3KPfIpYkIlKGsukTgF9BS9V%2BYOWoQc6J7MCirWa9Ugqss%2BAoot1YWShgGqRuQ6dedkxDexgXfuwDtYBLM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6125763a13b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash f67ed24ef92a917ab3c0584fd8978994
9e9be41ca20730ecf2e56a76b9d0a185c2f86f28
c91cfd8a184c61920cadaf8b7d646755cac912da9e61944d51994368be3a9c08
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 12 May 2023 08:03:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn-adef.akamaized.net/landings/277880/1672929850/images/favicon.png?t=20230512080337
95.101.10.34200 OK 5.4 kB URL GET HTTP/1.1 cdn-adef.akamaized.net/landings/277880/1672929850/images/favicon.png?t=20230512080337
IP 95.101.10.34:443
ASN #20940 Akamai International B.V.
Requested by https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File type PNG image data, 100 x 115, 8-bit/color RGBA, non-interlaced\012- data
Hash af5ea8de2e2fa7543cdacc04ad53d4ca
09b884ce4522058ca7fcad459c40d5f30ac3b111
f2a23eb9ee6b06f7b3daaa71257a75fb51832c3956c091741026536b14e4414b
GET /landings/277880/1672929850/images/favicon.png?t=20230512080337 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: HGyxc8ddzrtlYBTtyiDzP0Q3hotttxsCtMCKj+MwsNUIn9tibN27INko47MH3GxWzUCa7RurwbM=
x-amz-request-id: K8KZCEB50R1GCQEM
Last-Modified: Thu, 05 Jan 2023 14:44:12 GMT
ETag: "af5ea8de2e2fa7543cdacc04ad53d4ca"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 5391
Date: Fri, 12 May 2023 08:03:39 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/277880/1672929850/images/favicon.png?t=20230512080337
95.101.10.34200 OK 5.4 kB URL GET HTTP/1.1 cdn-adef.akamaized.net/landings/277880/1672929850/images/favicon.png?t=20230512080337
IP 95.101.10.34:443
ASN #20940 Akamai International B.V.
Requested by https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File type PNG image data, 100 x 115, 8-bit/color RGBA, non-interlaced\012- data
Hash af5ea8de2e2fa7543cdacc04ad53d4ca
09b884ce4522058ca7fcad459c40d5f30ac3b111
f2a23eb9ee6b06f7b3daaa71257a75fb51832c3956c091741026536b14e4414b
GET /landings/277880/1672929850/images/favicon.png?t=20230512080337 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: HGyxc8ddzrtlYBTtyiDzP0Q3hotttxsCtMCKj+MwsNUIn9tibN27INko47MH3GxWzUCa7RurwbM=
x-amz-request-id: K8KZCEB50R1GCQEM
Last-Modified: Thu, 05 Jan 2023 14:44:12 GMT
ETag: "af5ea8de2e2fa7543cdacc04ad53d4ca"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 5391
Date: Fri, 12 May 2023 08:03:39 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
216.58.211.14200 OK 28 kB URL GET HTTP/2 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP 216.58.211.14:443
Requested by https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintA3:4E:A3:86:10:DA:6C:D1:8C:73:54:AB:E6:8F:7D:21:72:2C:B4:D5
ValidityMon, 17 Apr 2023 08:16:32 GMT - Mon, 10 Jul 2023 08:16:31 GMT
File type gzip compressed data, max compression\012- data
Hash 90477a1a095f08150feef5b7abb3686d
69417cbcbec91918b6937217c69fb64c6792a0b5
9f441ba389849aabc1137bf4a31b64e97fc43299a249a0aacf022fcabb0fa486
GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 12 May 2023 08:03:39 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+287; expires=Sun, 11-May-2025 08:03:39 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.vneFu3d_4ck.L.F4.O/d=0/rs=AN8SPfrNa1b9K5rCmaIpu9SqE3A5sBDBfg/m=el_main_css
142.250.74.67200 OK 4.2 kB URL GET HTTP/2 www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.vneFu3d_4ck.L.F4.O/d=0/rs=AN8SPfrNa1b9K5rCmaIpu9SqE3A5sBDBfg/m=el_main_css
IP 142.250.74.67:443
Requested by https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT
File type ASCII text, with very long lines (23228), with no line terminators
Hash edf649e1b11a33833272345187bd4eec
73427e2ab282e5f89021e1c7d20f83eaf9830283
553d768412bca504a0c8771705f681dad359370bdcea637298ca5aa486017a06
GET /_/translate_http/_/ss/k=translate_http.tr.vneFu3d_4ck.L.F4.O/d=0/rs=AN8SPfrNa1b9K5rCmaIpu9SqE3A5sBDBfg/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 4205
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 10 May 2023 00:16:38 GMT
expires: Thu, 09 May 2024 00:16:38 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 12 Mar 2023 00:11:57 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
age: 200821
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 4ca643eb908b2ebf8e99708e63435736
f5fe3576d1fab4b0958e51a59e1c12e2e927de03
a9377a71a606b86c932196ab7efadacb7ec1b93d67e1e3df06d5bfac71161d56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 12 May 2023 08:03:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.Q6C7JDODQ_U.O/d=1/exm=el_conf/ed=1/rs=AN8SPfqetTnnfHrhXZ82n5nqJ2AxgFIXtw/m=el_main
142.250.74.170200 OK 76 kB URL GET HTTP/2 translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.Q6C7JDODQ_U.O/d=1/exm=el_conf/ed=1/rs=AN8SPfqetTnnfHrhXZ82n5nqJ2AxgFIXtw/m=el_main
IP 142.250.74.170:443
Requested by https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint78:3F:7F:CC:E7:90:DA:64:23:AC:13:1E:55:7A:62:1E:2B:E4:30:5C
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT
File type ASCII text, with very long lines (1573)
Hash 89af2a4f63a21bece623f32a2a129e50
b1b6e9d7ee3a1fd4256f92cdd9347173014dc34c
ebde9f239364de4d5178cf65e57cafd8a33acf780df5cb60ecf38a1e6769380b
GET /_/translate_http/_/js/k=translate_http.tr.no.Q6C7JDODQ_U.O/d=1/exm=el_conf/ed=1/rs=AN8SPfqetTnnfHrhXZ82n5nqJ2AxgFIXtw/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 76181
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 May 2023 19:29:44 GMT
expires: Fri, 10 May 2024 19:29:44 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 10 May 2023 21:13:57 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 45235
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 4ca643eb908b2ebf8e99708e63435736
f5fe3576d1fab4b0958e51a59e1c12e2e927de03
a9377a71a606b86c932196ab7efadacb7ec1b93d67e1e3df06d5bfac71161d56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 12 May 2023 08:03:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/images/branding/product/1x/translate_24dp.png
142.250.74.67200 OK 846 B URL GET HTTP/3 www.gstatic.com/images/branding/product/1x/translate_24dp.png
IP 142.250.74.67:443
Requested by https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash e9cd262114358f26b7608b56905185dc
6dbde0a96deaab2b529723ce26c62043cf9180ab
5a861509b658aa24fc3aed2867ac3c061e7d818d90b9990959afc6d1b5d4ff99
GET /images/branding/product/1x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 846
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 10 May 2023 07:43:02 GMT
expires: Thu, 09 May 2024 07:43:02 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
vary: Origin
age: 174037
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/images/branding/product/2x/translate_24dp.png
142.250.74.67200 OK 1.8 kB URL GET HTTP/3 www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP 142.250.74.67:443
Requested by https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82
GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.vneFu3d_4ck.L.F4.O/d=0/rs=AN8SPfrNa1b9K5rCmaIpu9SqE3A5sBDBfg/m=el_main_css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 09 May 2023 05:58:08 GMT
expires: Wed, 08 May 2024 05:58:08 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
vary: Origin
age: 266731
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
142.250.74.170 1.4 kB URL translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
IP 142.250.74.170:0
Hash a3eefe14b1b4698460d992bd1673a26b
a2fca6ebb00b8bdcca3eda88654d02d2c165b9c4
87514750a90cd70dd22c8673cfa80d804ef55840bd0755950af2118d8d218067
GET /v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback HTTP/1.1
Host: translate-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-type: text/javascript; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 12 May 2023 08:03:39 GMT
server: ESF
cache-control: private
content-length: 1392
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=GQ-UFp-MoeZYuNPALZA2oBDFIXq12WjGz6zJYKRVZ6VoAxG3hFQ3_WZ3rhvl0_vqk6U3ulNKT86KNFuQDD8rhv5R0A5QCC3xy4YDScU5pDM_JUu7E1rEHm7bAWk6wwSU9i5F0VjNlgCqy8TXwzxDN01_qt4A52euk9tJBkE4gyg; expires=Sat, 11-Nov-2023 08:03:39 GMT; path=/; domain=.translate-pa.googleapis.com; HttpOnly
CONSENT=PENDING+824; expires=Sun, 11-May-2025 08:03:39 GMT; path=/; domain=.googleapis.com; Secure
expires: Fri, 12 May 2023 08:03:39 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
142.250.74.170200 OK 0 B URL OPTIONS HTTP/3 translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP 142.250.74.170:443
Requested by https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint78:3F:7F:CC:E7:90:DA:64:23:AC:13:1E:55:7A:62:1E:2B:E4:30:5C
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-encoding,content-type,x-goog-authuser
Referer: https://ptm.totalhighlyefficientdefence.site/
Origin: https://ptm.totalhighlyefficientdefence.site
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://ptm.totalhighlyefficientdefence.site
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,content-encoding,content-type,x-goog-authuser,origin
content-type: text/plain; charset=UTF-8
date: Fri, 12 May 2023 08:03:49 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+635; expires=Sun, 11-May-2025 08:03:49 GMT; path=/; domain=.googleapis.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Fri, 12 May 2023 08:03:49 GMT
cache-control: private
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
142.250.74.170200 OK 131 B URL OPTIONS HTTP/3 translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP 142.250.74.170:443
Requested by https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint78:3F:7F:CC:E7:90:DA:64:23:AC:13:1E:55:7A:62:1E:2B:E4:30:5C
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358
POST /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Encoding: gzip
Content-Type: application/binary
Content-Length: 226
Origin: https://ptm.totalhighlyefficientdefence.site
DNT: 1
Connection: keep-alive
Referer: https://ptm.totalhighlyefficientdefence.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://ptm.totalhighlyefficientdefence.site
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Fri, 12 May 2023 08:03:49 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+918; expires=Sun, 11-May-2025 08:03:49 GMT; path=/; domain=.googleapis.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Fri, 12 May 2023 08:03:49 GMT
mywebprotectionguard.com/1326cbf2f489?clickid=bj4kdjlk3gp&bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph
104.21.54.83302 Found 5.3 kB URL User Request GET HTTP/2 mywebprotectionguard.com/1326cbf2f489?clickid=bj4kdjlk3gp&bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph
IP 104.21.54.83:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint63:06:D4:C7:38:67:5A:1C:DC:84:A2:2F:24:08:01:FD:7C:2E:57:CC
ValidityFri, 17 Feb 2023 00:00:00 GMT - Fri, 16 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1326cbf2f489?clickid=bj4kdjlk3gp&bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph HTTP/1.1
Host: mywebprotectionguard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 12 May 2023 08:03:36 GMT
content-type: text/html; charset=utf-8
location: https://ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type, Access-Control-Allow-Headers, X-Requested-With
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=829EQuVaU9QT30VgTYCVjWPTvpfFhqWFHusSuikXfnlP0zqZjrkCVG6g17DObuQpko5os%2FOiCr05PLkucvF39CWOWKG5Zl726fV65BeMlkvfh6LsSAQZu8atvIFJwmqBRGH23rQyNgmxW5c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6125678a5d067b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
52.51.27.131200 OK 5.3 kB URL User Request GET HTTP/2 ptm.totalhighlyefficientdefence.site/c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp
IP 52.51.27.131:443
Certificate IssuerLet's Encrypt
Subjectptm.totalhighlyefficientdefence.site
Fingerprint6C:44:B8:57:B1:B1:95:38:CF:7B:C9:26:FA:24:C3:7D:00:FB:7F:A6
ValidityTue, 21 Mar 2023 00:31:17 GMT - Mon, 19 Jun 2023 00:31:16 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5504), with no line terminators
Hash a155d6901ce2fa6fe7dc11354da5adfa
d6489b8e1a467132b6136e68c709bd752a005c5a
457ecaed057fec240e78f858183c8476090e37c2ee7a7ff103a5d3b89eba54af
GET /c/0ee0b69d1847d43d?bid=0.0059&s1=ph4-mcv4-us&s3=duy&s4=&s5=sj4hvybluwoxcd6&s6=&s7=893428&s8=bvqtma9puph&clickid=bj4kdjlk3gp HTTP/1.1
Host: ptm.totalhighlyefficientdefence.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 12 May 2023 08:03:37 GMT
content-type: text/html; charset=utf-8
set-cookie: unique_id=645df2d9000f729b; Path=/; Expires=Tue, 11 Jul 2023 08:03:37 GMT; Secure; SameSite=None
unique_id2=645df2d9000f7be1; Path=/; Expires=Thu, 10 Aug 2023 08:03:37 GMT; Secure; SameSite=None
impression=; Path=/; Expires=Fri, 12 May 2023 08:03:37 GMT; Secure; SameSite=None
645df2d9000f7be1_sl=[277880]; Path=/; Expires=Fri, 26 May 2023 08:03:37 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2