www.bravopk23.online/
200 OK 46 kB IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subjectwww.bravopk23.online
FingerprintC8:EC:AD:0C:4C:56:32:2D:DA:CF:89:52:61:F9:0F:AA:96:13:CC:72
ValiditySat, 02 Dec 2023 23:02:26 GMT - Fri, 01 Mar 2024 23:50:56 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- exported SGML document text
- exported SGML document, ASCII text, with very long lines (43165)
Hash 42d698c46f777740cb8a43eb2120405e
115d6ea30bffd98f192a806ab6e09917c2afd321
2d0b1512c99ca92ac6775c7a7f9ad0d4b541f0d8532996337533667a1fcc8819
GET / HTTP/1.1
Host: www.bravopk23.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Sun, 10 Dec 2023 04:05:14 GMT
date: Sun, 10 Dec 2023 04:05:14 GMT
cache-control: private, max-age=0
last-modified: Sat, 09 Dec 2023 23:27:31 GMT
etag: W/"e009e5776316130f31f5061c063521e8991a9ac06416512cd9f6e08c89ab5c80"
x-robots-tag: all,noodp
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 45741
server: GSE
X-Firefox-Spdy: h2
www.bravopk23.online/js/cookienotice.js
200 OK 2.0 kB URL GET HTTP/2 www.bravopk23.online/js/cookienotice.js
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subjectwww.bravopk23.online
FingerprintC8:EC:AD:0C:4C:56:32:2D:DA:CF:89:52:61:F9:0F:AA:96:13:CC:72
ValiditySat, 02 Dec 2023 23:02:26 GMT - Fri, 01 Mar 2024 23:50:56 GMT
Hash a705132a2174f88e196ec3610d68faa8
3bad57a48d973a678fec600d45933010f6edc659
068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568
GET /js/cookienotice.js HTTP/1.1
Host: www.bravopk23.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Sun, 10 Dec 2023 04:05:14 GMT
expires: Sun, 17 Dec 2023 04:05:14 GMT
cache-control: public, max-age=604800
last-modified: Sat, 09 Dec 2023 17:52:17 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/3566091532-css_bundle_v2.css
200 OK 7.8 kB URL GET HTTP/2 www.blogger.com/static/v1/widgets/3566091532-css_bundle_v2.css
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCF:95:77:C8:69:0E:25:51:5F:AE:3A:42:33:54:8C:0A:83:04:2B:0B
ValidityMon, 20 Nov 2023 08:02:20 GMT - Mon, 12 Feb 2024 08:02:19 GMT
File type ASCII text, with very long lines (35959)
Hash 1e32420a7b6ddbdcb7def8b3141c4d1e
a1be54d42ff1f95244c9653539f90318f5bc0580
a9ca837900b6ae007386d400f659c233120b8af7d93407fd6475c9180d9e83d2
GET /static/v1/widgets/3566091532-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7756
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:51:35 GMT
expires: Fri, 06 Dec 2024 15:51:35 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 07 Dec 2023 02:07:04 GMT
content-type: text/css
vary: Accept-Encoding
age: 216819
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/3257101978-widgets.js
200 OK 59 kB URL GET HTTP/2 www.blogger.com/static/v1/widgets/3257101978-widgets.js
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCF:95:77:C8:69:0E:25:51:5F:AE:3A:42:33:54:8C:0A:83:04:2B:0B
ValidityMon, 20 Nov 2023 08:02:20 GMT - Mon, 12 Feb 2024 08:02:19 GMT
File type ASCII text, with very long lines (2258)
Hash 9cc8dc0e6d0f57f11091cd51a13d42b1
d308834c5985e4914ebea6cba0e87454b44317d6
4d1b90c8b8826df2fa0d5cd23a4b1fba3fd769b7748e3905e7fa9e119d8525fa
GET /static/v1/widgets/3257101978-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 59300
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:54:58 GMT
expires: Fri, 06 Dec 2024 15:54:58 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 07 Dec 2023 02:07:04 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 216616
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
apis.google.com/js/platform.js
200 OK 22 kB URL GET HTTP/2 apis.google.com/js/platform.js
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.apis.google.com
FingerprintBF:09:8A:B9:E4:51:77:53:17:7A:E6:3F:41:6D:27:35:7B:DD:F5:3D
ValidityMon, 20 Nov 2023 08:09:55 GMT - Mon, 12 Feb 2024 08:09:54 GMT
File type ASCII text, with very long lines (2664)
Hash fd67324a3d81895bdf76b073089663b1
5abb1b0a36c645085e31830e6647faa790ad4e91
8eaa06f95fa0ac44c2c186f200874f2f3ebc3aaa92412f0d0c096f517d3581d1
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-length: 21930
date: Sun, 10 Dec 2023 04:05:14 GMT
expires: Sun, 10 Dec 2023 04:05:14 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "bccfddc1dce4fb76"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
set-cookie: NID=511=Fz9I_QLmfq08qceagjGhftfw8qx6ii2L04sw2c-BuSSRKmdBBbpFTGNIVXSzt22p3IIg-dxoyPOoIog5L-mSIo3nUfXlH-IlwMtGMNKLqkl8RHDY6gUyY7zKA-QsfriXR5QAT79hfhv9L-wbFRRNHLBhp_KqJjeOfClboJ_Oje0; expires=Mon, 10-Jun-2024 04:05:14 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/1.11.0/jquery.min.js
200 OK 34 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.11.0/jquery.min.js
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC
ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT
File type ASCII text, with very long lines (32341)
Hash 8fc25e27d42774aeae6edbc0a18b72aa
b66ed708717bf0b4a005a4d0113af8843ef3b8ff
b294e973896f8f874e90a8eb1a8908ac790980d034c4c4bdf0fc3d37b8abf682
GET /ajax/libs/jquery/1.11.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33576
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 08 Dec 2023 11:47:56 GMT
expires: Sat, 07 Dec 2024 11:47:56 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 145038
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
3.bp.blogspot.com/-3X3O9B5bPLc/W6JTfdl9TMI/AAAAAAAADM4/arumLoQEy-Q-yR076oMt_gQc3Z3DizU8ACK4BGAYYCw/s1600/ads.png
200 OK 2.4 kB URL GET HTTP/2 3.bp.blogspot.com/-3X3O9B5bPLc/W6JTfdl9TMI/AAAAAAAADM4/arumLoQEy-Q-yR076oMt_gQc3Z3DizU8ACK4BGAYYCw/s1600/ads.png
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint43:AC:39:6C:AE:49:5A:3C:5B:A3:B9:1F:27:A0:A4:5F:2D:20:3E:D1
ValidityMon, 20 Nov 2023 08:07:41 GMT - Mon, 12 Feb 2024 08:07:40 GMT
File type PNG image data, 630 x 88, 8-bit/color RGB, non-interlaced
- data
Hash 72ae49f8527bd9eee939c284fed01edc
583489ffd1f308d891dae3e009d24f9ceea412a6
6decf0fc286252dbab048032de1af831e02414f7f90bee51c4cda9cb5699371a
GET /-3X3O9B5bPLc/W6JTfdl9TMI/AAAAAAAADM4/arumLoQEy-Q-yR076oMt_gQc3Z3DizU8ACK4BGAYYCw/s1600/ads.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="ads.png"
x-content-type-options: nosniff
server: fife
content-length: 2409
x-xss-protection: 0
date: Sun, 10 Dec 2023 04:05:14 GMT
expires: Mon, 11 Dec 2023 04:05:14 GMT
cache-control: public, max-age=86400, no-transform
etag: "vccf"
content-type: image/png
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pl19119417.highrevenuegate.com/c608f931bc1e2a46c5791102dca08faa/invoke.js
200 OK 9.3 kB URL GET HTTP/1.1 pl19119417.highrevenuegate.com/c608f931bc1e2a46c5791102dca08faa/invoke.js
IP
Requested by https://www.bravopk23.online/
Certificate IssuerLet's Encrypt
Subjecthighrevenuegate.com
Fingerprint67:F5:FF:FF:6C:AF:E9:0E:DF:61:91:71:1C:EF:77:3F:A2:E1:8C:D8
ValidityMon, 30 Oct 2023 07:17:57 GMT - Sun, 28 Jan 2024 07:17:56 GMT
File type Unicode text, UTF-8 text, with very long lines (25067), with no line terminators
Hash b2c8227ae5eb52f06576cd67588e1f57
150f7c61f52a5896551f07a409648c67ffd7db00
0aab61d4a108aaddca54e1315af2e5de1d4b1b36e13ec5a53b869131f1858c53
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /c608f931bc1e2a46c5791102dca08faa/invoke.js HTTP/1.1
Host: pl19119417.highrevenuegate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 10 Dec 2023 04:05:15 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a28ef4ce164335dad9f31abc253d2fdf
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
pl19119061.highrevenuegate.com/f0/ea/63/f0ea6392bccbe0c3288deb6a1e34af9d.js
200 OK 25 kB URL GET HTTP/1.1 pl19119061.highrevenuegate.com/f0/ea/63/f0ea6392bccbe0c3288deb6a1e34af9d.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.bravopk23.online/
Certificate IssuerLet's Encrypt
Subjecthighrevenuegate.com
Fingerprint67:F5:FF:FF:6C:AF:E9:0E:DF:61:91:71:1C:EF:77:3F:A2:E1:8C:D8
ValidityMon, 30 Oct 2023 07:17:57 GMT - Sun, 28 Jan 2024 07:17:56 GMT
File type ASCII text, with very long lines (62777)
Hash ccbc9ee6575afe261da58c8c2983fc38
8083377a2a236d3d60f8aecbadbee281ac82db7e
a6a15d4ca8eecc850560556bb336971384131607384e6b7a91d1f346abe9058b
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /f0/ea/63/f0ea6392bccbe0c3288deb6a1e34af9d.js HTTP/1.1
Host: pl19119061.highrevenuegate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 10 Dec 2023 04:05:15 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_CF-2805_0=1; expires=Wed, 13 Dec 2023 12:05:15 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d73a28406c6f80eb97951505420d9c21
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
pl19119109.highrevenuegate.com/e7/15/c5/e715c50ae8ef81b5e2ea6012b4d0d459.js
200 OK 15 kB URL GET HTTP/1.1 pl19119109.highrevenuegate.com/e7/15/c5/e715c50ae8ef81b5e2ea6012b4d0d459.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.bravopk23.online/
Certificate IssuerLet's Encrypt
Subjecthighrevenuegate.com
Fingerprint67:F5:FF:FF:6C:AF:E9:0E:DF:61:91:71:1C:EF:77:3F:A2:E1:8C:D8
ValidityMon, 30 Oct 2023 07:17:57 GMT - Sun, 28 Jan 2024 07:17:56 GMT
File type ASCII text, with very long lines (42206), with no line terminators
Hash e881a24c2ce63fc363dd2b4698f56d52
e4cc99fba271cab6f1502664d3eedece98e6beb0
60346487ed09d390a0e162ceef8993f2d1857141bc423f662e9fc46fe2fcd878
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /e7/15/c5/e715c50ae8ef81b5e2ea6012b4d0d459.js HTTP/1.1
Host: pl19119109.highrevenuegate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 10 Dec 2023 04:05:15 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c18d1280985783d73973c6b6bc7ab8e0
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
1.bp.blogspot.com/-LeOd3ALR2xA/UbmVttsOBZI/AAAAAAAABZg/Qp8oxTLN_x4/s1600/bg.png
200 OK 2.9 kB URL GET HTTP/3 1.bp.blogspot.com/-LeOd3ALR2xA/UbmVttsOBZI/AAAAAAAABZg/Qp8oxTLN_x4/s1600/bg.png
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint43:AC:39:6C:AE:49:5A:3C:5B:A3:B9:1F:27:A0:A4:5F:2D:20:3E:D1
ValidityMon, 20 Nov 2023 08:07:41 GMT - Mon, 12 Feb 2024 08:07:40 GMT
File type PNG image data, 99 x 99, 8-bit colormap, non-interlaced
- data
Hash ab25e409f981e3379a25153a5f473b60
92011e07f37a15fd9302c23c081645c10bc16283
32df16fb278d8f2f3340202fda7810da07736103323da7ab658378c64f64af03
GET /-LeOd3ALR2xA/UbmVttsOBZI/AAAAAAAABZg/Qp8oxTLN_x4/s1600/bg.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="bg.png"
x-content-type-options: nosniff
server: fife
content-length: 2891
x-xss-protection: 0
date: Sun, 10 Dec 2023 02:19:02 GMT
expires: Mon, 11 Dec 2023 02:19:02 GMT
cache-control: public, max-age=86400, no-transform
age: 6373
etag: "v599"
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
proftrafficcounter.com/stats
200 OK 40 B URL GET HTTP/2 proftrafficcounter.com/stats
IP
Requested by https://www.bravopk23.online/
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 5baa2b41a35849f4d476b5ac0c19d65d
4b681a8954de7b41e729c8f24d7f08de2a1e658f
e9b8612088e6540c2e27be18f371563a0638815edbe7fd81757aee3c33733071
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bravopk23.online
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:05:15 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.bravopk23.online
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=7a66f60a-f1d7-4f16-80ab-58cdee5db272:3:1; expires=Wed, 07 Dec 2033 04:05:15 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
200 OK 77 kB URL GET HTTP/3 maxcdn.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint34:BC:91:5F:B9:EC:32:2C:D9:73:C7:88:C3:6C:FB:77:E7:70:8D:04
ValidityThu, 30 Nov 2023 00:15:17 GMT - Wed, 28 Feb 2024 00:15:16 GMT
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459
- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.bravopk23.online
DNT: 1
Connection: keep-alive
Referer: https://maxcdn.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 10 Dec 2023 04:05:15 GMT
content-type: font/woff2
content-length: 77160
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "af7ae505a9eed503f8b8e6982036873e"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 10/31/2023 19:08:24
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 752
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: ce6021ed9dc91b3c3be72140cf8e35cd
cdn-cache: HIT
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 83329bc46adc56c9-OSL
alt-svc: h3=":443"; ma=86400
follow.it/static/img/colored-logo.svg
200 OK 1.8 kB URL GET HTTP/2 follow.it/static/img/colored-logo.svg
IP
Requested by https://www.bravopk23.online/
Certificate IssuerLet's Encrypt
Subjectfollow.it
Fingerprint9D:C4:D3:4F:22:FF:27:B4:D6:A2:C9:B5:8F:83:10:A6:94:4D:72:EB
ValidityFri, 24 Nov 2023 12:51:54 GMT - Thu, 22 Feb 2024 12:51:53 GMT
File type SVG Scalable Vector Graphics image
- , ASCII text, with very long lines (3885), with no line terminators
Hash 380f6607bcf05ae8b50b31f1cd48680d
1adeabe6791eaf0b8b62a12b4cb399812392b307
a97ad37ecc6f17cc843ab6ba6b6a4ec3cb0d30f26ec7a520e1e9eb85e586cd66
GET /static/img/colored-logo.svg HTTP/1.1
Host: follow.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:05:14 GMT
content-type: image/svg+xml
last-modified: Fri, 08 Dec 2023 08:50:36 GMT
etag: W/"6572d8dc-f2d"
x-frame-options: DENY
content-security-policy: frame-ancestors 'self';
x-content-type-options: nosniff
strict-transport-security: max-age=600; includeSubdomains;
cache-control: max-age=14400
cf-cache-status: HIT
age: 3201
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7IQwAibPIK0vJea1z4BrmhVAzAYumxDDkBaxiNa%2BcBW6iitOXAVpmECPWGfLQj1je2Pg%2BF6Dj9cVpsxLrGP%2BrYj%2F6OBXMQhriaej%2BfJnJbNsrEm7EXXDci0TFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83329bbe9f4656c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 48 kB URL GET HTTP/3 fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 48432, version 1.0
- data
Hash e2d74c5e631bc53a7240bbfe4be99c8f
eb513857bb01cc4f7249067fc7e969bef415fc90
9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5
GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.bravopk23.online
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 05:00:58 GMT
expires: Fri, 06 Dec 2024 05:00:58 GMT
cache-control: public, max-age=31536000
age: 255857
last-modified: Thu, 14 Sep 2023 00:40:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oswald/v53/TK3iWkUHHAIjg752GT8G.woff2
200 OK 28 kB URL GET HTTP/3 fonts.gstatic.com/s/oswald/v53/TK3iWkUHHAIjg752GT8G.woff2
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 28512, version 1.0
- data
Hash 16cba75f4b9969077ff30bea2f494e12
71b32a3bbcc6157da9d52accf124660a3cfc66dc
241ced7f220982f5679a64cc6db34ed42cd21274508cc5814616d9efe374afde
GET /s/oswald/v53/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.bravopk23.online
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28512
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 06 Dec 2023 21:37:36 GMT
expires: Thu, 05 Dec 2024 21:37:36 GMT
cache-control: public, max-age=31536000
age: 282459
last-modified: Tue, 15 Aug 2023 18:44:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.profitabledisplaynetwork.com/2ddd7435bf049ca768dbc4d1791350ee/invoke.js
200 OK 11 kB URL GET HTTP/1.1 www.profitabledisplaynetwork.com/2ddd7435bf049ca768dbc4d1791350ee/invoke.js
IP
Requested by https://www.bravopk23.online/
Certificate IssuerLet's Encrypt
Subjectprofitabledisplaynetwork.com
FingerprintF8:76:7B:6D:E9:49:0F:FE:3A:DE:54:8B:28:91:35:99:76:99:8E:89
ValiditySun, 29 Oct 2023 07:30:47 GMT - Sat, 27 Jan 2024 07:30:46 GMT
File type exported SGML document, ASCII text, with very long lines (29601), with no line terminators
Hash fe92bac078a9310b3e3ea6e1ebe256c3
ae6722a4da7786e1f892fbcc409222b0e1fd0dde
0d2c0a8ac7bcc2d27c35b17363d84cc01fc154c449f4e835ed8cf7633ae01176
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /2ddd7435bf049ca768dbc4d1791350ee/invoke.js HTTP/1.1
Host: www.profitabledisplaynetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 10 Dec 2023 04:05:15 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c0680a9040819f68a5a756f3ad318a88
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
fonts.gstatic.com/s/shadowsintolight/v19/UqyNK9UOIntux_czAvDQx_ZcHqZXBNQzdcD5.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/shadowsintolight/v19/UqyNK9UOIntux_czAvDQx_ZcHqZXBNQzdcD5.woff2
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 16296, version 1.0
- data
Hash ab4a2c11e0a08a8b4fa7846c2adcc173
86304ab63791be3a22e5eb673245bca6351774a2
2498c027559c4ae9a920e18e30031193148983e7ea195416d62c5d0ea2eaa3ac
GET /s/shadowsintolight/v19/UqyNK9UOIntux_czAvDQx_ZcHqZXBNQzdcD5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.bravopk23.online
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16296
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 04:58:38 GMT
expires: Fri, 06 Dec 2024 04:58:38 GMT
cache-control: public, max-age=31536000
age: 255998
last-modified: Thu, 24 Aug 2023 17:21:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pl19119417.highrevenuegate.com/c608f931bc1e2a46c5791102dca08faa/invoke.js
200 OK 9.3 kB URL GET HTTP/1.1 pl19119417.highrevenuegate.com/c608f931bc1e2a46c5791102dca08faa/invoke.js
IP
Requested by https://www.bravopk23.online/
Certificate IssuerLet's Encrypt
Subjecthighrevenuegate.com
Fingerprint67:F5:FF:FF:6C:AF:E9:0E:DF:61:91:71:1C:EF:77:3F:A2:E1:8C:D8
ValidityMon, 30 Oct 2023 07:17:57 GMT - Sun, 28 Jan 2024 07:17:56 GMT
File type Unicode text, UTF-8 text, with very long lines (25099), with no line terminators
Hash 7c87a9647cc4cadf94aca222e8324711
a55a78dad418f4a2928faf4667e8f64968402950
6198ff1fc016207fa7a0d9986758b2a51b4428fff1d662b0a3719a3500c79d78
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /c608f931bc1e2a46c5791102dca08faa/invoke.js HTTP/1.1
Host: pl19119417.highrevenuegate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 10 Dec 2023 04:05:16 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 25e7ee9154f3c2d90483ab4b0df7abe2
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
www.profitabledisplaynetwork.com/24b938e81222eeeae582237f3b9ed88a/invoke.js
200 OK 11 kB URL GET HTTP/1.1 www.profitabledisplaynetwork.com/24b938e81222eeeae582237f3b9ed88a/invoke.js
IP
Requested by https://www.bravopk23.online/
Certificate IssuerLet's Encrypt
Subjectprofitabledisplaynetwork.com
FingerprintF8:76:7B:6D:E9:49:0F:FE:3A:DE:54:8B:28:91:35:99:76:99:8E:89
ValiditySun, 29 Oct 2023 07:30:47 GMT - Sat, 27 Jan 2024 07:30:46 GMT
File type exported SGML document, ASCII text, with very long lines (29613), with no line terminators
Hash 7694578f90a0016056e67ca3f7d42383
3955c62acfcabc57dc0d73111009220043e6de87
07f3db591fcf673e703b4f9832250504f47a49dfb81a8a1eed033e0dd3e6b31c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /24b938e81222eeeae582237f3b9ed88a/invoke.js HTTP/1.1
Host: www.profitabledisplaynetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 10 Dec 2023 04:05:16 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: bbd776ffbe71bd302d0de85d853b179f
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 48 kB URL GET HTTP/3 fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 48432, version 1.0
- data
Hash e2d74c5e631bc53a7240bbfe4be99c8f
eb513857bb01cc4f7249067fc7e969bef415fc90
9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5
GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.bravopk23.online
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 05:00:58 GMT
expires: Fri, 06 Dec 2024 05:00:58 GMT
cache-control: public, max-age=31536000
age: 255858
last-modified: Thu, 14 Sep 2023 00:40:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/s/player/dee96cfa/player_ias.vflset/en_US/embed.js
200 OK 17 kB URL GET HTTP/3 www.youtube.com/s/player/dee96cfa/player_ias.vflset/en_US/embed.js
IP
Requested by https://www.youtube.com/embed/1FeDUuLxBYM
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:3A:D9:47:14:B0:78:30:A1:BF:B4:45:F6:F5:81:AD:0A:C7:76:89
ValidityMon, 20 Nov 2023 08:02:55 GMT - Mon, 12 Feb 2024 08:02:54 GMT
File type ASCII text, with very long lines (3391)
Hash df85dab4bd2c9e763cb34bac44efd4fb
86f3f89a1257552c84d57e443f48a86e5f2659e2
611d7644cd2a2c305f04d2cd594aeb6e4ae81d2776ef4955f923e913f99bc615
GET /s/player/dee96cfa/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/1FeDUuLxBYM
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 16903
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:55:01 GMT
expires: Fri, 06 Dec 2024 15:55:01 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 06 Dec 2023 02:46:57 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 216615
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/s/player/dee96cfa/www-player.css
200 OK 48 kB URL GET HTTP/3 www.youtube.com/s/player/dee96cfa/www-player.css
IP
Requested by https://www.youtube.com/embed/1FeDUuLxBYM
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:3A:D9:47:14:B0:78:30:A1:BF:B4:45:F6:F5:81:AD:0A:C7:76:89
ValidityMon, 20 Nov 2023 08:02:55 GMT - Mon, 12 Feb 2024 08:02:54 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 845ee0ded13b742ad523443fddc5545f
577a5583a2cc9f7fbf229dbfffbecbe5439245f3
c8cf595211c3780ca984d79461caff6908401386ebb9894598ecadc396e22e1f
GET /s/player/dee96cfa/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/1FeDUuLxBYM
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 48216
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:40:38 GMT
expires: Fri, 06 Dec 2024 15:40:38 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 06 Dec 2023 02:46:57 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 217478
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://www.youtube.com/embed/1FeDUuLxBYM
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:54:46 GMT
expires: Fri, 06 Dec 2024 15:54:46 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 216630
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/s/player/dee96cfa/www-embed-player.vflset/www-embed-player.js
200 OK 99 kB URL GET HTTP/3 www.youtube.com/s/player/dee96cfa/www-embed-player.vflset/www-embed-player.js
IP
Requested by https://www.youtube.com/embed/1FeDUuLxBYM
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:3A:D9:47:14:B0:78:30:A1:BF:B4:45:F6:F5:81:AD:0A:C7:76:89
ValidityMon, 20 Nov 2023 08:02:55 GMT - Mon, 12 Feb 2024 08:02:54 GMT
File type ASCII text, with very long lines (682)
Hash 1ec56351518b48128e4142b179f11741
3825a262c5751358078c8150ad125abed66a6d10
749b479a8548e5751006d04e185368e48db0d7ceac3ba359d25db43fd6c24089
GET /s/player/dee96cfa/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/1FeDUuLxBYM
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 98658
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:54:59 GMT
expires: Fri, 06 Dec 2024 15:54:59 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 06 Dec 2023 02:46:57 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 216617
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
Requested by https://www.youtube.com/embed/1FeDUuLxBYM
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0
- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:43:10 GMT
expires: Fri, 06 Dec 2024 15:43:10 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 217326
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.profitabledisplaynetwork.com/24b938e81222eeeae582237f3b9ed88a/invoke.js
200 OK 11 kB URL GET HTTP/1.1 www.profitabledisplaynetwork.com/24b938e81222eeeae582237f3b9ed88a/invoke.js
IP
Requested by https://www.bravopk23.online/
Certificate IssuerLet's Encrypt
Subjectprofitabledisplaynetwork.com
FingerprintF8:76:7B:6D:E9:49:0F:FE:3A:DE:54:8B:28:91:35:99:76:99:8E:89
ValiditySun, 29 Oct 2023 07:30:47 GMT - Sat, 27 Jan 2024 07:30:46 GMT
File type exported SGML document, ASCII text, with very long lines (29628), with no line terminators
Hash 8c0a0c3c8408135cf1896c4e564c0655
b5b3ff1f8ec8d7ed177afaeb647072aeed3099f0
1e080f521aa690b988fb9ae615dce98e48b74906ad3b65b3604cecb680323c17
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /24b938e81222eeeae582237f3b9ed88a/invoke.js HTTP/1.1
Host: www.profitabledisplaynetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 10 Dec 2023 04:05:16 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d16fb66e3f7a8cd20e36b549d64ed494
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
www.youtube.com/s/player/dee96cfa/player_ias.vflset/en_US/base.js
200 OK 785 kB URL GET HTTP/3 www.youtube.com/s/player/dee96cfa/player_ias.vflset/en_US/base.js
IP
Requested by https://www.youtube.com/embed/1FeDUuLxBYM
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:3A:D9:47:14:B0:78:30:A1:BF:B4:45:F6:F5:81:AD:0A:C7:76:89
ValidityMon, 20 Nov 2023 08:02:55 GMT - Mon, 12 Feb 2024 08:02:54 GMT
File type ASCII text, with very long lines (555)
Size 785 kB (785445 bytes)
Hash 9459127d7e5023c6be7247a7ad4c0dfa
a1dff52b1aaaf8e7796b9d656a3cb6547ab0d3c0
3ff5693fee0b60651698141bd74761199a493fb834c1ceba6ceeb21d510de528
GET /s/player/dee96cfa/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/1FeDUuLxBYM
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-encoding: gzip
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 785445
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 16:12:41 GMT
expires: Fri, 06 Dec 2024 16:12:41 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 06 Dec 2023 02:46:57 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 215555
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.profitabledisplaynetwork.com/24b938e81222eeeae582237f3b9ed88a/invoke.js
200 OK 11 kB URL GET HTTP/1.1 www.profitabledisplaynetwork.com/24b938e81222eeeae582237f3b9ed88a/invoke.js
IP
Requested by https://www.bravopk23.online/
Certificate IssuerLet's Encrypt
Subjectprofitabledisplaynetwork.com
FingerprintF8:76:7B:6D:E9:49:0F:FE:3A:DE:54:8B:28:91:35:99:76:99:8E:89
ValiditySun, 29 Oct 2023 07:30:47 GMT - Sat, 27 Jan 2024 07:30:46 GMT
File type exported SGML document, ASCII text, with very long lines (29592), with no line terminators
Hash 7587d469076bccf91965753c1778ba3a
cf8755f06e2d2a717bd9a361dad1bc3260f5fe0b
054189dbce592665bd99e1bd6f9dcb58ff67de0345624c7888325a1e5fa56437
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /24b938e81222eeeae582237f3b9ed88a/invoke.js HTTP/1.1
Host: www.profitabledisplaynetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 10 Dec 2023 04:05:16 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9de1ad80d86a043eb741934adad03fe1
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
heartlessrigid.com/watch.248018250526.js?key=2ddd7435bf049ca768dbc4d1791350ee&kw=%5B%22bravopk23%22%5D&refer=https%3A%2F%2Fwww.bravopk23.online%2F&tz=0&dev=e&res=14.3095&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1
307 Temporary Redirect 0 B URL GET HTTP/1.1 heartlessrigid.com/watch.248018250526.js?key=2ddd7435bf049ca768dbc4d1791350ee&kw=%5B%22bravopk23%22%5D&refer=https%3A%2F%2Fwww.bravopk23.online%2F&tz=0&dev=e&res=14.3095&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.bravopk23.online/
Certificate IssuerLet's Encrypt
Subjectheartlessrigid.com
Fingerprint76:EF:2B:18:AA:CA:E8:69:B6:E3:5B:67:FA:C2:38:7D:FD:63:47:B3
ValidityTue, 28 Nov 2023 11:04:43 GMT - Mon, 26 Feb 2024 11:04:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.248018250526.js?key=2ddd7435bf049ca768dbc4d1791350ee&kw=%5B%22bravopk23%22%5D&refer=https%3A%2F%2Fwww.bravopk23.online%2F&tz=0&dev=e&res=14.3095&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1 HTTP/1.1
Host: heartlessrigid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bravopk23.online
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Sun, 10 Dec 2023 04:05:16 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.bravopk23.online
Access-Control-Allow-Origin: https://www.bravopk23.online
Access-Control-Allow-Credentials: true
Location: https://heartlessrigid.com/watch.248018250526.js?key=2ddd7435bf049ca768dbc4d1791350ee&kw=%5B%22bravopk23%22%5D&refer=https%3A%2F%2Fwww.bravopk23.online%2F&tz=0&dev=e&res=14.3095&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1&shu=6f378e7c65a9fedbd81a86afa70f302ba33ff79c5d8b60287220002849da3abb2c995af4f1fa998c9fd3d4070c1ec83d1692c5c056f443358674439381c3baa7f1f34ce3b068a4caf7fff97846bde99c0a74d58522c8345b275cdc497c&pst=1702181176&rmtc=t
Set-Cookie: u_pl=19018503; expires=Mon, 11 Dec 2023 04:05:16 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.brhT4Zw4A25kovTXBVgQDpL9rwqxWnUmWn8qocyrEdU; expires=Sun, 10 Dec 2023 04:06:16 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 79c921c54200e8cdaede5c3bb5205474
Strict-Transport-Security: max-age=0; includeSubdomains
heartlessrigid.com/watch.248018250526.js?key=2ddd7435bf049ca768dbc4d1791350ee&kw=%5B%22bravopk23%22%5D&refer=https%3A%2F%2Fwww.bravopk23.online%2F&tz=0&dev=e&res=14.3095&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1&shu=6f378e7c65a9fedbd81a86afa70f302ba33ff79c5d8b60287220002849da3abb2c995af4f1fa998c9fd3d4070c1ec83d1692c5c056f443358674439381c3baa7f1f34ce3b068a4caf7fff97846bde99c0a74d58522c8345b275cdc497c&pst=1702181176&rmtc=t
200 OK 0 B URL GET HTTP/1.1 heartlessrigid.com/watch.248018250526.js?key=2ddd7435bf049ca768dbc4d1791350ee&kw=%5B%22bravopk23%22%5D&refer=https%3A%2F%2Fwww.bravopk23.online%2F&tz=0&dev=e&res=14.3095&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1&shu=6f378e7c65a9fedbd81a86afa70f302ba33ff79c5d8b60287220002849da3abb2c995af4f1fa998c9fd3d4070c1ec83d1692c5c056f443358674439381c3baa7f1f34ce3b068a4caf7fff97846bde99c0a74d58522c8345b275cdc497c&pst=1702181176&rmtc=t
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.bravopk23.online/
Certificate IssuerLet's Encrypt
Subjectheartlessrigid.com
Fingerprint76:EF:2B:18:AA:CA:E8:69:B6:E3:5B:67:FA:C2:38:7D:FD:63:47:B3
ValidityTue, 28 Nov 2023 11:04:43 GMT - Mon, 26 Feb 2024 11:04:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.248018250526.js?key=2ddd7435bf049ca768dbc4d1791350ee&kw=%5B%22bravopk23%22%5D&refer=https%3A%2F%2Fwww.bravopk23.online%2F&tz=0&dev=e&res=14.3095&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1&shu=6f378e7c65a9fedbd81a86afa70f302ba33ff79c5d8b60287220002849da3abb2c995af4f1fa998c9fd3d4070c1ec83d1692c5c056f443358674439381c3baa7f1f34ce3b068a4caf7fff97846bde99c0a74d58522c8345b275cdc497c&pst=1702181176&rmtc=t HTTP/1.1
Host: heartlessrigid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bravopk23.online
Referer: https://www.bravopk23.online/
DNT: 1
Connection: keep-alive
Cookie: u_pl=19018503; ain=eyJhbGciOiJIUzI1NiJ9.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.brhT4Zw4A25kovTXBVgQDpL9rwqxWnUmWn8qocyrEdU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 10 Dec 2023 04:05:16 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.bravopk23.online
Access-Control-Allow-Origin: https://www.bravopk23.online
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=7a66f60a-f1d7-4f16-80ab-58cdee5db272:3:1; expires=Sun, 17 Dec 2023 04:05:16 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 25e67b263a7758c27afd6350240024ed
Strict-Transport-Security: max-age=0; includeSubdomains
henriettaproducesdecide.com/watch.949554020307.js?key=24b938e81222eeeae582237f3b9ed88a&kw=%5B%22bravopk23%22%5D&refer=https%3A%2F%2Fwww.bravopk23.online%2F&tz=0&dev=e&res=14.3095&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1
307 Temporary Redirect 0 B URL GET HTTP/1.1 henriettaproducesdecide.com/watch.949554020307.js?key=24b938e81222eeeae582237f3b9ed88a&kw=%5B%22bravopk23%22%5D&refer=https%3A%2F%2Fwww.bravopk23.online%2F&tz=0&dev=e&res=14.3095&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.bravopk23.online/
Certificate IssuerLet's Encrypt
Subjecthenriettaproducesdecide.com
Fingerprint4B:30:4E:24:E8:06:9A:30:91:C2:BA:59:F9:27:A8:89:C3:1B:76:80
ValidityTue, 28 Nov 2023 11:01:01 GMT - Mon, 26 Feb 2024 11:01:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.949554020307.js?key=24b938e81222eeeae582237f3b9ed88a&kw=%5B%22bravopk23%22%5D&refer=https%3A%2F%2Fwww.bravopk23.online%2F&tz=0&dev=e&res=14.3095&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1 HTTP/1.1
Host: henriettaproducesdecide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bravopk23.online
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Sun, 10 Dec 2023 04:05:16 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.bravopk23.online
Access-Control-Allow-Origin: https://www.bravopk23.online
Access-Control-Allow-Credentials: true
Location: https://henriettaproducesdecide.com/watch.949554020307.js?key=24b938e81222eeeae582237f3b9ed88a&kw=%5B%22bravopk23%22%5D&refer=https%3A%2F%2Fwww.bravopk23.online%2F&tz=0&dev=e&res=14.3095&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1&shu=272bcbc2630ee6b35ff5ad5f03ef3f9f1caa007c578bd55a7962b2e9bf0e0b03cd2fd9dfa9865708c608a58e155ac8ef948a3ab7433f69b87481466ef9a67616e7f506a961166fdd41e6721b7577bcd6d3e7d457de6f7f8b70ef0d85e7e7d9&pst=1702181176&rmtc=t
Set-Cookie: u_pl=19020881; expires=Mon, 11 Dec 2023 04:05:16 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.zHBxTXc2a52qy149lVj5g6xv4eR-5OIgkr_dP711CIQ; expires=Sun, 10 Dec 2023 04:06:16 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6a9ac15517ec301ca40f1b5ede6fee1c
Strict-Transport-Security: max-age=0; includeSubdomains
perspirationfraction.com/pixel/nvwbdp?key=c608f931bc1e2a46c5791102dca08faa
200 OK 0 B URL GET HTTP/1.1 perspirationfraction.com/pixel/nvwbdp?key=c608f931bc1e2a46c5791102dca08faa
IP
Requested by https://www.bravopk23.online/
Certificate IssuerLet's Encrypt
Subjectperspirationfraction.com
Fingerprint19:0B:C2:9B:C0:F1:37:D8:50:FE:2E:3D:11:E0:69:E9:1B:96:38:F8
ValidityTue, 28 Nov 2023 08:02:25 GMT - Mon, 26 Feb 2024 08:02:24 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/nvwbdp?key=c608f931bc1e2a46c5791102dca08faa HTTP/1.1
Host: perspirationfraction.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 10 Dec 2023 04:05:17 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
dinnercreekawkward.com/watch.1421771829767.js?key=24b938e81222eeeae582237f3b9ed88a&kw=%5B%22bravopk23%22%5D&refer=https%3A%2F%2Fwww.bravopk23.online%2F&tz=0&dev=e&res=14.3095&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1
307 Temporary Redirect 0 B URL GET HTTP/1.1 dinnercreekawkward.com/watch.1421771829767.js?key=24b938e81222eeeae582237f3b9ed88a&kw=%5B%22bravopk23%22%5D&refer=https%3A%2F%2Fwww.bravopk23.online%2F&tz=0&dev=e&res=14.3095&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1
IP
Requested by https://www.bravopk23.online/
Certificate IssuerLet's Encrypt
Subjectdinnercreekawkward.com
FingerprintB2:D1:EE:BB:1F:C3:19:F3:64:BA:5A:2E:94:6C:3A:73:DE:CA:9B:DB
ValidityTue, 28 Nov 2023 11:00:28 GMT - Mon, 26 Feb 2024 11:00:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.1421771829767.js?key=24b938e81222eeeae582237f3b9ed88a&kw=%5B%22bravopk23%22%5D&refer=https%3A%2F%2Fwww.bravopk23.online%2F&tz=0&dev=e&res=14.3095&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1 HTTP/1.1
Host: dinnercreekawkward.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bravopk23.online
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Sun, 10 Dec 2023 04:05:17 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.bravopk23.online
Access-Control-Allow-Origin: https://www.bravopk23.online
Access-Control-Allow-Credentials: true
Location: https://dinnercreekawkward.com/watch.1421771829767.js?key=24b938e81222eeeae582237f3b9ed88a&kw=%5B%22bravopk23%22%5D&refer=https%3A%2F%2Fwww.bravopk23.online%2F&tz=0&dev=e&res=14.3095&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1&shu=dfd3640b4fafe1ce313b6f4d77ab894b1702a7f4e79b25aac101cd8aae632baa85bf68ac21644bbc64a5c4838d6c207030f85123e7af2a76e5af868a570f72d9d1805c7fd33c82ddab85b8d71966f378426fbd71f0adb8eb52e8ca301a86&pst=1702181177&rmtc=t
Set-Cookie: u_pl=19020881; expires=Mon, 11 Dec 2023 04:05:17 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.zHBxTXc2a52qy149lVj5g6xv4eR-5OIgkr_dP711CIQ; expires=Sun, 10 Dec 2023 04:06:17 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e65324c213e818b74f9af09fa55f827d
Strict-Transport-Security: max-age=0; includeSubdomains
fonts.googleapis.com/css?family=Open+Sans:400,400italic,700,700italic%7COswald:300,400,700%7CShadows+Into+Light
200 OK 41 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,400italic,700,700italic%7COswald:300,400,700%7CShadows+Into+Light
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC
ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT
File type gzip compressed data, max compression
- data
Hash 248bb0df51595c52aa25b978671d85f0
0f47263a20b78e1d01fa55f04c773a001c33eaee
5afe41604b4843bc191080eaa62594983dd3f5b29021c91a9a3a297b578a6a6b
GET /css?family=Open+Sans:400,400italic,700,700italic%7COswald:300,400,700%7CShadows+Into+Light HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 10 Dec 2023 04:05:14 GMT
date: Sun, 10 Dec 2023 04:05:14 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
heartsawpeat.com/ntv.json?key=c608f931bc1e2a46c5791102dca08faa&vstc=4&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1&custom=%7B%22d37e3bc4%22%3A%22b%22%7D
200 OK 0 B URL GET HTTP/1.1 heartsawpeat.com/ntv.json?key=c608f931bc1e2a46c5791102dca08faa&vstc=4&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1&custom=%7B%22d37e3bc4%22%3A%22b%22%7D
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.bravopk23.online/
Certificate IssuerLet's Encrypt
Subjectheartsawpeat.com
FingerprintC5:71:E2:53:3A:54:3F:49:02:96:7F:A3:FC:2B:32:53:3E:F4:FD:9D
ValidityTue, 28 Nov 2023 07:50:52 GMT - Mon, 26 Feb 2024 07:50:51 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ntv.json?key=c608f931bc1e2a46c5791102dca08faa&vstc=4&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1&custom=%7B%22d37e3bc4%22%3A%22b%22%7D HTTP/1.1
Host: heartsawpeat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bravopk23.online
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 10 Dec 2023 04:05:17 GMT
Content-Type: application/json
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.bravopk23.online
Access-Control-Allow-Origin: https://www.bravopk23.online
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=19018918; expires=Mon, 11 Dec 2023 04:05:17 GMT; secure; SameSite=None
uid_id2=7a66f60a-f1d7-4f16-80ab-58cdee5db272:3:1; expires=Sun, 17 Dec 2023 04:05:17 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 42a647eab3e22e43dda9e0c622ec863c
Strict-Transport-Security: max-age=0; includeSubdomains
henriettaproducesdecide.com/watch.949554020307.js?key=24b938e81222eeeae582237f3b9ed88a&kw=%5B%22bravopk23%22%5D&refer=https%3A%2F%2Fwww.bravopk23.online%2F&tz=0&dev=e&res=14.3095&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1&shu=272bcbc2630ee6b35ff5ad5f03ef3f9f1caa007c578bd55a7962b2e9bf0e0b03cd2fd9dfa9865708c608a58e155ac8ef948a3ab7433f69b87481466ef9a67616e7f506a961166fdd41e6721b7577bcd6d3e7d457de6f7f8b70ef0d85e7e7d9&pst=1702181176&rmtc=t
200 OK 0 B URL GET HTTP/1.1 henriettaproducesdecide.com/watch.949554020307.js?key=24b938e81222eeeae582237f3b9ed88a&kw=%5B%22bravopk23%22%5D&refer=https%3A%2F%2Fwww.bravopk23.online%2F&tz=0&dev=e&res=14.3095&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1&shu=272bcbc2630ee6b35ff5ad5f03ef3f9f1caa007c578bd55a7962b2e9bf0e0b03cd2fd9dfa9865708c608a58e155ac8ef948a3ab7433f69b87481466ef9a67616e7f506a961166fdd41e6721b7577bcd6d3e7d457de6f7f8b70ef0d85e7e7d9&pst=1702181176&rmtc=t
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.bravopk23.online/
Certificate IssuerLet's Encrypt
Subjecthenriettaproducesdecide.com
Fingerprint4B:30:4E:24:E8:06:9A:30:91:C2:BA:59:F9:27:A8:89:C3:1B:76:80
ValidityTue, 28 Nov 2023 11:01:01 GMT - Mon, 26 Feb 2024 11:01:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.949554020307.js?key=24b938e81222eeeae582237f3b9ed88a&kw=%5B%22bravopk23%22%5D&refer=https%3A%2F%2Fwww.bravopk23.online%2F&tz=0&dev=e&res=14.3095&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1&shu=272bcbc2630ee6b35ff5ad5f03ef3f9f1caa007c578bd55a7962b2e9bf0e0b03cd2fd9dfa9865708c608a58e155ac8ef948a3ab7433f69b87481466ef9a67616e7f506a961166fdd41e6721b7577bcd6d3e7d457de6f7f8b70ef0d85e7e7d9&pst=1702181176&rmtc=t HTTP/1.1
Host: henriettaproducesdecide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bravopk23.online
Referer: https://www.bravopk23.online/
DNT: 1
Connection: keep-alive
Cookie: u_pl=19020881; ain=eyJhbGciOiJIUzI1NiJ9.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.zHBxTXc2a52qy149lVj5g6xv4eR-5OIgkr_dP711CIQ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 10 Dec 2023 04:05:17 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.bravopk23.online
Access-Control-Allow-Origin: https://www.bravopk23.online
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=7a66f60a-f1d7-4f16-80ab-58cdee5db272:3:1; expires=Sun, 17 Dec 2023 04:05:17 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a6c524856af9e042afc3e30fb93be982
Strict-Transport-Security: max-age=0; includeSubdomains
www.bravopk23.online/feeds/posts/summary?max-results=1&alt=json-in-script&callback=hitungtotaldata
200 OK 1.8 kB URL GET HTTP/2 www.bravopk23.online/feeds/posts/summary?max-results=1&alt=json-in-script&callback=hitungtotaldata
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subjectwww.bravopk23.online
FingerprintC8:EC:AD:0C:4C:56:32:2D:DA:CF:89:52:61:F9:0F:AA:96:13:CC:72
ValiditySat, 02 Dec 2023 23:02:26 GMT - Fri, 01 Mar 2024 23:50:56 GMT
File type ASCII text, with very long lines (4669)
Hash d4eb5b05fa55cae1ef1b0bff13643981
74af33ddf8b30407f4d60b7ee001e47999428733
97b6c9925ca23f076c9c09c583b7893edf7922b72df05304037ae56e5529bce5
GET /feeds/posts/summary?max-results=1&alt=json-in-script&callback=hitungtotaldata HTTP/1.1
Host: www.bravopk23.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1; pp_main_f0ea6392bccbe0c3288deb6a1e34af9d=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"481ae461c3d8333445a4792d8e1d92378a41c8f5a76ee48b8fd948ccc5ed570d"
date: Sun, 10 Dec 2023 04:05:16 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Sun, 10 Dec 2023 04:05:17 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Sat, 09 Dec 2023 23:27:31 GMT
content-encoding: gzip
content-length: 1821
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
dinnercreekawkward.com/watch.1421771829767.js?key=24b938e81222eeeae582237f3b9ed88a&kw=%5B%22bravopk23%22%5D&refer=https%3A%2F%2Fwww.bravopk23.online%2F&tz=0&dev=e&res=14.3095&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1&shu=dfd3640b4fafe1ce313b6f4d77ab894b1702a7f4e79b25aac101cd8aae632baa85bf68ac21644bbc64a5c4838d6c207030f85123e7af2a76e5af868a570f72d9d1805c7fd33c82ddab85b8d71966f378426fbd71f0adb8eb52e8ca301a86&pst=1702181177&rmtc=t
200 OK 0 B URL GET HTTP/1.1 dinnercreekawkward.com/watch.1421771829767.js?key=24b938e81222eeeae582237f3b9ed88a&kw=%5B%22bravopk23%22%5D&refer=https%3A%2F%2Fwww.bravopk23.online%2F&tz=0&dev=e&res=14.3095&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1&shu=dfd3640b4fafe1ce313b6f4d77ab894b1702a7f4e79b25aac101cd8aae632baa85bf68ac21644bbc64a5c4838d6c207030f85123e7af2a76e5af868a570f72d9d1805c7fd33c82ddab85b8d71966f378426fbd71f0adb8eb52e8ca301a86&pst=1702181177&rmtc=t
IP
Requested by https://www.bravopk23.online/
Certificate IssuerLet's Encrypt
Subjectdinnercreekawkward.com
FingerprintB2:D1:EE:BB:1F:C3:19:F3:64:BA:5A:2E:94:6C:3A:73:DE:CA:9B:DB
ValidityTue, 28 Nov 2023 11:00:28 GMT - Mon, 26 Feb 2024 11:00:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.1421771829767.js?key=24b938e81222eeeae582237f3b9ed88a&kw=%5B%22bravopk23%22%5D&refer=https%3A%2F%2Fwww.bravopk23.online%2F&tz=0&dev=e&res=14.3095&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1&shu=dfd3640b4fafe1ce313b6f4d77ab894b1702a7f4e79b25aac101cd8aae632baa85bf68ac21644bbc64a5c4838d6c207030f85123e7af2a76e5af868a570f72d9d1805c7fd33c82ddab85b8d71966f378426fbd71f0adb8eb52e8ca301a86&pst=1702181177&rmtc=t HTTP/1.1
Host: dinnercreekawkward.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bravopk23.online
Referer: https://www.bravopk23.online/
DNT: 1
Connection: keep-alive
Cookie: u_pl=19020881; ain=eyJhbGciOiJIUzI1NiJ9.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.zHBxTXc2a52qy149lVj5g6xv4eR-5OIgkr_dP711CIQ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 10 Dec 2023 04:05:17 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.bravopk23.online
Access-Control-Allow-Origin: https://www.bravopk23.online
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=7a66f60a-f1d7-4f16-80ab-58cdee5db272:3:1; expires=Sun, 17 Dec 2023 04:05:17 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 56246b8a152fdd153cf5ca968977364d
Strict-Transport-Security: max-age=0; includeSubdomains
nanhermione.com/watch.757681155902.js?key=24b938e81222eeeae582237f3b9ed88a&kw=%5B%22bravopk23%22%5D&refer=https%3A%2F%2Fwww.bravopk23.online%2F&tz=0&dev=e&res=14.3095&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1&shu=bb6413a7ca50f4eea40cf34d61cc3b9839beeae09ab7a84ea3ba3a4257df0293bb1031ec13e161a5209fc618e8fde4623be6bb1950d5031e99471e3d92bc196e74e23e945e70265813fb801dd56485bea5aa198e1abdb9eb6752863ba0ee&pst=1702181177&rmtc=t
200 OK 0 B URL GET HTTP/1.1 nanhermione.com/watch.757681155902.js?key=24b938e81222eeeae582237f3b9ed88a&kw=%5B%22bravopk23%22%5D&refer=https%3A%2F%2Fwww.bravopk23.online%2F&tz=0&dev=e&res=14.3095&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1&shu=bb6413a7ca50f4eea40cf34d61cc3b9839beeae09ab7a84ea3ba3a4257df0293bb1031ec13e161a5209fc618e8fde4623be6bb1950d5031e99471e3d92bc196e74e23e945e70265813fb801dd56485bea5aa198e1abdb9eb6752863ba0ee&pst=1702181177&rmtc=t
IP
Requested by https://www.bravopk23.online/
Certificate IssuerLet's Encrypt
Subjectnanhermione.com
Fingerprint75:8B:C4:04:D1:07:C9:DB:7A:16:A0:D8:18:A8:1A:96:F2:72:D4:3C
ValidityTue, 28 Nov 2023 11:05:19 GMT - Mon, 26 Feb 2024 11:05:18 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.757681155902.js?key=24b938e81222eeeae582237f3b9ed88a&kw=%5B%22bravopk23%22%5D&refer=https%3A%2F%2Fwww.bravopk23.online%2F&tz=0&dev=e&res=14.3095&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1&shu=bb6413a7ca50f4eea40cf34d61cc3b9839beeae09ab7a84ea3ba3a4257df0293bb1031ec13e161a5209fc618e8fde4623be6bb1950d5031e99471e3d92bc196e74e23e945e70265813fb801dd56485bea5aa198e1abdb9eb6752863ba0ee&pst=1702181177&rmtc=t HTTP/1.1
Host: nanhermione.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bravopk23.online
Referer: https://www.bravopk23.online/
DNT: 1
Connection: keep-alive
Cookie: u_pl=19020881; ain=eyJhbGciOiJIUzI1NiJ9.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.zHBxTXc2a52qy149lVj5g6xv4eR-5OIgkr_dP711CIQ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 10 Dec 2023 04:05:17 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.bravopk23.online
Access-Control-Allow-Origin: https://www.bravopk23.online
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=7a66f60a-f1d7-4f16-80ab-58cdee5db272:3:1; expires=Sun, 17 Dec 2023 04:05:17 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d301b010d27f0603f0c5bfaee536342c
Strict-Transport-Security: max-age=0; includeSubdomains
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 0 B URL OPTIONS HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
Requested by https://www.youtube.com/embed/1FeDUuLxBYM
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC
ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sun, 10 Dec 2023 04:05:17 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 41 kB URL OPTIONS HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
Requested by https://www.youtube.com/embed/1FeDUuLxBYM
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC
ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT
File type JSON data
- , ASCII text, with very long lines (65536), with no line terminators
Hash 51ca71cb27f7baca5b1a27117c7109e5
3019f8b2f2a5f950752aa3c4bcabef409e81a9a6
513ab8c25a7949bd5532f015be7b9994eba7ba95ed5b0bf8c63db16fc490d41a
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 10 Dec 2023 04:05:17 GMT
server: ESF
cache-control: private
content-length: 40651
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oswald/v53/TK3iWkUHHAIjg752GT8G.woff2
200 OK 28 kB URL GET HTTP/3 fonts.gstatic.com/s/oswald/v53/TK3iWkUHHAIjg752GT8G.woff2
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 28512, version 1.0
- data
Hash 16cba75f4b9969077ff30bea2f494e12
71b32a3bbcc6157da9d52accf124660a3cfc66dc
241ced7f220982f5679a64cc6db34ed42cd21274508cc5814616d9efe374afde
GET /s/oswald/v53/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.bravopk23.online
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28512
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 06 Dec 2023 21:37:36 GMT
expires: Thu, 05 Dec 2024 21:37:36 GMT
cache-control: public, max-age=31536000
age: 282461
last-modified: Tue, 15 Aug 2023 18:44:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
bugstractorbring.com/pixel/purst?dl=0&th=0&sc=0&rs=2021&rd=2021&fd=1003&bv=23.12.v.1&tmpl=70
200 OK 0 B URL GET HTTP/1.1 bugstractorbring.com/pixel/purst?dl=0&th=0&sc=0&rs=2021&rd=2021&fd=1003&bv=23.12.v.1&tmpl=70
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.bravopk23.online/
Certificate IssuerLet's Encrypt
Subjectbugstractorbring.com
Fingerprint42:77:6B:CB:B4:96:D7:B5:A4:5B:F9:E8:A6:E1:5F:47:9F:FE:8F:94
ValidityTue, 28 Nov 2023 08:10:17 GMT - Mon, 26 Feb 2024 08:10:16 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=2021&rd=2021&fd=1003&bv=23.12.v.1&tmpl=70 HTTP/1.1
Host: bugstractorbring.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 10 Dec 2023 04:05:17 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
i.ytimg.com/vi_webp/1FeDUuLxBYM/sddefault.webp
200 OK 27 kB URL GET HTTP/2 i.ytimg.com/vi_webp/1FeDUuLxBYM/sddefault.webp
IP
Requested by https://www.youtube.com/embed/1FeDUuLxBYM
Certificate IssuerGoogle Trust Services LLC
Subjectedgestatic.com
Fingerprint5C:05:8E:B2:1F:68:33:EA:19:FD:84:54:6B:05:9B:49:43:15:33:89
ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp
- data
Hash d9b486e7879e53653198bfd4f490dd28
50adbfc5c4a5bbf2ac5bf0e2a6ff95c5119847ea
9e27b70afe389953b370f15e6d143ee008a222506dbbea6c90e157337cf903fc
GET /vi_webp/1FeDUuLxBYM/sddefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 26930
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 10 Dec 2023 04:05:17 GMT
expires: Sun, 10 Dec 2023 06:05:17 GMT
cache-control: public, max-age=7200
etag: "1561557753"
content-type: image/webp
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/img/logo-16.png
200 OK 279 B URL GET HTTP/3 www.blogger.com/img/logo-16.png
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCF:95:77:C8:69:0E:25:51:5F:AE:3A:42:33:54:8C:0A:83:04:2B:0B
ValidityMon, 20 Nov 2023 08:02:20 GMT - Mon, 12 Feb 2024 08:02:19 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
- data
Hash 5ffecab6c722bb0adc3fce8d83b27993
0e59b05d3da526e82bb4f5d47c5d94e2a318dafb
cca664ca16fde285160e80eae6ba4501c27b1dd1ce09aec1e84caa74b5baff53
GET /img/logo-16.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 279
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:55:40 GMT
expires: Thu, 14 Dec 2023 15:55:40 GMT
cache-control: public, max-age=604800
last-modified: Thu, 07 Dec 2023 02:07:04 GMT
content-type: image/png
age: 216577
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/s/player/dee96cfa/player_ias.vflset/en_US/remote.js
200 OK 34 kB URL GET HTTP/3 www.youtube.com/s/player/dee96cfa/player_ias.vflset/en_US/remote.js
IP
Requested by https://www.youtube.com/embed/1FeDUuLxBYM
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:3A:D9:47:14:B0:78:30:A1:BF:B4:45:F6:F5:81:AD:0A:C7:76:89
ValidityMon, 20 Nov 2023 08:02:55 GMT - Mon, 12 Feb 2024 08:02:54 GMT
File type ASCII text, with very long lines (537)
Hash caf14ed40a162ce34e960f1349f2e0b0
8fdd2f3793b1cb775bc1d61c3b1689dc0a92a294
24fa2128f8460380865cf76881c0f6569aa2d9af6eea4aff5f6f01ad37702d34
GET /s/player/dee96cfa/player_ias.vflset/en_US/remote.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/1FeDUuLxBYM
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 33462
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 16:08:50 GMT
expires: Fri, 06 Dec 2024 16:08:50 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 06 Dec 2023 02:46:57 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 215787
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
yt3.ggpht.com/ytc/APkrFKYXWjD7Yi4ulnxji7CFJEhRtVcyCNwYpX5KiQfd=s68-c-k-c0x00ffffff-no-rj
200 OK 1.6 kB URL GET HTTP/2 yt3.ggpht.com/ytc/APkrFKYXWjD7Yi4ulnxji7CFJEhRtVcyCNwYpX5KiQfd=s68-c-k-c0x00ffffff-no-rj
IP
Requested by https://www.youtube.com/embed/1FeDUuLxBYM
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint17:E3:6E:DB:3C:C4:0E:B4:6D:D3:55:1A:70:F8:0B:23:86:54:69:D8
ValidityMon, 20 Nov 2023 08:08:31 GMT - Mon, 12 Feb 2024 08:08:30 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3
- data
Hash e31546a7fa80f24e21de3a265d33e8ff
ed0f68ea3990e0ed55c2d9ffef2998ae9397a730
e708d842c2a8f940883685d55fc97c8e9bf7ed7bb1d8c5fde86613518d0bed5c
GET /ytc/APkrFKYXWjD7Yi4ulnxji7CFJEhRtVcyCNwYpX5KiQfd=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
x-content-type-options: nosniff
server: fife
content-length: 1561
x-xss-protection: 0
date: Sun, 10 Dec 2023 01:21:11 GMT
expires: Mon, 11 Dec 2023 01:21:11 GMT
cache-control: public, max-age=86400, no-transform
age: 9846
etag: "v4f"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/js/th/UhAHYkQc59SMm3ILQvX2LV9pHtXm_t6HT06w3DJ-zT8.js
200 OK 20 kB URL GET HTTP/2 www.google.com/js/th/UhAHYkQc59SMm3ILQvX2LV9pHtXm_t6HT06w3DJ-zT8.js
IP
Requested by https://www.youtube.com/embed/1FeDUuLxBYM
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint50:3E:DA:12:EC:7F:39:A5:E9:4F:16:D7:D6:AA:BF:45:15:44:7F:E9
ValidityMon, 20 Nov 2023 08:09:47 GMT - Mon, 12 Feb 2024 08:09:46 GMT
File type ASCII text, with very long lines (50467)
Hash 02ef8df4172d6fad17d1bf1142bfc1d1
3baa1986da7954c8f577eac04b1f4af063e8d58a
52100762441ce7d48c9b720b42f5f62d5f691ed5e6fede874f4eb0dc327ecd3f
GET /js/th/UhAHYkQc59SMm3ILQvX2LV9pHtXm_t6HT06w3DJ-zT8.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 19757
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:44:30 GMT
expires: Fri, 06 Dec 2024 15:44:30 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 28 Nov 2023 18:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 217247
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
banquetunarmedgrater.com/advertisers.js
200 OK 0 B URL GET HTTP/2 banquetunarmedgrater.com/advertisers.js
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subjectbanquetunarmedgrater.com
Fingerprint92:8E:AD:72:AC:AD:3B:21:99:CD:21:A0:9F:BD:F2:AF:0D:98:D8:57
ValidityThu, 09 Nov 2023 11:40:15 GMT - Wed, 07 Feb 2024 11:40:14 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:05:17 GMT
content-type: application/javascript
content-length: 0
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=172800
x-request-id: 046034dce476020a5dd210c0a89b038d
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sun, 10 Dec 2023 04:05:17 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=01FHqj0e7PUuwLmSWCdD9PchicbgGxwnQU10L8gp1VPx%2BXdhAQXQ16nB5HuylNhSA7Hu8hhrtPNvnnn53gm%2BZnLCLI75xEASCQikNpojBp1up9ojcTImoiixaoZRQiaFEepaGEQ0puNbgXo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83329bd15c6856b1-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.bravopk23.online/favicon.ico
200 OK 542 B URL GET HTTP/2 www.bravopk23.online/favicon.ico
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subjectwww.bravopk23.online
FingerprintC8:EC:AD:0C:4C:56:32:2D:DA:CF:89:52:61:F9:0F:AA:96:13:CC:72
ValiditySat, 02 Dec 2023 23:02:26 GMT - Fri, 01 Mar 2024 23:50:56 GMT
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
- data
Hash 1cf877ae72d8dfea30da2cf63a313ed5
20b587dd7650564c1e750565e95b11a8fb5e5a8d
23404a9e416f6f5f9a3dcde0abc69699d92808620a98aca82aa7ac24929b8022
GET /favicon.ico HTTP/1.1
Host: www.bravopk23.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1; pp_main_f0ea6392bccbe0c3288deb6a1e34af9d=1; m5a4xojbcp2nx3gptmm633qal3gzmadn=heartsawpeat.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon; charset=UTF-8
expires: Sun, 10 Dec 2023 04:05:17 GMT
date: Sun, 10 Dec 2023 04:05:17 GMT
cache-control: private, max-age=86400
last-modified: Sat, 09 Dec 2023 23:27:31 GMT
etag: W/"e009e5776316130f31f5061c063521e8991a9ac06416512cd9f6e08c89ab5c80"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 542
server: GSE
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 0 B URL OPTIONS HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
Requested by https://www.youtube.com/embed/1FeDUuLxBYM
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC
ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sun, 10 Dec 2023 04:05:17 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 110 B URL OPTIONS HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
Requested by https://www.youtube.com/embed/1FeDUuLxBYM
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC
ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT
File type JSON data
- , ASCII text, with no line terminators
Hash e4f63d97995d59a5140da78fbb82bcd9
2c5a44daab76fdf262a423d6cc7f25580675703b
f8a4592e210df443acde31062c268df23566f06b3c3e5573737b26fd39b74bd5
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1028
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 10 Dec 2023 04:05:17 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.bravopk23.online/feeds/posts/default?alt=json-in-script&max-results=5&callback=jQuery111008826000062003087_1702181122023&_=1702181122024
200 OK 15 kB URL GET HTTP/2 www.bravopk23.online/feeds/posts/default?alt=json-in-script&max-results=5&callback=jQuery111008826000062003087_1702181122023&_=1702181122024
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subjectwww.bravopk23.online
FingerprintC8:EC:AD:0C:4C:56:32:2D:DA:CF:89:52:61:F9:0F:AA:96:13:CC:72
ValiditySat, 02 Dec 2023 23:02:26 GMT - Fri, 01 Mar 2024 23:50:56 GMT
File type Unicode text, UTF-8 text, with very long lines (65443)
Hash a43b99f7219d3803c7de50afa9e232b3
a0b6ceca0a76ce4fb1cd903cc87bad41a9515f98
52f52d509cda96144cc507474f235c81fe539e37180f8654a957af7a47469a08
GET /feeds/posts/default?alt=json-in-script&max-results=5&callback=jQuery111008826000062003087_1702181122023&_=1702181122024 HTTP/1.1
Host: www.bravopk23.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1; pp_main_f0ea6392bccbe0c3288deb6a1e34af9d=1; m5a4xojbcp2nx3gptmm633qal3gzmadn=heartsawpeat.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"1380df34b895f8a6c503268b8eaba2fd0df5512ca11feeeaca11cab61ef1eeaa"
date: Sun, 10 Dec 2023 04:05:17 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Sun, 10 Dec 2023 04:05:18 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Sat, 09 Dec 2023 23:27:31 GMT
content-encoding: gzip
content-length: 14724
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
www.youtube.com/generate_204?48vlWA
204 No Content 0 B URL GET HTTP/3 www.youtube.com/generate_204?48vlWA
IP
Requested by https://www.youtube.com/embed/1FeDUuLxBYM
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:3A:D9:47:14:B0:78:30:A1:BF:B4:45:F6:F5:81:AD:0A:C7:76:89
ValidityMon, 20 Nov 2023 08:02:55 GMT - Mon, 12 Feb 2024 08:02:54 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?48vlWA HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/1FeDUuLxBYM
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Sun, 10 Dec 2023 04:05:18 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/dyn-css/authorization.css?targetBlogID=7052739532428450064&zx=6ac8f734-f953-4210-8f5e-c7586c7452f1
200 OK 21 B URL GET HTTP/3 www.blogger.com/dyn-css/authorization.css?targetBlogID=7052739532428450064&zx=6ac8f734-f953-4210-8f5e-c7586c7452f1
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCF:95:77:C8:69:0E:25:51:5F:AE:3A:42:33:54:8C:0A:83:04:2B:0B
ValidityMon, 20 Nov 2023 08:02:20 GMT - Mon, 12 Feb 2024 08:02:19 GMT
File type very short file (no magic)
Hash 68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
GET /dyn-css/authorization.css?targetBlogID=7052739532428450064&zx=6ac8f734-f953-4210-8f5e-c7586c7452f1 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 10 Dec 2023 04:05:18 GMT
last-modified: Sun, 10 Dec 2023 04:05:18 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/navbar.g?targetBlogID=7052739532428450064&blogName=BravoPk23&publishMode=PUBLISH_MODE_HOSTED&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://www.bravopk23.online/search&blogLocale=en_GB&v=2&homepageUrl=https://www.bravopk23.online/&vt=7081765830680190793&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__
2.6 kB URL www.blogger.com/navbar.g?targetBlogID=7052739532428450064&blogName=BravoPk23&publishMode=PUBLISH_MODE_HOSTED&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://www.bravopk23.online/search&blogLocale=en_GB&v=2&homepageUrl=https://www.bravopk23.online/&vt=7081765830680190793&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCF:95:77:C8:69:0E:25:51:5F:AE:3A:42:33:54:8C:0A:83:04:2B:0B
ValidityMon, 20 Nov 2023 08:02:20 GMT - Mon, 12 Feb 2024 08:02:19 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- exported SGML document, Unicode text, UTF-8 text, with very long lines (3170)
Hash fc1f1f8476256ddf335234ef331b48f4
c6e29ac32475e24732cdbddfdf110d2e57a6edfb
79a6514a7ed4ca5141125c838bd4a5940ff6768a2f7be3b12d6a76cbeae1dadf
GET /navbar.g?targetBlogID=7052739532428450064&blogName=BravoPk23&publishMode=PUBLISH_MODE_HOSTED&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://www.bravopk23.online/search&blogLocale=en_GB&v=2&homepageUrl=https://www.bravopk23.online/&vt=7081765830680190793&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 10 Dec 2023 04:05:18 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 2557
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
resources.blogblog.com/img/navbar/icons_peach.png
200 OK 907 B URL GET HTTP/3 resources.blogblog.com/img/navbar/icons_peach.png
IP
Requested by https://www.blogger.com/navbar.g?targetBlogID=7052739532428450064&blogName=BravoPk23&publishMode=PUBLISH_MODE_HOSTED&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://www.bravopk23.online/search&blogLocale=en_GB&v=2&homepageUrl=https://www.bravopk23.online/&vt=7081765830680190793&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fwww.bravopk23.online&pfname=&rpctoken=28417253
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCF:95:77:C8:69:0E:25:51:5F:AE:3A:42:33:54:8C:0A:83:04:2B:0B
ValidityMon, 20 Nov 2023 08:02:20 GMT - Mon, 12 Feb 2024 08:02:19 GMT
File type PNG image data, 46 x 20, 8-bit colormap, non-interlaced
- data
Hash 3718077fe5eb689b0ded987a52881d06
f0ce5596ef43f850c400cbbc0556697fb3e7b232
72be8098b87d7e2d7fbc6eb0a3eaebcf1013186d7733cd340549f9e1701a4865
GET /img/navbar/icons_peach.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 907
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:43:12 GMT
expires: Thu, 14 Dec 2023 15:43:12 GMT
cache-control: public, max-age=604800
last-modified: Thu, 07 Dec 2023 02:07:04 GMT
content-type: image/png
age: 217326
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
resources.blogblog.com/img/navbar/arrows-light.png
200 OK 117 B URL GET HTTP/3 resources.blogblog.com/img/navbar/arrows-light.png
IP
Requested by https://www.blogger.com/navbar.g?targetBlogID=7052739532428450064&blogName=BravoPk23&publishMode=PUBLISH_MODE_HOSTED&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://www.bravopk23.online/search&blogLocale=en_GB&v=2&homepageUrl=https://www.bravopk23.online/&vt=7081765830680190793&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fwww.bravopk23.online&pfname=&rpctoken=28417253
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCF:95:77:C8:69:0E:25:51:5F:AE:3A:42:33:54:8C:0A:83:04:2B:0B
ValidityMon, 20 Nov 2023 08:02:20 GMT - Mon, 12 Feb 2024 08:02:19 GMT
File type PNG image data, 19 x 4, 8-bit/color RGBA, non-interlaced
- data
Hash 25c2b0cfe0ad4dcda4a0e3727d091d80
b9d16f4311e64648b7970baf00cb9841e3c3351b
bb6685107846b4c25384202730b84ec168fecee197e5f9e3fe8ffdd5bed6749d
GET /img/navbar/arrows-light.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 117
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:44:41 GMT
expires: Thu, 14 Dec 2023 15:44:41 GMT
cache-control: public, max-age=604800
last-modified: Wed, 06 Dec 2023 21:21:24 GMT
content-type: image/png
age: 217237
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
apis.google.com/js/platform:gapi.iframes.style.common.js
200 OK 22 kB URL GET HTTP/3 apis.google.com/js/platform:gapi.iframes.style.common.js
IP
Requested by https://www.blogger.com/navbar.g?targetBlogID=7052739532428450064&blogName=BravoPk23&publishMode=PUBLISH_MODE_HOSTED&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://www.bravopk23.online/search&blogLocale=en_GB&v=2&homepageUrl=https://www.bravopk23.online/&vt=7081765830680190793&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fwww.bravopk23.online&pfname=&rpctoken=28417253
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:3A:D9:47:14:B0:78:30:A1:BF:B4:45:F6:F5:81:AD:0A:C7:76:89
ValidityMon, 20 Nov 2023 08:02:55 GMT - Mon, 12 Feb 2024 08:02:54 GMT
File type ASCII text, with very long lines (2664)
Hash b970f4ece0f21dae7d57dcbbbe1eb48b
52ab98370d3fc4bfd4c1b23cb3ed5dc1e37d779a
53dbcf2ac8d4a8d0a0fc4d5a15778fd36664923c87a60891a87bf8ec45535a91
GET /js/platform:gapi.iframes.style.common.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-length: 21940
date: Sun, 10 Dec 2023 04:05:18 GMT
expires: Sun, 10 Dec 2023 04:05:18 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "f3d0fc258127dfc5"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
set-cookie: NID=511=YZM1q6JrzmPBYrO73YTVM__vbOL6l-Tk1bXOPsfUp7C7bp9jYOY1QRI6N7eu0GJw3WEXIs2CLSFpXE9XJaR0v8Nx0hg1wOSor7BZ4TrgRCdwKj5U1g-BCeKEOMHXG9UNojlPQj3gqMCT3T59gicnBsC9n__iyOoX6zEnde8uPn0; expires=Mon, 10-Jun-2024 04:05:18 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs
200 OK 46 kB URL GET HTTP/3 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs
IP
Requested by https://www.blogger.com/navbar.g?targetBlogID=7052739532428450064&blogName=BravoPk23&publishMode=PUBLISH_MODE_HOSTED&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://www.bravopk23.online/search&blogLocale=en_GB&v=2&homepageUrl=https://www.bravopk23.online/&vt=7081765830680190793&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fwww.bravopk23.online&pfname=&rpctoken=28417253
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:3A:D9:47:14:B0:78:30:A1:BF:B4:45:F6:F5:81:AD:0A:C7:76:89
ValidityMon, 20 Nov 2023 08:02:55 GMT - Mon, 12 Feb 2024 08:02:54 GMT
File type ASCII text, with very long lines (1505)
Hash a5139ae5276fac825f580dd8b48d0f72
2820e165c330673129cebdc8e7cf806e1620c0a0
2170ad362c9ba9f7ff9b642d2a9d72a263fff1cd47de3664c55d6a7462c4cbc3
GET /_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 45499
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 16:01:10 GMT
expires: Fri, 06 Dec 2024 16:01:10 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 Nov 2023 22:37:21 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 216248
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
omitpollenending.com/sbar.json?key=e715c50ae8ef81b5e2ea6012b4d0d459&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1
200 OK 0 B URL GET HTTP/1.1 omitpollenending.com/sbar.json?key=e715c50ae8ef81b5e2ea6012b4d0d459&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.bravopk23.online/
Certificate IssuerLet's Encrypt
Subjectomitpollenending.com
Fingerprint41:41:67:08:03:DF:C6:78:85:C2:46:A8:88:D7:2B:2E:48:A2:91:B2
ValidityTue, 28 Nov 2023 08:10:50 GMT - Mon, 26 Feb 2024 08:10:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /sbar.json?key=e715c50ae8ef81b5e2ea6012b4d0d459&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1 HTTP/1.1
Host: omitpollenending.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bravopk23.online
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 10 Dec 2023 04:05:18 GMT
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.bravopk23.online
Access-Control-Allow-Origin: https://www.bravopk23.online
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=19018610; expires=Mon, 11 Dec 2023 04:05:18 GMT; secure; SameSite=None
uid_id2=7a66f60a-f1d7-4f16-80ab-58cdee5db272:3:1; expires=Sun, 17 Dec 2023 04:05:18 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7098349d7a314db8698e8afedf3f93b7
Strict-Transport-Security: max-age=0; includeSubdomains
www.bravopk23.online/
200 OK 46 kB IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subjectwww.bravopk23.online
FingerprintC8:EC:AD:0C:4C:56:32:2D:DA:CF:89:52:61:F9:0F:AA:96:13:CC:72
ValiditySat, 02 Dec 2023 23:02:26 GMT - Fri, 01 Mar 2024 23:50:56 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- exported SGML document text
- exported SGML document, ASCII text, with very long lines (43165)
Hash 42d698c46f777740cb8a43eb2120405e
115d6ea30bffd98f192a806ab6e09917c2afd321
2d0b1512c99ca92ac6775c7a7f9ad0d4b541f0d8532996337533667a1fcc8819
GET / HTTP/1.1
Host: www.bravopk23.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1; pp_main_f0ea6392bccbe0c3288deb6a1e34af9d=1; m5a4xojbcp2nx3gptmm633qal3gzmadn=heartsawpeat.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-robots-tag: all,noodp
content-type: text/html; charset=UTF-8
expires: Sun, 10 Dec 2023 04:05:18 GMT
date: Sun, 10 Dec 2023 04:05:18 GMT
cache-control: private, max-age=0
last-modified: Sat, 09 Dec 2023 23:27:31 GMT
etag: W/"e009e5776316130f31f5061c063521e8991a9ac06416512cd9f6e08c89ab5c80"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 45741
server: GSE
X-Firefox-Spdy: h2
www.bravopk23.online/
200 OK 46 kB IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subjectwww.bravopk23.online
FingerprintC8:EC:AD:0C:4C:56:32:2D:DA:CF:89:52:61:F9:0F:AA:96:13:CC:72
ValiditySat, 02 Dec 2023 23:02:26 GMT - Fri, 01 Mar 2024 23:50:56 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- exported SGML document text
- exported SGML document, ASCII text, with very long lines (43165)
Hash 42d698c46f777740cb8a43eb2120405e
115d6ea30bffd98f192a806ab6e09917c2afd321
2d0b1512c99ca92ac6775c7a7f9ad0d4b541f0d8532996337533667a1fcc8819
GET / HTTP/1.1
Host: www.bravopk23.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1; pp_main_f0ea6392bccbe0c3288deb6a1e34af9d=1; m5a4xojbcp2nx3gptmm633qal3gzmadn=heartsawpeat.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-robots-tag: all,noodp
content-type: text/html; charset=UTF-8
expires: Sun, 10 Dec 2023 04:05:18 GMT
date: Sun, 10 Dec 2023 04:05:18 GMT
cache-control: private, max-age=0
last-modified: Sat, 09 Dec 2023 23:27:31 GMT
etag: W/"e009e5776316130f31f5061c063521e8991a9ac06416512cd9f6e08c89ab5c80"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 45741
server: GSE
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi_CTtsq-Brh-JWpomBoWljPFZVJHDTlwmlrHqmrBmhgvOlxDFMdSvxUkqUP-52K-sO_66-Mdkw8k5kfB5kyE59bsjLv_Bhgzp746y-Pj4_wIKj5IZH0JoAXYPaa7kdx_y6DCF1ogUMRVtz_Zdi86wSLjxryHuVjRuTW18JtDvcPTiZTuhUyh_Tr-BPmw/s1600/masjid-nabawi.jpg
200 OK 276 kB URL GET HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi_CTtsq-Brh-JWpomBoWljPFZVJHDTlwmlrHqmrBmhgvOlxDFMdSvxUkqUP-52K-sO_66-Mdkw8k5kfB5kyE59bsjLv_Bhgzp746y-Pj4_wIKj5IZH0JoAXYPaa7kdx_y6DCF1ogUMRVtz_Zdi86wSLjxryHuVjRuTW18JtDvcPTiZTuhUyh_Tr-BPmw/s1600/masjid-nabawi.jpg
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint17:E3:6E:DB:3C:C4:0E:B4:6D:D3:55:1A:70:F8:0B:23:86:54:69:D8
ValidityMon, 20 Nov 2023 08:08:31 GMT - Mon, 12 Feb 2024 08:08:30 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1024x607, components 3
- data
Size 276 kB (276417 bytes)
Hash 67b3b17414b9a62936417f78b145c32a
8eabcfa48b611b63a7c60916cafb523af76ca078
a5909d208eb66a11be004e06f364c4c6451170f4b85e6cb204ab01d99333e1b3
GET /img/b/R29vZ2xl/AVvXsEi_CTtsq-Brh-JWpomBoWljPFZVJHDTlwmlrHqmrBmhgvOlxDFMdSvxUkqUP-52K-sO_66-Mdkw8k5kfB5kyE59bsjLv_Bhgzp746y-Pj4_wIKj5IZH0JoAXYPaa7kdx_y6DCF1ogUMRVtz_Zdi86wSLjxryHuVjRuTW18JtDvcPTiZTuhUyh_Tr-BPmw/s1600/masjid-nabawi.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-expose-headers: Content-Length
etag: "v19e9"
expires: Mon, 11 Dec 2023 04:05:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="masjid-nabawi.jpg"
x-content-type-options: nosniff
date: Sun, 10 Dec 2023 04:05:18 GMT
server: fife
content-length: 276417
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.bravopk23.online/feeds/posts/default?alt=json-in-script&max-results=4&callback=jQuery111008826000062003087_1702181122029&_=1702181122030
200 OK 13 kB URL GET HTTP/2 www.bravopk23.online/feeds/posts/default?alt=json-in-script&max-results=4&callback=jQuery111008826000062003087_1702181122029&_=1702181122030
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subjectwww.bravopk23.online
FingerprintC8:EC:AD:0C:4C:56:32:2D:DA:CF:89:52:61:F9:0F:AA:96:13:CC:72
ValiditySat, 02 Dec 2023 23:02:26 GMT - Fri, 01 Mar 2024 23:50:56 GMT
File type Unicode text, UTF-8 text, with very long lines (65443)
Hash 59f7a0bb55a6e5f0f27df0eb17171d1f
37b9bdf4719e4234c67b9d7753b2cc0e3332e2fe
ec241fdfb872ff56005e22bd10b606981054dadfcb5e5cc078e4acc8948ec2da
GET /feeds/posts/default?alt=json-in-script&max-results=4&callback=jQuery111008826000062003087_1702181122029&_=1702181122030 HTTP/1.1
Host: www.bravopk23.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1; pp_main_f0ea6392bccbe0c3288deb6a1e34af9d=1; m5a4xojbcp2nx3gptmm633qal3gzmadn=heartsawpeat.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"1dfb86ec0e7bcf3ea4318ca9ebdb0ee91bdddd4fb5c51b847e2d56d01f61d764"
date: Sun, 10 Dec 2023 04:05:18 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Sun, 10 Dec 2023 04:05:19 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Sat, 09 Dec 2023 23:27:31 GMT
content-encoding: gzip
content-length: 12882
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
200 OK 22 kB URL GET HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint34:BC:91:5F:B9:EC:32:2C:D9:73:C7:88:C3:6C:FB:77:E7:70:8D:04
ValidityThu, 30 Nov 2023 00:15:17 GMT - Wed, 28 Feb 2024 00:15:16 GMT
File type ASCII text, with very long lines (30837)
Hash 269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:05:14 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 10/31/2023 18:48:06
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 722
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 9e61a4e37a75208649ae6b63a0cb4f72
cdn-cache: HIT
cf-cache-status: HIT
age: 1121384
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 83329bbe0b090b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhwMz59QXEym5mwN7Xa_V8ntUYNV6-Akw0HXI8VrfVc0_onEjVuFHfEIpN2iZYZ1VDXPdd01ByMp3kmhB5NLk0uju1mPba7peqXYfQvYqEOD5HjE0NL8_d_HZ4bf9GqPWFeP7HUP-UQFW9uh1jUeq-TJkbhZhyA6QHdOnQXq4dxkCBzIGRiA6ux_Imzow/s72-w400-c-h400/WhatsApp%20Image%202023-04-27%20at%2010.53.25%20AM.jpeg
200 OK 2.7 kB URL GET HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhwMz59QXEym5mwN7Xa_V8ntUYNV6-Akw0HXI8VrfVc0_onEjVuFHfEIpN2iZYZ1VDXPdd01ByMp3kmhB5NLk0uju1mPba7peqXYfQvYqEOD5HjE0NL8_d_HZ4bf9GqPWFeP7HUP-UQFW9uh1jUeq-TJkbhZhyA6QHdOnQXq4dxkCBzIGRiA6ux_Imzow/s72-w400-c-h400/WhatsApp%20Image%202023-04-27%20at%2010.53.25%20AM.jpeg
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint17:E3:6E:DB:3C:C4:0E:B4:6D:D3:55:1A:70:F8:0B:23:86:54:69:D8
ValidityMon, 20 Nov 2023 08:08:31 GMT - Mon, 12 Feb 2024 08:08:30 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3
- data
Hash d011303b269e79ee30bc6ee0e28f1df8
ff2a3e87b063f9e6b2b8cf9d1690b904e1f1b859
03717a823dfb918f30ca30255913e5e857e68fed5cd3e2aa0c2646fa6c43e968
GET /img/b/R29vZ2xl/AVvXsEhwMz59QXEym5mwN7Xa_V8ntUYNV6-Akw0HXI8VrfVc0_onEjVuFHfEIpN2iZYZ1VDXPdd01ByMp3kmhB5NLk0uju1mPba7peqXYfQvYqEOD5HjE0NL8_d_HZ4bf9GqPWFeP7HUP-UQFW9uh1jUeq-TJkbhZhyA6QHdOnQXq4dxkCBzIGRiA6ux_Imzow/s72-w400-c-h400/WhatsApp%20Image%202023-04-27%20at%2010.53.25%20AM.jpeg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-expose-headers: Content-Length
etag: "v19ed"
expires: Mon, 11 Dec 2023 04:05:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="WhatsApp Image 2023-04-27 at 10.53.25 AM.jpeg"
x-content-type-options: nosniff
date: Sun, 10 Dec 2023 04:05:18 GMT
server: fife
content-length: 2670
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/a/AVvXsEgM-c4aEosFWbgtkQkNaOjCHXZGLRTci0nqZ5wjWluMTpjeDWHLDWFSp1VU2u_uXFdv9m2bRFseZ9YYooqglTBrxEm61pkw12T56nsZlJB2JvbQh7iPNL6JonibClQYZCa5uWJ444eEQJ1URSUsnyVFSv_8PgV3KSrMbnmfgwV9_G39pSxP8NOqq_NICA=s48
200 OK 2.2 kB URL GET HTTP/2 blogger.googleusercontent.com/img/a/AVvXsEgM-c4aEosFWbgtkQkNaOjCHXZGLRTci0nqZ5wjWluMTpjeDWHLDWFSp1VU2u_uXFdv9m2bRFseZ9YYooqglTBrxEm61pkw12T56nsZlJB2JvbQh7iPNL6JonibClQYZCa5uWJ444eEQJ1URSUsnyVFSv_8PgV3KSrMbnmfgwV9_G39pSxP8NOqq_NICA=s48
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint17:E3:6E:DB:3C:C4:0E:B4:6D:D3:55:1A:70:F8:0B:23:86:54:69:D8
ValidityMon, 20 Nov 2023 08:08:31 GMT - Mon, 12 Feb 2024 08:08:30 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
- data
Hash ff5a9842b5944961514b094a8e754464
e4ea4d3b673c5fccb15762dad07f0d5ae370f3d3
426255e2834a4cd04b23f596f86a9b853dc5fb6791552eabebe196b171a3461d
GET /img/a/AVvXsEgM-c4aEosFWbgtkQkNaOjCHXZGLRTci0nqZ5wjWluMTpjeDWHLDWFSp1VU2u_uXFdv9m2bRFseZ9YYooqglTBrxEm61pkw12T56nsZlJB2JvbQh7iPNL6JonibClQYZCa5uWJ444eEQJ1URSUsnyVFSv_8PgV3KSrMbnmfgwV9_G39pSxP8NOqq_NICA=s48 HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v1828"
expires: Mon, 11 Dec 2023 04:05:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="favicon.ico.png"
x-content-type-options: nosniff
date: Sun, 10 Dec 2023 04:05:18 GMT
server: fife
content-length: 2207
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhBIkUqmckboscrkhdEj4TrZ03rvu95d8Zq_i2q2OUD83G62aC5lMIF7F_4O5PlDVyesz2V7wWsEr8BxgS7tKK1-Or4W_OBKCOlE7qroRhg_ikSQNtl3uBik7f0FS82UxtrrzXG_M_h27jU08OfVL3h4YGjJTMUM4eXY28i5il7aARJAEckRnibnax37Q/s72-w400-c-h225/341482186_2373152562846843_644881140780116972_n.png
200 OK 9.4 kB URL GET HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhBIkUqmckboscrkhdEj4TrZ03rvu95d8Zq_i2q2OUD83G62aC5lMIF7F_4O5PlDVyesz2V7wWsEr8BxgS7tKK1-Or4W_OBKCOlE7qroRhg_ikSQNtl3uBik7f0FS82UxtrrzXG_M_h27jU08OfVL3h4YGjJTMUM4eXY28i5il7aARJAEckRnibnax37Q/s72-w400-c-h225/341482186_2373152562846843_644881140780116972_n.png
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint17:E3:6E:DB:3C:C4:0E:B4:6D:D3:55:1A:70:F8:0B:23:86:54:69:D8
ValidityMon, 20 Nov 2023 08:08:31 GMT - Mon, 12 Feb 2024 08:08:30 GMT
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced
- data
Hash 2146d1074c5df84e46a0b7c2a0699c7e
766b4bbf4b6453dd5245b264debf608508d99eed
9a856e78a65d622e50f46ed543fff82b68dd36c36e39125a441f67d8bd289fca
GET /img/b/R29vZ2xl/AVvXsEhBIkUqmckboscrkhdEj4TrZ03rvu95d8Zq_i2q2OUD83G62aC5lMIF7F_4O5PlDVyesz2V7wWsEr8BxgS7tKK1-Or4W_OBKCOlE7qroRhg_ikSQNtl3uBik7f0FS82UxtrrzXG_M_h27jU08OfVL3h4YGjJTMUM4eXY28i5il7aARJAEckRnibnax37Q/s72-w400-c-h225/341482186_2373152562846843_644881140780116972_n.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v19cb"
expires: Mon, 11 Dec 2023 04:05:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="341482186_2373152562846843_644881140780116972_n.png"
x-content-type-options: nosniff
date: Sun, 10 Dec 2023 04:05:18 GMT
server: fife
content-length: 9441
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img1.blogblog.com/img/blank.gif
200 OK 43 B URL GET HTTP/3 img1.blogblog.com/img/blank.gif
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCF:95:77:C8:69:0E:25:51:5F:AE:3A:42:33:54:8C:0A:83:04:2B:0B
ValidityMon, 20 Nov 2023 08:02:20 GMT - Mon, 12 Feb 2024 08:02:19 GMT
File type GIF image data, version 89a, 1 x 1
- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /img/blank.gif HTTP/1.1
Host: img1.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 43
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:50:33 GMT
expires: Thu, 14 Dec 2023 15:50:33 GMT
cache-control: public, max-age=604800
last-modified: Thu, 07 Dec 2023 02:07:04 GMT
content-type: image/gif
age: 216885
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
img1.blogblog.com/img/b16-rounded.gif
200 OK 148 B URL GET HTTP/3 img1.blogblog.com/img/b16-rounded.gif
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCF:95:77:C8:69:0E:25:51:5F:AE:3A:42:33:54:8C:0A:83:04:2B:0B
ValidityMon, 20 Nov 2023 08:02:20 GMT - Mon, 12 Feb 2024 08:02:19 GMT
File type GIF image data, version 89a, 16 x 16
- data
Hash 735e1ccb93db241a6d6bcecd173398c7
ef13a8518e4e33da64e474610806cef014cccbf2
b4a18a4d2cfad8006b61b07535b28af563cb1da85adbeda9c63477aefa4ef513
GET /img/b16-rounded.gif HTTP/1.1
Host: img1.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 148
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:59:50 GMT
expires: Thu, 14 Dec 2023 15:59:50 GMT
cache-control: public, max-age=604800
last-modified: Wed, 06 Dec 2023 21:21:24 GMT
content-type: image/gif
age: 216328
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi_CTtsq-Brh-JWpomBoWljPFZVJHDTlwmlrHqmrBmhgvOlxDFMdSvxUkqUP-52K-sO_66-Mdkw8k5kfB5kyE59bsjLv_Bhgzp746y-Pj4_wIKj5IZH0JoAXYPaa7kdx_y6DCF1ogUMRVtz_Zdi86wSLjxryHuVjRuTW18JtDvcPTiZTuhUyh_Tr-BPmw/s72-c/masjid-nabawi.jpg
200 OK 3.7 kB URL GET HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi_CTtsq-Brh-JWpomBoWljPFZVJHDTlwmlrHqmrBmhgvOlxDFMdSvxUkqUP-52K-sO_66-Mdkw8k5kfB5kyE59bsjLv_Bhgzp746y-Pj4_wIKj5IZH0JoAXYPaa7kdx_y6DCF1ogUMRVtz_Zdi86wSLjxryHuVjRuTW18JtDvcPTiZTuhUyh_Tr-BPmw/s72-c/masjid-nabawi.jpg
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint17:E3:6E:DB:3C:C4:0E:B4:6D:D3:55:1A:70:F8:0B:23:86:54:69:D8
ValidityMon, 20 Nov 2023 08:08:31 GMT - Mon, 12 Feb 2024 08:08:30 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3
- data
Hash b9d62f98ba1f4f26f31c72eb090c6d34
373e460c05c407d31d53f515aa283cb27121f4d1
3005fa909fc297327b471c4d81b61de7749e3898fee40b2e369dbb4f9f9dfa92
GET /img/b/R29vZ2xl/AVvXsEi_CTtsq-Brh-JWpomBoWljPFZVJHDTlwmlrHqmrBmhgvOlxDFMdSvxUkqUP-52K-sO_66-Mdkw8k5kfB5kyE59bsjLv_Bhgzp746y-Pj4_wIKj5IZH0JoAXYPaa7kdx_y6DCF1ogUMRVtz_Zdi86wSLjxryHuVjRuTW18JtDvcPTiZTuhUyh_Tr-BPmw/s72-c/masjid-nabawi.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-expose-headers: Content-Length
etag: "v19e9"
expires: Mon, 11 Dec 2023 04:05:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="masjid-nabawi.jpg"
x-content-type-options: nosniff
date: Sun, 10 Dec 2023 04:05:18 GMT
server: fife
content-length: 3687
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhPnmlkkX2qngLuvPrRqcc_jmGuutLMQHD2YS-eB5arPHBzjPTaWpjznPuVc2VVfbzXvFh3196LZj93nZ0DTZsP5RO1BMgHBQCgYoSSzSiba7ArcePCz70Okr8_vR4OjLAd_WSlyXVvdyw1Hx9ryCAxtGRue1o-h-HKpGJ2n5CXBMbVQ6sFjU2IXJMzcA/s72-w320-c-h240/THE%20RISE%20OF%20E-COMMERCE%20BUDSINESS.png
200 OK 3.2 kB URL GET HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhPnmlkkX2qngLuvPrRqcc_jmGuutLMQHD2YS-eB5arPHBzjPTaWpjznPuVc2VVfbzXvFh3196LZj93nZ0DTZsP5RO1BMgHBQCgYoSSzSiba7ArcePCz70Okr8_vR4OjLAd_WSlyXVvdyw1Hx9ryCAxtGRue1o-h-HKpGJ2n5CXBMbVQ6sFjU2IXJMzcA/s72-w320-c-h240/THE%20RISE%20OF%20E-COMMERCE%20BUDSINESS.png
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint17:E3:6E:DB:3C:C4:0E:B4:6D:D3:55:1A:70:F8:0B:23:86:54:69:D8
ValidityMon, 20 Nov 2023 08:08:31 GMT - Mon, 12 Feb 2024 08:08:30 GMT
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced
- data
Hash 81f5cbc08264fffbe025e87181baf864
2b39ce25b0422d714b80406bdae036a90dabf48a
507fa0d744f1f5130584fe1bda5f72e2954e173263481507e835a512db1a6f45
GET /img/b/R29vZ2xl/AVvXsEhPnmlkkX2qngLuvPrRqcc_jmGuutLMQHD2YS-eB5arPHBzjPTaWpjznPuVc2VVfbzXvFh3196LZj93nZ0DTZsP5RO1BMgHBQCgYoSSzSiba7ArcePCz70Okr8_vR4OjLAd_WSlyXVvdyw1Hx9ryCAxtGRue1o-h-HKpGJ2n5CXBMbVQ6sFjU2IXJMzcA/s72-w320-c-h240/THE%20RISE%20OF%20E-COMMERCE%20BUDSINESS.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v1a11"
expires: Mon, 11 Dec 2023 04:05:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="THE RISE OF E-COMMERCE BUDSINESS.png"
x-content-type-options: nosniff
date: Sun, 10 Dec 2023 04:05:18 GMT
server: fife
content-length: 3243
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhPnmlkkX2qngLuvPrRqcc_jmGuutLMQHD2YS-eB5arPHBzjPTaWpjznPuVc2VVfbzXvFh3196LZj93nZ0DTZsP5RO1BMgHBQCgYoSSzSiba7ArcePCz70Okr8_vR4OjLAd_WSlyXVvdyw1Hx9ryCAxtGRue1o-h-HKpGJ2n5CXBMbVQ6sFjU2IXJMzcA/w320-h240/THE%20RISE%20OF%20E-COMMERCE%20BUDSINESS.png
200 OK 16 kB URL GET HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhPnmlkkX2qngLuvPrRqcc_jmGuutLMQHD2YS-eB5arPHBzjPTaWpjznPuVc2VVfbzXvFh3196LZj93nZ0DTZsP5RO1BMgHBQCgYoSSzSiba7ArcePCz70Okr8_vR4OjLAd_WSlyXVvdyw1Hx9ryCAxtGRue1o-h-HKpGJ2n5CXBMbVQ6sFjU2IXJMzcA/w320-h240/THE%20RISE%20OF%20E-COMMERCE%20BUDSINESS.png
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint17:E3:6E:DB:3C:C4:0E:B4:6D:D3:55:1A:70:F8:0B:23:86:54:69:D8
ValidityMon, 20 Nov 2023 08:08:31 GMT - Mon, 12 Feb 2024 08:08:30 GMT
File type PNG image data, 320 x 240, 8-bit/color RGB, non-interlaced
- data
Hash 4ba481b2b17b526260ee8e617e08b579
80090c0abaea660220661b99ba60660ef3822e57
a0ce5e560f05ca88af07fe0dc5fa34432cfd39053aba56f6ff907de7127f86dd
GET /img/b/R29vZ2xl/AVvXsEhPnmlkkX2qngLuvPrRqcc_jmGuutLMQHD2YS-eB5arPHBzjPTaWpjznPuVc2VVfbzXvFh3196LZj93nZ0DTZsP5RO1BMgHBQCgYoSSzSiba7ArcePCz70Okr8_vR4OjLAd_WSlyXVvdyw1Hx9ryCAxtGRue1o-h-HKpGJ2n5CXBMbVQ6sFjU2IXJMzcA/w320-h240/THE%20RISE%20OF%20E-COMMERCE%20BUDSINESS.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v1a11"
expires: Mon, 11 Dec 2023 04:05:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="THE RISE OF E-COMMERCE BUDSINESS.png"
x-content-type-options: nosniff
date: Sun, 10 Dec 2023 04:05:18 GMT
server: fife
content-length: 15564
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs
200 OK 103 kB URL GET HTTP/3 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:3A:D9:47:14:B0:78:30:A1:BF:B4:45:F6:F5:81:AD:0A:C7:76:89
ValidityMon, 20 Nov 2023 08:02:55 GMT - Mon, 12 Feb 2024 08:02:54 GMT
File type Unicode text, UTF-8 text, with very long lines (65443)
Size 103 kB (102822 bytes)
Hash e9c258269b768e08dea99ebb568d756b
d8b1119a5b0d901da8f17cd267411f780018ace7
3255e3594f69d15884ad532971a3f6109946834a5e2151d2e31a94f4713a5c93
GET /_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 60962
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:43:21 GMT
expires: Fri, 06 Dec 2024 15:43:21 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 Nov 2023 22:37:21 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 217316
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.bravopk23.online/favicon.ico
200 OK 542 B URL GET HTTP/2 www.bravopk23.online/favicon.ico
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subjectwww.bravopk23.online
FingerprintC8:EC:AD:0C:4C:56:32:2D:DA:CF:89:52:61:F9:0F:AA:96:13:CC:72
ValiditySat, 02 Dec 2023 23:02:26 GMT - Fri, 01 Mar 2024 23:50:56 GMT
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
- data
Hash 1cf877ae72d8dfea30da2cf63a313ed5
20b587dd7650564c1e750565e95b11a8fb5e5a8d
23404a9e416f6f5f9a3dcde0abc69699d92808620a98aca82aa7ac24929b8022
GET /favicon.ico HTTP/1.1
Host: www.bravopk23.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1; pp_main_f0ea6392bccbe0c3288deb6a1e34af9d=1; m5a4xojbcp2nx3gptmm633qal3gzmadn=heartsawpeat.com; sb_main_e715c50ae8ef81b5e2ea6012b4d0d459=1; sb_count_e715c50ae8ef81b5e2ea6012b4d0d459=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=omitpollenending.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon
expires: Sun, 10 Dec 2023 04:05:18 GMT
date: Sun, 10 Dec 2023 04:05:18 GMT
cache-control: private, max-age=86400
last-modified: Sat, 09 Dec 2023 23:27:31 GMT
etag: W/"e009e5776316130f31f5061c063521e8991a9ac06416512cd9f6e08c89ab5c80"
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 542
server: GSE
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhPnmlkkX2qngLuvPrRqcc_jmGuutLMQHD2YS-eB5arPHBzjPTaWpjznPuVc2VVfbzXvFh3196LZj93nZ0DTZsP5RO1BMgHBQCgYoSSzSiba7ArcePCz70Okr8_vR4OjLAd_WSlyXVvdyw1Hx9ryCAxtGRue1o-h-HKpGJ2n5CXBMbVQ6sFjU2IXJMzcA/w680/THE%20RISE%20OF%20E-COMMERCE%20BUDSINESS.png
200 OK 33 kB URL GET HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhPnmlkkX2qngLuvPrRqcc_jmGuutLMQHD2YS-eB5arPHBzjPTaWpjznPuVc2VVfbzXvFh3196LZj93nZ0DTZsP5RO1BMgHBQCgYoSSzSiba7ArcePCz70Okr8_vR4OjLAd_WSlyXVvdyw1Hx9ryCAxtGRue1o-h-HKpGJ2n5CXBMbVQ6sFjU2IXJMzcA/w680/THE%20RISE%20OF%20E-COMMERCE%20BUDSINESS.png
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint17:E3:6E:DB:3C:C4:0E:B4:6D:D3:55:1A:70:F8:0B:23:86:54:69:D8
ValidityMon, 20 Nov 2023 08:08:31 GMT - Mon, 12 Feb 2024 08:08:30 GMT
File type PNG image data, 680 x 510, 8-bit/color RGB, non-interlaced
- data
Hash 726a67c3871f7b82ad2aee4554e04a9e
6520d8177dd8edcb7e0d7c7108bdabf253929018
4c1cd714eb04020b56756f8f7c8491312d4184e35030ff7a1339eb8651727e62
GET /img/b/R29vZ2xl/AVvXsEhPnmlkkX2qngLuvPrRqcc_jmGuutLMQHD2YS-eB5arPHBzjPTaWpjznPuVc2VVfbzXvFh3196LZj93nZ0DTZsP5RO1BMgHBQCgYoSSzSiba7ArcePCz70Okr8_vR4OjLAd_WSlyXVvdyw1Hx9ryCAxtGRue1o-h-HKpGJ2n5CXBMbVQ6sFjU2IXJMzcA/w680/THE%20RISE%20OF%20E-COMMERCE%20BUDSINESS.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v1a11"
expires: Mon, 11 Dec 2023 04:05:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="THE RISE OF E-COMMERCE BUDSINESS.png"
x-content-type-options: nosniff
date: Sun, 10 Dec 2023 04:05:18 GMT
server: fife
content-length: 32607
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjfUx7ZAdAzR4JLm9wRer6nI9LrNs_nQ8AGIuCHvtF-ROykphCt2vp2L0pYiH7nz_cWrUW05k1RD4nZOf067fJgyiC5cls-1UnjcnykBbtLgcxsNqMeJSmdbsiSv-nJYW8iS1VMWF0Y2X0M4cKFnNdvO8qm3JY_5TzxfHr827mKfvaURBkabRmfeXQKTw/w320-h163/How%20to%20start%20earning%20money%20from%20home%20today!.png
200 OK 9.7 kB URL GET HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjfUx7ZAdAzR4JLm9wRer6nI9LrNs_nQ8AGIuCHvtF-ROykphCt2vp2L0pYiH7nz_cWrUW05k1RD4nZOf067fJgyiC5cls-1UnjcnykBbtLgcxsNqMeJSmdbsiSv-nJYW8iS1VMWF0Y2X0M4cKFnNdvO8qm3JY_5TzxfHr827mKfvaURBkabRmfeXQKTw/w320-h163/How%20to%20start%20earning%20money%20from%20home%20today!.png
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint17:E3:6E:DB:3C:C4:0E:B4:6D:D3:55:1A:70:F8:0B:23:86:54:69:D8
ValidityMon, 20 Nov 2023 08:08:31 GMT - Mon, 12 Feb 2024 08:08:30 GMT
File type PNG image data, 320 x 163, 8-bit/color RGB, non-interlaced
- data
Hash 28c332109ec21d3398e765bc2dda743e
f5a2d9d63ec0a0413cba9429251b8ef7bb8809d4
d3dcd833a6299ae0eb9b19954c452eb9a9580c71e30aca86b1453fbbdc15d00d
GET /img/b/R29vZ2xl/AVvXsEjfUx7ZAdAzR4JLm9wRer6nI9LrNs_nQ8AGIuCHvtF-ROykphCt2vp2L0pYiH7nz_cWrUW05k1RD4nZOf067fJgyiC5cls-1UnjcnykBbtLgcxsNqMeJSmdbsiSv-nJYW8iS1VMWF0Y2X0M4cKFnNdvO8qm3JY_5TzxfHr827mKfvaURBkabRmfeXQKTw/w320-h163/How%20to%20start%20earning%20money%20from%20home%20today!.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v1a03"
expires: Mon, 11 Dec 2023 04:05:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="How to start earning money from home today!.png"
x-content-type-options: nosniff
date: Sun, 10 Dec 2023 04:05:18 GMT
server: fife
content-length: 9661
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhwMz59QXEym5mwN7Xa_V8ntUYNV6-Akw0HXI8VrfVc0_onEjVuFHfEIpN2iZYZ1VDXPdd01ByMp3kmhB5NLk0uju1mPba7peqXYfQvYqEOD5HjE0NL8_d_HZ4bf9GqPWFeP7HUP-UQFW9uh1jUeq-TJkbhZhyA6QHdOnQXq4dxkCBzIGRiA6ux_Imzow/w400-h400/WhatsApp%20Image%202023-04-27%20at%2010.53.25%20AM.jpeg
200 OK 36 kB URL GET HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhwMz59QXEym5mwN7Xa_V8ntUYNV6-Akw0HXI8VrfVc0_onEjVuFHfEIpN2iZYZ1VDXPdd01ByMp3kmhB5NLk0uju1mPba7peqXYfQvYqEOD5HjE0NL8_d_HZ4bf9GqPWFeP7HUP-UQFW9uh1jUeq-TJkbhZhyA6QHdOnQXq4dxkCBzIGRiA6ux_Imzow/w400-h400/WhatsApp%20Image%202023-04-27%20at%2010.53.25%20AM.jpeg
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint17:E3:6E:DB:3C:C4:0E:B4:6D:D3:55:1A:70:F8:0B:23:86:54:69:D8
ValidityMon, 20 Nov 2023 08:08:31 GMT - Mon, 12 Feb 2024 08:08:30 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x400, components 3
- data
Hash d170eb2ab15b6f6ab451997a47392c03
c7b22b9af2ca0d5004e08ea3b78b5af46b79fb5d
2f8b7b85d4707a5aff7b3d1f795aed76ad07d1b2bfb95571faef54501414f745
GET /img/b/R29vZ2xl/AVvXsEhwMz59QXEym5mwN7Xa_V8ntUYNV6-Akw0HXI8VrfVc0_onEjVuFHfEIpN2iZYZ1VDXPdd01ByMp3kmhB5NLk0uju1mPba7peqXYfQvYqEOD5HjE0NL8_d_HZ4bf9GqPWFeP7HUP-UQFW9uh1jUeq-TJkbhZhyA6QHdOnQXq4dxkCBzIGRiA6ux_Imzow/w400-h400/WhatsApp%20Image%202023-04-27%20at%2010.53.25%20AM.jpeg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-expose-headers: Content-Length
etag: "v19ed"
expires: Mon, 11 Dec 2023 04:05:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="WhatsApp Image 2023-04-27 at 10.53.25 AM.jpeg"
x-content-type-options: nosniff
date: Sun, 10 Dec 2023 04:05:18 GMT
server: fife
content-length: 35520
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg9dVy7OMZp6ONimZm6QWEDJieMvoW3zSnZgMrMxl4pebDYVdr4P3XzfRuZUBnJU3CNmydz47jHGejv755BgdzXDcV-82r3PcbEnZ6P3icd51qcl2KzrSFD6KVFnvn95005omxsVjn6nAqpunVhKKkagXTwbQeTHffv-v6Pxl7iyFE9lIH0wJi0fMkUSg/s72-w640-c-h436/brooke-lark-jUPOXXRNdcA-unsplash.jpg
200 OK 5.4 kB URL GET HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg9dVy7OMZp6ONimZm6QWEDJieMvoW3zSnZgMrMxl4pebDYVdr4P3XzfRuZUBnJU3CNmydz47jHGejv755BgdzXDcV-82r3PcbEnZ6P3icd51qcl2KzrSFD6KVFnvn95005omxsVjn6nAqpunVhKKkagXTwbQeTHffv-v6Pxl7iyFE9lIH0wJi0fMkUSg/s72-w640-c-h436/brooke-lark-jUPOXXRNdcA-unsplash.jpg
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint17:E3:6E:DB:3C:C4:0E:B4:6D:D3:55:1A:70:F8:0B:23:86:54:69:D8
ValidityMon, 20 Nov 2023 08:08:31 GMT - Mon, 12 Feb 2024 08:08:30 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3
- data
Hash 8b6cfd8331a4082a2883737acc665d1f
a3462bd52b7af86607fb55a5d94eff9319af6ae9
219f30e6a9abc4d3c37195ec85cc3292754b264057891c5b78483e46b49b6e85
GET /img/b/R29vZ2xl/AVvXsEg9dVy7OMZp6ONimZm6QWEDJieMvoW3zSnZgMrMxl4pebDYVdr4P3XzfRuZUBnJU3CNmydz47jHGejv755BgdzXDcV-82r3PcbEnZ6P3icd51qcl2KzrSFD6KVFnvn95005omxsVjn6nAqpunVhKKkagXTwbQeTHffv-v6Pxl7iyFE9lIH0wJi0fMkUSg/s72-w640-c-h436/brooke-lark-jUPOXXRNdcA-unsplash.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-expose-headers: Content-Length
etag: "v19f8"
expires: Mon, 11 Dec 2023 04:05:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="brooke-lark-jUPOXXRNdcA-unsplash.jpg"
x-content-type-options: nosniff
date: Sun, 10 Dec 2023 04:05:18 GMT
server: fife
content-length: 5432
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.bravopk23.online/feeds/posts/default?alt=json-in-script&start-index=8&max-results=1&callback=jQuery111008826000062003087_1702181122031&_=1702181122033
200 OK 3.6 kB URL GET HTTP/2 www.bravopk23.online/feeds/posts/default?alt=json-in-script&start-index=8&max-results=1&callback=jQuery111008826000062003087_1702181122031&_=1702181122033
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subjectwww.bravopk23.online
FingerprintC8:EC:AD:0C:4C:56:32:2D:DA:CF:89:52:61:F9:0F:AA:96:13:CC:72
ValiditySat, 02 Dec 2023 23:02:26 GMT - Fri, 01 Mar 2024 23:50:56 GMT
File type Unicode text, UTF-8 text, with very long lines (16212)
Hash a2741da8a796ebd79d30c18444422238
bb89a753b82b6c182f852932bb15c92fa4df6e01
86f42960bb53b6139cd3eab8863325e027e7f22ca3611eef6744c4d5ce415f2a
GET /feeds/posts/default?alt=json-in-script&start-index=8&max-results=1&callback=jQuery111008826000062003087_1702181122031&_=1702181122033 HTTP/1.1
Host: www.bravopk23.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1; pp_main_f0ea6392bccbe0c3288deb6a1e34af9d=1; m5a4xojbcp2nx3gptmm633qal3gzmadn=heartsawpeat.com; sb_main_e715c50ae8ef81b5e2ea6012b4d0d459=1; sb_count_e715c50ae8ef81b5e2ea6012b4d0d459=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=omitpollenending.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"3a24a988898a38cb485223bf56fd9b9e7671bc91477084490e0485f02eaebfcb"
date: Sun, 10 Dec 2023 04:05:19 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Sun, 10 Dec 2023 04:05:20 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Sat, 09 Dec 2023 23:27:31 GMT
content-encoding: gzip
content-length: 3631
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg9dVy7OMZp6ONimZm6QWEDJieMvoW3zSnZgMrMxl4pebDYVdr4P3XzfRuZUBnJU3CNmydz47jHGejv755BgdzXDcV-82r3PcbEnZ6P3icd51qcl2KzrSFD6KVFnvn95005omxsVjn6nAqpunVhKKkagXTwbQeTHffv-v6Pxl7iyFE9lIH0wJi0fMkUSg/w640-h436/brooke-lark-jUPOXXRNdcA-unsplash.jpg
200 OK 164 kB URL GET HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg9dVy7OMZp6ONimZm6QWEDJieMvoW3zSnZgMrMxl4pebDYVdr4P3XzfRuZUBnJU3CNmydz47jHGejv755BgdzXDcV-82r3PcbEnZ6P3icd51qcl2KzrSFD6KVFnvn95005omxsVjn6nAqpunVhKKkagXTwbQeTHffv-v6Pxl7iyFE9lIH0wJi0fMkUSg/w640-h436/brooke-lark-jUPOXXRNdcA-unsplash.jpg
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint17:E3:6E:DB:3C:C4:0E:B4:6D:D3:55:1A:70:F8:0B:23:86:54:69:D8
ValidityMon, 20 Nov 2023 08:08:31 GMT - Mon, 12 Feb 2024 08:08:30 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 640x436, components 3
- data
Size 164 kB (164018 bytes)
Hash d2b0a76f52faaace094aedc4a265a1fe
a6c0ff1afecc2b389109189e6274bd7f20a910ac
dc0ce671f9ad40bc05dafb8b0eef84542f71f51a3bf1a4bb81f47ab19d50a3e5
GET /img/b/R29vZ2xl/AVvXsEg9dVy7OMZp6ONimZm6QWEDJieMvoW3zSnZgMrMxl4pebDYVdr4P3XzfRuZUBnJU3CNmydz47jHGejv755BgdzXDcV-82r3PcbEnZ6P3icd51qcl2KzrSFD6KVFnvn95005omxsVjn6nAqpunVhKKkagXTwbQeTHffv-v6Pxl7iyFE9lIH0wJi0fMkUSg/w640-h436/brooke-lark-jUPOXXRNdcA-unsplash.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-expose-headers: Content-Length
etag: "v19f8"
expires: Mon, 11 Dec 2023 04:05:19 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="brooke-lark-jUPOXXRNdcA-unsplash.jpg"
x-content-type-options: nosniff
date: Sun, 10 Dec 2023 04:05:19 GMT
server: fife
content-length: 164018
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiUEuo_sPBV6xR7EwWDAmygKc0Cx-I4H1NRLj05GVkgBVXMKopqfGIvSFUF7XdLKjg6SY92Cov1veDSB8VqUFyAVKBYhBCNtRgLAUzIfCZ3DCxFfJK2pGxCwl3AUZahJk1hJ89NHgrLOMfe5EECve_FylzUc3lhsNKZl7dXiMFq7BcvWPw-j2uRlD6XDA/s320/pngtree-download-button-png-png-image_3340484-removebg-preview.png
200 OK 38 kB URL GET HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiUEuo_sPBV6xR7EwWDAmygKc0Cx-I4H1NRLj05GVkgBVXMKopqfGIvSFUF7XdLKjg6SY92Cov1veDSB8VqUFyAVKBYhBCNtRgLAUzIfCZ3DCxFfJK2pGxCwl3AUZahJk1hJ89NHgrLOMfe5EECve_FylzUc3lhsNKZl7dXiMFq7BcvWPw-j2uRlD6XDA/s320/pngtree-download-button-png-png-image_3340484-removebg-preview.png
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint17:E3:6E:DB:3C:C4:0E:B4:6D:D3:55:1A:70:F8:0B:23:86:54:69:D8
ValidityMon, 20 Nov 2023 08:08:31 GMT - Mon, 12 Feb 2024 08:08:30 GMT
File type PNG image data, 320 x 320, 8-bit/color RGBA, non-interlaced
- data
Hash 8205c56aa1a70a9d49ffe16881eb385d
4f91c7273842d8fe61d7140778afa855f97b78b8
af7caacbca487755638ed7782c15c7adcbb6b08d94f2ff4156c0be60da9f937d
GET /img/b/R29vZ2xl/AVvXsEiUEuo_sPBV6xR7EwWDAmygKc0Cx-I4H1NRLj05GVkgBVXMKopqfGIvSFUF7XdLKjg6SY92Cov1veDSB8VqUFyAVKBYhBCNtRgLAUzIfCZ3DCxFfJK2pGxCwl3AUZahJk1hJ89NHgrLOMfe5EECve_FylzUc3lhsNKZl7dXiMFq7BcvWPw-j2uRlD6XDA/s320/pngtree-download-button-png-png-image_3340484-removebg-preview.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v19f6"
expires: Mon, 11 Dec 2023 04:05:19 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="pngtree-download-button-png-png-image_3340484-removebg-preview.png"
x-content-type-options: nosniff
date: Sun, 10 Dec 2023 04:05:19 GMT
server: fife
content-length: 38125
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjrmFpZyxBcqctbEfAB1XOj26Jb9TY8-0z8XcoRyXPke5fNQ0bn1_QRYIx4egFswq2NtKM6I0-5o08P5n0xGekbdZdfeeZk4Va9k0xffpFo6kdiNdTYHfMuCT2KrWKTR8lAxA3TGa9jcTbRJTGLwIpzBPU3m2MwONCaJAizLQN68vFcUIvE59xIteVOsA/s16000/Seerat_e_Mustafa_(Durood_o_Salam_un_pr).png
200 OK 93 kB URL GET HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjrmFpZyxBcqctbEfAB1XOj26Jb9TY8-0z8XcoRyXPke5fNQ0bn1_QRYIx4egFswq2NtKM6I0-5o08P5n0xGekbdZdfeeZk4Va9k0xffpFo6kdiNdTYHfMuCT2KrWKTR8lAxA3TGa9jcTbRJTGLwIpzBPU3m2MwONCaJAizLQN68vFcUIvE59xIteVOsA/s16000/Seerat_e_Mustafa_(Durood_o_Salam_un_pr).png
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint17:E3:6E:DB:3C:C4:0E:B4:6D:D3:55:1A:70:F8:0B:23:86:54:69:D8
ValidityMon, 20 Nov 2023 08:08:31 GMT - Mon, 12 Feb 2024 08:08:30 GMT
File type PNG image data, 177 x 311, 8-bit/color RGBA, non-interlaced
- data
Hash 9e412caa4481d6a23ae04ebfb4813164
bdfbd0d96922d265674c5561fc33749f7e5b203d
ca7bb0967aa17f09200d44e374d7d2bb6c826b266de8f20201801014c2152b12
GET /img/b/R29vZ2xl/AVvXsEjrmFpZyxBcqctbEfAB1XOj26Jb9TY8-0z8XcoRyXPke5fNQ0bn1_QRYIx4egFswq2NtKM6I0-5o08P5n0xGekbdZdfeeZk4Va9k0xffpFo6kdiNdTYHfMuCT2KrWKTR8lAxA3TGa9jcTbRJTGLwIpzBPU3m2MwONCaJAizLQN68vFcUIvE59xIteVOsA/s16000/Seerat_e_Mustafa_(Durood_o_Salam_un_pr).png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v19f2"
expires: Mon, 11 Dec 2023 04:05:19 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Seerat_e_Mustafa_(Durood_o_Salam_un_pr).png"
x-content-type-options: nosniff
date: Sun, 10 Dec 2023 04:05:19 GMT
server: fife
content-length: 93348
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
200 OK 31 B URL POST HTTP/3 www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP
Requested by https://www.youtube.com/embed/1FeDUuLxBYM
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:3A:D9:47:14:B0:78:30:A1:BF:B4:45:F6:F5:81:AD:0A:C7:76:89
ValidityMon, 20 Nov 2023 08:02:55 GMT - Mon, 12 Feb 2024 08:02:54 GMT
Hash 5e1fa6fd9abd549a576f3f24b1d3c8d4
d5335d7f7d33be6a0b663f03b2df4df2521c4a87
d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1702181127188
Content-Type: application/json
X-Goog-Visitor-Id: CgtMLW5ZLV91a3g0VSj88dSrBjIICgJOTxICEgA%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20231205.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1702181123629&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C330%2C211&vis=1&wgl=true&ca_type=image
Content-Length: 15725
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/1FeDUuLxBYM
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Sun, 10 Dec 2023 04:05:20 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+962; expires=Tue, 09-Dec-2025 04:05:20 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Sun, 10 Dec 2023 04:05:20 GMT
cache-control: private
unseenreport.com/pxf.gif?uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=f0ea6392bccbe0c3288deb6a1e34af9d&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4
200 OK 1 B URL GET HTTP/1.1 unseenreport.com/pxf.gif?uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=f0ea6392bccbe0c3288deb6a1e34af9d&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.bravopk23.online/
Certificate IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint79:45:7F:58:D5:82:45:0A:7D:1E:FF:7A:98:05:26:E9:D6:FE:91:14
ValidityWed, 22 Nov 2023 07:56:28 GMT - Tue, 20 Feb 2024 07:56:27 GMT
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pxf.gif?uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=f0ea6392bccbe0c3288deb6a1e34af9d&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 10 Dec 2023 04:05:20 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0c64868a2216f80d7f6cf03a7c6386f7
Strict-Transport-Security: max-age=0; includeSubdomains
unseenreport.com/pxf.gif?uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=e715c50ae8ef81b5e2ea6012b4d0d459&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4
200 OK 1 B URL GET HTTP/1.1 unseenreport.com/pxf.gif?uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=e715c50ae8ef81b5e2ea6012b4d0d459&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.bravopk23.online/
Certificate IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint79:45:7F:58:D5:82:45:0A:7D:1E:FF:7A:98:05:26:E9:D6:FE:91:14
ValidityWed, 22 Nov 2023 07:56:28 GMT - Tue, 20 Feb 2024 07:56:27 GMT
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pxf.gif?uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=e715c50ae8ef81b5e2ea6012b4d0d459&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 10 Dec 2023 04:05:20 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b6eb9b6833923cf540daa88bdc09ba01
Strict-Transport-Security: max-age=0; includeSubdomains
services.addons.mozilla.org/api/v4/addons/search/?guid=default-theme%40mozilla.org%2Caddons-search-detection%40mozilla.com%2Cgoogle%40search.mozilla.org%2Camazondotcom%40search.mozilla.org%2Cwikipedia%40search.mozilla.org%2Cbing%40search.mozilla.org%2Cddg%40search.mozilla.org%2Cfirefox-compact-light%40mozilla.org%2Cfirefox-compact-dark%40mozilla.org%2Cfirefox-alpenglow%40mozilla.org&lang=en-US
82 B URL services.addons.mozilla.org/api/v4/addons/search/?guid=default-theme%40mozilla.org%2Caddons-search-detection%40mozilla.com%2Cgoogle%40search.mozilla.org%2Camazondotcom%40search.mozilla.org%2Cwikipedia%40search.mozilla.org%2Cbing%40search.mozilla.org%2Cddg%40search.mozilla.org%2Cfirefox-compact-light%40mozilla.org%2Cfirefox-compact-dark%40mozilla.org%2Cfirefox-alpenglow%40mozilla.org&lang=en-US
IP
File type JSON data
- , ASCII text, with no line terminators
Hash 4f822d39c269d2c47e3174b6c6bad3b7
d56bd07959c766e9c18faa9cf1070548f9236b65
cda00e555c758b1c13b6cbd17049ca8471057d16c60f08f551dbc331308eecf3
GET /api/v4/addons/search/?guid=default-theme%40mozilla.org%2Caddons-search-detection%40mozilla.com%2Cgoogle%40search.mozilla.org%2Camazondotcom%40search.mozilla.org%2Cwikipedia%40search.mozilla.org%2Cbing%40search.mozilla.org%2Cddg%40search.mozilla.org%2Cfirefox-compact-light%40mozilla.org%2Cfirefox-compact-dark%40mozilla.org%2Cfirefox-alpenglow%40mozilla.org&lang=en-US HTTP/1.1
Host: services.addons.mozilla.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 82
allow: GET, HEAD, OPTIONS
content-security-policy: img-src 'self' blob: data: https://addons.mozilla.org/static-server/ https://addons.mozilla.org/user-media/; frame-src https://www.recaptcha.net/recaptcha/; default-src 'none'; script-src https://www.google-analytics.com/analytics.js https://www.googletagmanager.com/gtag/js https://www.recaptcha.net/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://addons.mozilla.org/static-server/; object-src 'none'; media-src https://videos.cdn.mozilla.net; connect-src 'self' https://*.google-analytics.com; style-src 'unsafe-inline' https://addons.mozilla.org/static-server/; form-action 'self'; child-src https://www.recaptcha.net/recaptcha/; font-src 'self' https://addons.mozilla.org/static-server/; report-uri /__cspreport__
cross-origin-opener-policy: same-origin
public-key-pins: max-age=5184000; includeSubDomains; pin-sha256="WoiWRyIOVNa9ihaBciRSC7XHjliYS9VwUGOIud4PB18="; pin-sha256="r/mIkG3eEpVdm+u/ko/cwxzOMo1bk4TyHIlByibiA5E="
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=31536000
x-amo-request-id: b0761b8c2a5c467dbcb961a142fdf22e
x-content-type-options: nosniff
x-frame-options: DENY
date: Sun, 10 Dec 2023 04:05:09 GMT
cache-control: max-age=180
etag: "4f822d39c269d2c47e3174b6c6bad3b7"
vary: origin,X-Country-Code,Accept-Language
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: v4NBC00y2-R9VpYZC6xPZR9arOHYBmeOM0LD2SUwadwVy7n9SdK8bQ==
age: 32
X-Firefox-Spdy: h2
aus5.mozilla.org/update/3/SystemAddons/111.0a1/20230218104546/Linux_x86_64-gcc3/null/default/Linux%205.15.0-76-generic%20(GTK%203.24.34%2Clibpulse%20not-available)/default/default/update.xml
42 B URL aus5.mozilla.org/update/3/SystemAddons/111.0a1/20230218104546/Linux_x86_64-gcc3/null/default/Linux%205.15.0-76-generic%20(GTK%203.24.34%2Clibpulse%20not-available)/default/default/update.xml
IP
File type XML 1.0 document text
- XML document, ASCII text
Hash f8f24fa0c857d8f2ee493e131b85ab62
cb6049f830a54d14a19d4104fc0bb5ab5fdedbe6
e0dadbc9cd1f1bd8ce3118cc3383e0d0f6d147f055265d498d99deea956ba00f
GET /update/3/SystemAddons/111.0a1/20230218104546/Linux_x86_64-gcc3/null/default/Linux%205.15.0-76-generic%20(GTK%203.24.34%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 10 Dec 2023 04:05:42 GMT
content-type: text/xml; charset=utf-8
content-length: 42
rule-id: unknown
rule-data-version: unknown
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
via: 1.1 google
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2
www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
200 OK 31 B URL POST HTTP/3 www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP
Requested by https://www.youtube.com/embed/1FeDUuLxBYM
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:3A:D9:47:14:B0:78:30:A1:BF:B4:45:F6:F5:81:AD:0A:C7:76:89
ValidityMon, 20 Nov 2023 08:02:55 GMT - Mon, 12 Feb 2024 08:02:54 GMT
Hash 5e1fa6fd9abd549a576f3f24b1d3c8d4
d5335d7f7d33be6a0b663f03b2df4df2521c4a87
d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1702181150285
Content-Type: application/json
X-Goog-Visitor-Id: CgtMLW5ZLV91a3g0VSj88dSrBjIICgJOTxICEgA%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20231205.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1702181123629&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C330%2C211&vis=1&wgl=true&ca_type=image
Content-Length: 857
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/1FeDUuLxBYM
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Sun, 10 Dec 2023 04:05:43 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+620; expires=Tue, 09-Dec-2025 04:05:43 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Sun, 10 Dec 2023 04:05:43 GMT
cache-control: private
www.bravopk23.online/feeds/posts/default?alt=json-in-script&max-results=5&callback=jQuery111008826000062003087_1702181122027&_=1702181122028
200 OK 90 kB URL GET HTTP/2 www.bravopk23.online/feeds/posts/default?alt=json-in-script&max-results=5&callback=jQuery111008826000062003087_1702181122027&_=1702181122028
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subjectwww.bravopk23.online
FingerprintC8:EC:AD:0C:4C:56:32:2D:DA:CF:89:52:61:F9:0F:AA:96:13:CC:72
ValiditySat, 02 Dec 2023 23:02:26 GMT - Fri, 01 Mar 2024 23:50:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /feeds/posts/default?alt=json-in-script&max-results=5&callback=jQuery111008826000062003087_1702181122027&_=1702181122028 HTTP/1.1
Host: www.bravopk23.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1; pp_main_f0ea6392bccbe0c3288deb6a1e34af9d=1; m5a4xojbcp2nx3gptmm633qal3gzmadn=heartsawpeat.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
content-encoding: gzip
etag: W/"1380df34b895f8a6c503268b8eaba2fd0df5512ca11feeeaca11cab61ef1eeaa"
date: Sun, 10 Dec 2023 04:05:18 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
vary: Accept-Encoding
expires: Sun, 10 Dec 2023 04:05:19 GMT
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Sat, 09 Dec 2023 23:27:31 GMT
content-length: 14725
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjfUx7ZAdAzR4JLm9wRer6nI9LrNs_nQ8AGIuCHvtF-ROykphCt2vp2L0pYiH7nz_cWrUW05k1RD4nZOf067fJgyiC5cls-1UnjcnykBbtLgcxsNqMeJSmdbsiSv-nJYW8iS1VMWF0Y2X0M4cKFnNdvO8qm3JY_5TzxfHr827mKfvaURBkabRmfeXQKTw/s72-w320-c-h163/How%20to%20start%20earning%20money%20from%20home%20today!.png
200 OK 2.2 kB URL GET HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjfUx7ZAdAzR4JLm9wRer6nI9LrNs_nQ8AGIuCHvtF-ROykphCt2vp2L0pYiH7nz_cWrUW05k1RD4nZOf067fJgyiC5cls-1UnjcnykBbtLgcxsNqMeJSmdbsiSv-nJYW8iS1VMWF0Y2X0M4cKFnNdvO8qm3JY_5TzxfHr827mKfvaURBkabRmfeXQKTw/s72-w320-c-h163/How%20to%20start%20earning%20money%20from%20home%20today!.png
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint17:E3:6E:DB:3C:C4:0E:B4:6D:D3:55:1A:70:F8:0B:23:86:54:69:D8
ValidityMon, 20 Nov 2023 08:08:31 GMT - Mon, 12 Feb 2024 08:08:30 GMT
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced
- data
Hash c623fecf3fe6b3620a8bd4e26befb2ab
46676515445bc2d87da3dd69694c80765d67896c
578689ac4e061fbbb168ddd047d08fcdd99f5c89733d265fe7b7d3471dc65999
GET /img/b/R29vZ2xl/AVvXsEjfUx7ZAdAzR4JLm9wRer6nI9LrNs_nQ8AGIuCHvtF-ROykphCt2vp2L0pYiH7nz_cWrUW05k1RD4nZOf067fJgyiC5cls-1UnjcnykBbtLgcxsNqMeJSmdbsiSv-nJYW8iS1VMWF0Y2X0M4cKFnNdvO8qm3JY_5TzxfHr827mKfvaURBkabRmfeXQKTw/s72-w320-c-h163/How%20to%20start%20earning%20money%20from%20home%20today!.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v1a03"
expires: Mon, 11 Dec 2023 04:05:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="How to start earning money from home today!.png"
x-content-type-options: nosniff
date: Sun, 10 Dec 2023 04:05:18 GMT
server: fife
content-length: 2247
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.bravopk23.online/feeds/comments/default?alt=json-in-script&max-results=5&callback=jQuery111008826000062003087_1702181122025&_=1702181122026
200 OK 9.0 kB URL GET HTTP/2 www.bravopk23.online/feeds/comments/default?alt=json-in-script&max-results=5&callback=jQuery111008826000062003087_1702181122025&_=1702181122026
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subjectwww.bravopk23.online
FingerprintC8:EC:AD:0C:4C:56:32:2D:DA:CF:89:52:61:F9:0F:AA:96:13:CC:72
ValiditySat, 02 Dec 2023 23:02:26 GMT - Fri, 01 Mar 2024 23:50:56 GMT
File type ASCII text, with very long lines (10154), with no line terminators
Hash ea23a5686546f74782edaee65b0f3ec1
d7dc08db7515ce09927ac80e682769922c39e013
90d6bfda41deddfdc861cf50a1c72883446ce88a0cf0e6e7db59d5a78df4a70d
GET /feeds/comments/default?alt=json-in-script&max-results=5&callback=jQuery111008826000062003087_1702181122025&_=1702181122026 HTTP/1.1
Host: www.bravopk23.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1; pp_main_f0ea6392bccbe0c3288deb6a1e34af9d=1; m5a4xojbcp2nx3gptmm633qal3gzmadn=heartsawpeat.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"bbeac3b670313f29864718e1c03cbad3eed802da503e0a033bfacb4f9300d1ba"
date: Sun, 10 Dec 2023 04:05:18 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Sun, 10 Dec 2023 04:05:19 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Sat, 15 Apr 2023 13:05:14 GMT
content-encoding: gzip
content-length: 1458
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
friendshipmale.com/sfp.js
200 OK 86 kB URL GET HTTP/2 friendshipmale.com/sfp.js
IP
Requested by https://www.bravopk23.online/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:05:15 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: fc85b38e78a30247bdcd06170888a1ee
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sun, 10 Dec 2023 04:05:14 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=744vp9IXWu6UB5d5YQcCOYvgRr6rSfMSmgiTlp6xrZDc75AUpNIfe4XLAWg8W7CW7apQvKCPocAFUofF7Igk2pPMchCWJXSfuBpzH04Hg%2Bp6DepSWPxYLOBangnsAgZNu5TccQA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83329bc45b4ed953-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
nanhermione.com/watch.757681155902.js?key=24b938e81222eeeae582237f3b9ed88a&kw=%5B%22bravopk23%22%5D&refer=https%3A%2F%2Fwww.bravopk23.online%2F&tz=0&dev=e&res=14.3095&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1
307 Temporary Redirect 0 B URL GET HTTP/1.1 nanhermione.com/watch.757681155902.js?key=24b938e81222eeeae582237f3b9ed88a&kw=%5B%22bravopk23%22%5D&refer=https%3A%2F%2Fwww.bravopk23.online%2F&tz=0&dev=e&res=14.3095&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1
IP
Requested by https://www.bravopk23.online/
Certificate IssuerLet's Encrypt
Subjectnanhermione.com
Fingerprint75:8B:C4:04:D1:07:C9:DB:7A:16:A0:D8:18:A8:1A:96:F2:72:D4:3C
ValidityTue, 28 Nov 2023 11:05:19 GMT - Mon, 26 Feb 2024 11:05:18 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.757681155902.js?key=24b938e81222eeeae582237f3b9ed88a&kw=%5B%22bravopk23%22%5D&refer=https%3A%2F%2Fwww.bravopk23.online%2F&tz=0&dev=e&res=14.3095&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1 HTTP/1.1
Host: nanhermione.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bravopk23.online
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Sun, 10 Dec 2023 04:05:17 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.bravopk23.online
Access-Control-Allow-Origin: https://www.bravopk23.online
Access-Control-Allow-Credentials: true
Location: https://nanhermione.com/watch.757681155902.js?key=24b938e81222eeeae582237f3b9ed88a&kw=%5B%22bravopk23%22%5D&refer=https%3A%2F%2Fwww.bravopk23.online%2F&tz=0&dev=e&res=14.3095&uuid=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1&shu=bb6413a7ca50f4eea40cf34d61cc3b9839beeae09ab7a84ea3ba3a4257df0293bb1031ec13e161a5209fc618e8fde4623be6bb1950d5031e99471e3d92bc196e74e23e945e70265813fb801dd56485bea5aa198e1abdb9eb6752863ba0ee&pst=1702181177&rmtc=t
Set-Cookie: u_pl=19020881; expires=Mon, 11 Dec 2023 04:05:17 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.zHBxTXc2a52qy149lVj5g6xv4eR-5OIgkr_dP711CIQ; expires=Sun, 10 Dec 2023 04:06:17 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 050c9570324789a6e572e765eff192a4
Strict-Transport-Security: max-age=0; includeSubdomains
www.youtube.com/embed/1FeDUuLxBYM
200 OK 94 kB URL GET HTTP/3 www.youtube.com/embed/1FeDUuLxBYM
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:3A:D9:47:14:B0:78:30:A1:BF:B4:45:F6:F5:81:AD:0A:C7:76:89
ValidityMon, 20 Nov 2023 08:02:55 GMT - Mon, 12 Feb 2024 08:02:54 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/1FeDUuLxBYM HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 10 Dec 2023 04:05:16 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
origin-trial: AvC9UlR6RDk2crliDsFl66RWLnTbHrDbp+DiY6AYz/PNQ4G4tdUTjrHYr2sghbkhGQAVxb7jaPTHpEVBz0uzQwkAAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTcxOTUzMjc5OSwiaXNTdWJkb21haW4iOnRydWV9
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=dTZfvfkSNrA; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=L-nY-_ukx4U; Domain=.youtube.com; Expires=Fri, 07-Jun-2024 04:05:16 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxICEgA%3D; Domain=.youtube.com; Expires=Fri, 07-Jun-2024 04:05:16 GMT; Path=/; Secure; HttpOnly; SameSite=lax
CONSENT=PENDING+923; expires=Tue, 09-Dec-2025 04:05:16 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
friendshipmale.com/sfp.js
200 OK 86 kB URL GET HTTP/3 friendshipmale.com/sfp.js
IP
Requested by https://www.bravopk23.online/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 10 Dec 2023 04:05:17 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 9a5e1d50080e415007375fae9a5480e1
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sun, 10 Dec 2023 04:05:16 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oiSZP3%2BklUfBJuWY%2FrIYf0rdR6pkbLBy6boTgiN%2B7dVa1zpoPRbqAy2NmKNpcLD%2FVP9vTBcGFf6NVILz8hJ6MF%2FHJtsSjWcQQqII%2Fkmlqkz6YZPlXhmOLptFT5mmSUbvE89p3%2FI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83329bce793bd953-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.bravopk23.online/feeds/posts/default?alt=json-in-script&callback=jQuery111008826000062003087_1702181122031&_=1702181122032
200 OK 861 kB URL GET HTTP/2 www.bravopk23.online/feeds/posts/default?alt=json-in-script&callback=jQuery111008826000062003087_1702181122031&_=1702181122032
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subjectwww.bravopk23.online
FingerprintC8:EC:AD:0C:4C:56:32:2D:DA:CF:89:52:61:F9:0F:AA:96:13:CC:72
ValiditySat, 02 Dec 2023 23:02:26 GMT - Fri, 01 Mar 2024 23:50:56 GMT
Size 861 kB (861336 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /feeds/posts/default?alt=json-in-script&callback=jQuery111008826000062003087_1702181122031&_=1702181122032 HTTP/1.1
Host: www.bravopk23.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=7a66f60a-f1d7-4f16-80ab-58cdee5db272%3A3%3A1; pp_main_f0ea6392bccbe0c3288deb6a1e34af9d=1; m5a4xojbcp2nx3gptmm633qal3gzmadn=heartsawpeat.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"8e4fa8b197724cb57018d72e4c6d454f756833baac9221e65680f6789a11d7a7"
date: Sun, 10 Dec 2023 04:05:18 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Sun, 10 Dec 2023 04:05:19 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Sat, 09 Dec 2023 23:27:31 GMT
content-encoding: gzip
content-length: 102822
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
www.blogger.com/navbar.g?targetBlogID=7052739532428450064&blogName=BravoPk23&publishMode=PUBLISH_MODE_HOSTED&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://www.bravopk23.online/search&blogLocale=en_GB&v=2&homepageUrl=https://www.bravopk23.online/&vt=7081765830680190793&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__
200 OK 6.7 kB URL GET HTTP/3 www.blogger.com/navbar.g?targetBlogID=7052739532428450064&blogName=BravoPk23&publishMode=PUBLISH_MODE_HOSTED&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://www.bravopk23.online/search&blogLocale=en_GB&v=2&homepageUrl=https://www.bravopk23.online/&vt=7081765830680190793&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__
IP
Requested by https://www.bravopk23.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCF:95:77:C8:69:0E:25:51:5F:AE:3A:42:33:54:8C:0A:83:04:2B:0B
ValidityMon, 20 Nov 2023 08:02:20 GMT - Mon, 12 Feb 2024 08:02:19 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- exported SGML document, Unicode text, UTF-8 text, with very long lines (6851), with no line terminators
Hash 1595cf9634123a8abebaf133a72c9938
92cc412c1d78d0e506653e882a5e39cc5a468dd2
4deb142b742c764599723f5bf9ebe3721155e4712475438b126a78fab1f7f24b
GET /navbar.g?targetBlogID=7052739532428450064&blogName=BravoPk23&publishMode=PUBLISH_MODE_HOSTED&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://www.bravopk23.online/search&blogLocale=en_GB&v=2&homepageUrl=https://www.bravopk23.online/&vt=7081765830680190793&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bravopk23.online/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 10 Dec 2023 04:05:18 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 2557
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
142.250.74.147
18.157.140.81
104.18.11.207
0.0.0.0