csgo2claim.com/goto
104.21.53.21301 Moved Permanently 0 B IP 104.21.53.21:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /goto HTTP/1.1
Host: csgo2claim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 25 Mar 2023 16:49:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 25 Mar 2023 17:49:17 GMT
Location: https://csgo2claim.com/goto
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pj%2Fnsh69xzrAl928zDCE%2FpbGwdMETIUERrSE%2FImh4uILAaCQvIwAvrpMybvQJesaz%2BKRb2ofOPFLHeTtSgB2Ecp7oD6ksbjcIhPsElpBEYKuUx%2FnfnlxS1qkcjo%2BrJ%2BvaQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ad8a5750ed6b4f9-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 5d9435c884bf4a0777fdf4b57079ae09
7f04b9db47ffeec90ac6397416b7553e5336a550
fe77420ec3a11f547cf5172b68d30faa4fe0c13165ae305f0013b02914e61084
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE77420EC3A11F547CF5172B68D30FAA4FE0C13165AE305F0013B02914E61084"
Last-Modified: Sat, 25 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15882
Expires: Sat, 25 Mar 2023 21:13:59 GMT
Date: Sat, 25 Mar 2023 16:49:17 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 13f90146df1d559743af6df15c29b77b
6dd24f60629c39f857e3c996084f4d515cf3f8d0
ea5975be17b9cd29c8770939eb5d63ce43c1c44ce9a3a4d04e1e79cd69b30d1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EA5975BE17B9CD29C8770939EB5D63CE43C1C44CE9A3A4D04E1E79CD69B30D1C"
Last-Modified: Fri, 24 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11296
Expires: Sat, 25 Mar 2023 19:57:33 GMT
Date: Sat, 25 Mar 2023 16:49:17 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 25 Mar 2023 16:27:45 GMT
content-type: application/json
age: 1292
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1313ee2f06606d09c45b06ff9e8e1001
285ca89d1d3ea45d35832bc6d9827f834b3bfe21
63463447d29550c3734f621be02ec85290fbdf4612f79f9fad7e94f7e066dcb0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63463447D29550C3734F621BE02EC85290FBDF4612F79F9FAD7E94F7E066DCB0"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5443
Expires: Sat, 25 Mar 2023 18:20:00 GMT
Date: Sat, 25 Mar 2023 16:49:17 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: kPfGbClIC9vumIpt/0WEWX0nFmua2Qi8vSn3njXFC02f1d5LGorWD8PSQANsWYmML53nPgke29c=
x-amz-request-id: SHW3JP38HYBHMRCJ
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 25 Mar 2023 15:54:58 GMT
age: 3259
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 25 Mar 2023 16:49:17 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
104.17.25.14200 OK 28 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (65451)
Hash 638a4990025383a0f83ebf29bdb84a68
153e8818dc42f598e47fde8cf398f1447649a4d0
878e34b89800bb271d3588e526eb3598eb3822e263f3bdaf53645847d39d0ad6
GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:18 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 239295
expires: Thu, 14 Mar 2024 16:49:18 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ygY%2BjeUmCuJaYqgpzYwDXX3bAkGb8GrNYLh1Nc7E0je6aKUvCqd115%2FCBTM4k73T0M5FIt6XXO7wSU3F3U%2FEkxlMqsD8PVbQ%2B9nIByHQyCOEEug99Dz4kdMmRZS0EyyUSXZehdjb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7ad8a577cd750b65-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react//cs2/header_ctt.png
104.18.37.23200 OK 1.6 MB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react//cs2/header_ctt.png
IP 104.18.37.23:0
File type PNG image data, 2327 x 1772, 8-bit/color RGBA, non-interlaced\012- data
Size 1.6 MB (1624135 bytes)
Hash 18f5a4f1d14994706cd80dc1852caa78
020b0c4f6730669e6981ad1d6a637cffcaffdf9b
85848521332b3f5da1be0ec55674ffa19f40414ea4136b7d6f141f4e8380f789
GET /apps/csgo/images/csgo_react//cs2/header_ctt.png HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:18 GMT
content-type: image/png
content-length: 1624135
last-modified: Wed, 22 Mar 2023 16:24:03 GMT
etag: "641b2ba3-18c847"
cf-cache-status: HIT
age: 4127
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a577ee590b55-OSL
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/overpass_lower_tunnel_s1.jpg
104.18.37.23200 OK 1.3 MB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/overpass_lower_tunnel_s1.jpg
IP 104.18.37.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1600, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2560], baseline, precision 8, 2560x1550, components 3\012- data
Size 1.3 MB (1274268 bytes)
Hash 30101f53a4ca578f52280a05a75d455b
7d48ae7b219bd8c6bb6fe88f6d97066e379ae4ec
4b2f73c7245fa54dec293d2fcea4003d67494209b90a27749af20c2eaaf2b378
GET /apps/csgo/images/csgo_react/cs2/maps/overpass_lower_tunnel_s1.jpg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:18 GMT
content-type: image/jpeg
content-length: 1274268
cf-bgj: h2pri
etag: "641b2ba3-13719c"
last-modified: Wed, 22 Mar 2023 16:24:03 GMT
cf-cache-status: HIT
age: 4127
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a577ee560b55-OSL
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/nuke_default_s1.jpg
104.18.37.23200 OK 1.6 MB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/nuke_default_s1.jpg
IP 104.18.37.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1600, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2560], baseline, precision 8, 2560x1550, components 3\012- data
Size 1.6 MB (1550892 bytes)
Hash 88e92b3c9dfd82b7a8332a61f64a260c
67f370fbf80e07c8e24a44b36d8149f6e3156190
3903ba777c77b7d239d5ff6896fcfa26c03770c71dfbcc201f0cef2c16107aa0
GET /apps/csgo/images/csgo_react/cs2/maps/nuke_default_s1.jpg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:18 GMT
content-type: image/jpeg
content-length: 1550892
cf-bgj: h2pri
etag: "641b2ba3-17aa2c"
last-modified: Wed, 22 Mar 2023 16:24:03 GMT
cf-cache-status: HIT
age: 4127
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a577ee4f0b55-OSL
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/overpass_toilets_s1.jpg
104.18.37.23200 OK 1.3 MB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/overpass_toilets_s1.jpg
IP 104.18.37.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1600, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2560], baseline, precision 8, 2560x1550, components 3\012- data
Size 1.3 MB (1270797 bytes)
Hash 1b19d14544d6a60fdef0e4319852deeb
8c24a8635b8e65fece239fa8c147dec031802249
7c7d7098553718ed6e77aedf721a50c405c2aebfc7e08fe01d66ef24964095a5
GET /apps/csgo/images/csgo_react/cs2/maps/overpass_toilets_s1.jpg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:18 GMT
content-type: image/jpeg
content-length: 1270797
cf-bgj: h2pri
etag: "641b2ba3-13640d"
last-modified: Wed, 22 Mar 2023 16:24:03 GMT
cf-cache-status: HIT
age: 4127
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a577ee580b55-OSL
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/nuke_ramp_s1.jpg
104.18.37.23200 OK 1.7 MB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/nuke_ramp_s1.jpg
IP 104.18.37.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1600, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2560], baseline, precision 8, 2560x1550, components 3\012- data
Size 1.7 MB (1651504 bytes)
Hash a46a90dfa0ff95ffe417db83880517ad
89768c735b18be81bfb2463468851be37c1e9ded
b6ef6da24205c0a8268a1a0547837cd9eda64fafbac8bb0dd03e4680c6312542
GET /apps/csgo/images/csgo_react/cs2/maps/nuke_ramp_s1.jpg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:18 GMT
content-type: image/jpeg
content-length: 1651504
cf-bgj: h2pri
etag: "641b2ba3-193330"
last-modified: Wed, 22 Mar 2023 16:24:03 GMT
cf-cache-status: HIT
age: 4127
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a577ee530b55-OSL
X-Firefox-Spdy: h2
code.jquery.com/ui/1.11.3/jquery-ui.js
69.16.175.10200 OK 114 kB URL HTTP/2 code.jquery.com/ui/1.11.3/jquery-ui.js
IP 69.16.175.10:0
File type ASCII text, with very long lines (547)
Size 114 kB (113814 bytes)
Hash d595864357e81aeb1b624932d550495a
e043531c00084b00e827dfde32d6d68be7bf614f
f5523e8c0ae03643c718fe76d589416b57add66ab075dc96bc16c7828cd653b8
GET /ui/1.11.3/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:18 GMT
content-encoding: gzip
content-length: 113814
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
accept-ranges: bytes
server: nginx
etag: W/"28feccc0-72b1e"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1679762958.dop226.sk1.t,1679762958.cds020.sk1.hn,1679762958.cds239.sk1.c
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/overpass_toilets_s2.jpg
104.18.37.23200 OK 1.6 MB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/overpass_toilets_s2.jpg
IP 104.18.37.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.1 (Windows), datetime=2023:03:15 14:37:48], baseline, precision 8, 2560x1550, components 3\012- data
Size 1.6 MB (1617559 bytes)
Hash eb819099c568413ebd83558acaf61de1
440977473a8c8c948708fc72fb5669d57ca7f258
36c50e09b29d952d7c30d2c4a6554ffe68ae93e92952eabc217df86f8df56e14
GET /apps/csgo/images/csgo_react/cs2/maps/overpass_toilets_s2.jpg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:18 GMT
content-type: image/jpeg
content-length: 1617559
cf-bgj: h2pri
etag: "641b2ba3-18ae97"
last-modified: Wed, 22 Mar 2023 16:24:03 GMT
cf-cache-status: HIT
age: 4127
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a577ee5a0b55-OSL
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/overpass_lower_tunnel_s2.jpg
104.18.37.23200 OK 2.1 MB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/overpass_lower_tunnel_s2.jpg
IP 104.18.37.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.1 (Windows), datetime=2023:03:15 21:48:12], baseline, precision 8, 2560x1550, components 3\012- data
Size 2.1 MB (2109069 bytes)
Hash cefa0fd8b3421bf23efdeb942a40e1fe
8e6c2bfa5b68902305b8cd83ebdc646d9e8ddae4
19de8d4c714e8b1ffc8adca52f7c327f3f460a688979a6323bf8bed7d4c9609d
GET /apps/csgo/images/csgo_react/cs2/maps/overpass_lower_tunnel_s2.jpg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:18 GMT
content-type: image/jpeg
content-length: 2109069
cf-bgj: h2pri
etag: "641b2ba3-202e8d"
last-modified: Wed, 22 Mar 2023 16:24:03 GMT
cf-cache-status: HIT
age: 4127
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a577ee570b55-OSL
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/nuke_default_s2.jpg
104.18.37.23200 OK 2.6 MB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/nuke_default_s2.jpg
IP 104.18.37.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.1 (Windows), datetime=2023:03:15 14:37:58], baseline, precision 8, 2560x1550, components 3\012- data
Size 2.6 MB (2632974 bytes)
Hash 9aab4e45cadb3ce60be5aa51559a0fc4
eee83fab6a0f25e5a7b8b42abeb5aaa801d3a974
c310fe7e74343c4e810f9ccb041bc3305e310f28c20c56d3503d6d03e3b45330
GET /apps/csgo/images/csgo_react/cs2/maps/nuke_default_s2.jpg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:18 GMT
content-type: image/jpeg
content-length: 2632974
cf-bgj: h2pri
etag: "641b2ba3-282d0e"
last-modified: Wed, 22 Mar 2023 16:24:03 GMT
cf-cache-status: HIT
age: 4127
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a577ee520b55-OSL
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/overpass_van_vista_s1.jpg
104.18.37.23200 OK 2.1 MB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/overpass_van_vista_s1.jpg
IP 104.18.37.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1600, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2560], baseline, precision 8, 2560x1550, components 3\012- data
Size 2.1 MB (2086643 bytes)
Hash f5257d92e9106d4bddf9d864c2b5ba46
6bf942abfc0746426432871e3a0bfa6c8f0527d5
6797a84bcc50e8458829e2bf645c3a3b343639c4c979a19c3ca565a46951c87a
GET /apps/csgo/images/csgo_react/cs2/maps/overpass_van_vista_s1.jpg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:18 GMT
content-type: image/jpeg
content-length: 2086643
cf-bgj: h2pri
etag: "641b2ba4-1fd6f3"
last-modified: Wed, 22 Mar 2023 16:24:04 GMT
cf-cache-status: HIT
age: 4127
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a577ee5c0b55-OSL
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react//cs2/audio.png
104.18.37.23200 OK 1.4 MB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react//cs2/audio.png
IP 104.18.37.23:0
File type PNG image data, 1280 x 720, 8-bit/color RGB, non-interlaced\012- data
Size 1.4 MB (1428663 bytes)
Hash 90fedfc1412d17506957f5673d1677dc
0b62cfb5e238244716c754cf35c092804c6b8c29
e8fba83857ce42249c840edc72ed23b19fdbcafa1ac50d236714c8e45f85ae93
GET /apps/csgo/images/csgo_react//cs2/audio.png HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:18 GMT
content-type: image/png
content-length: 1428663
last-modified: Wed, 22 Mar 2023 16:24:03 GMT
etag: "641b2ba3-15ccb7"
cf-cache-status: HIT
age: 4127
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a57d2cee0b55-OSL
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/nuke_t_s1.jpg
104.18.37.23200 OK 2.0 MB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/nuke_t_s1.jpg
IP 104.18.37.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1600, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2560], baseline, precision 8, 2560x1550, components 3\012- data
Size 2.0 MB (1969050 bytes)
Hash e5a5d93b55b716e4c5724528605f32cb
56f3409ba218667b77f83bd42eeee841e158b42c
49f5cb379ed5212593a7945e6ffb70c2e493c08e8902a8519f65026f0f478dca
GET /apps/csgo/images/csgo_react/cs2/maps/nuke_t_s1.jpg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:18 GMT
content-type: image/jpeg
content-length: 1969050
cf-bgj: h2pri
etag: "641b2ba3-1e0b9a"
last-modified: Wed, 22 Mar 2023 16:24:03 GMT
cf-cache-status: HIT
age: 4127
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a577ee5f0b55-OSL
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/nuke_backhall_s1.jpg
104.18.37.23200 OK 1.5 MB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/nuke_backhall_s1.jpg
IP 104.18.37.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1600, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2560], baseline, precision 8, 2560x1550, components 3\012- data
Size 1.5 MB (1512901 bytes)
Hash ac33ceff0d166b4de897bfe6220b6536
193904dedc6bd9d6b4a9f0033a48862c9cbaf5a6
3798341aa2a209ac3ace31878ffda01f5415678fda70a92483c930ff89ecc16a
GET /apps/csgo/images/csgo_react/cs2/maps/nuke_backhall_s1.jpg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:18 GMT
content-type: image/jpeg
content-length: 1512901
cf-bgj: h2pri
etag: "641b2ba3-1715c5"
last-modified: Wed, 22 Mar 2023 16:24:03 GMT
cf-cache-status: HIT
age: 4127
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a577ee610b55-OSL
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/nuke_ramp_s2.jpg
104.18.37.23200 OK 2.3 MB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/nuke_ramp_s2.jpg
IP 104.18.37.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.1 (Windows), datetime=2023:03:15 14:37:57], baseline, precision 8, 2560x1550, components 3\012- data
Size 2.3 MB (2298238 bytes)
Hash 0781288f07733256726f2edc9435463d
c6e77dac7b7e3e180e167cae99c80192bf5d53f8
48dc21392bfffb2f9e88310577fd03c5e62a53876a76fd375d92e80f58068fe4
GET /apps/csgo/images/csgo_react/cs2/maps/nuke_ramp_s2.jpg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:18 GMT
content-type: image/jpeg
content-length: 2298238
cf-bgj: h2pri
etag: "641b2ba3-23117e"
last-modified: Wed, 22 Mar 2023 16:24:03 GMT
cf-cache-status: HIT
age: 4127
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a577ee5e0b55-OSL
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/overpass_van_vista_s2.jpg
104.18.37.23200 OK 3.3 MB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/overpass_van_vista_s2.jpg
IP 104.18.37.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.1 (Windows), datetime=2023:03:20 15:14:04], baseline, precision 8, 2560x1550, components 3\012- data
Size 3.3 MB (3264571 bytes)
Hash 5c82919cb2bb2e50174fedfcb8a7b7a3
3b49a218c3dba839b4eddfb74430ed068c151128
b16815115631917abd5866540256110f222a070016c10a85ce759343a36745c5
GET /apps/csgo/images/csgo_react/cs2/maps/overpass_van_vista_s2.jpg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:18 GMT
content-type: image/jpeg
content-length: 3264571
cf-bgj: h2pri
etag: "641b2ba3-31d03b"
last-modified: Wed, 22 Mar 2023 16:24:03 GMT
cf-cache-status: HIT
age: 4127
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a577ee5d0b55-OSL
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/dust2_back_plat_s1.jpg
104.18.37.23200 OK 1.9 MB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/dust2_back_plat_s1.jpg
IP 104.18.37.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1600, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2560], baseline, precision 8, 2560x1550, components 3\012- data
Size 1.9 MB (1894594 bytes)
Hash 7b6189ab237d31c97f5e152147af65e4
ff8b20c05ed2a9e75565900a6d52cd31fdba5af3
ff8a49b6afae0d419d4bb7c39b29f7baff2588aadabf5de1fe8b059886f8d855
GET /apps/csgo/images/csgo_react/cs2/maps/dust2_back_plat_s1.jpg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:18 GMT
content-type: image/jpeg
content-length: 1894594
cf-bgj: h2pri
etag: "641b2ba3-1ce8c2"
last-modified: Wed, 22 Mar 2023 16:24:03 GMT
cf-cache-status: HIT
age: 4127
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a577ee640b55-OSL
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/overpass_back_long_s2.jpg
104.18.37.23200 OK 4.4 MB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/overpass_back_long_s2.jpg
IP 104.18.37.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.1 (Windows), datetime=2023:03:15 14:37:46], baseline, precision 8, 2560x1550, components 3\012- data
Size 4.4 MB (4378688 bytes)
Hash ea122ab3e323a0924bb765bc7ff2d065
9fcaa6cbf57cf3dcc91e7c0b6298030754c74c27
f3d31fe6093927d99f8e4d21d60be3d630461bdca335a5a44d3ad612dd45fe7e
GET /apps/csgo/images/csgo_react/cs2/maps/overpass_back_long_s2.jpg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:18 GMT
content-type: image/jpeg
content-length: 4378688
cf-bgj: h2pri
etag: "641b2ba4-42d040"
last-modified: Wed, 22 Mar 2023 16:24:04 GMT
cf-cache-status: HIT
age: 4127
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a577ee550b55-OSL
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/nuke_backhall_s2.jpg
104.18.37.23200 OK 2.3 MB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/nuke_backhall_s2.jpg
IP 104.18.37.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.1 (Windows), datetime=2023:03:15 21:15:29], baseline, precision 8, 2560x1550, components 3\012- data
Size 2.3 MB (2255249 bytes)
Hash 2b3bfd69d72f2ff3e75fac72f28a7e34
c31a14c0797e391b2ed0f5b036d92db68f26f598
4377fd2363015405729899377f6a1dc6634b6a16c5635d6c0102301322c46bc1
GET /apps/csgo/images/csgo_react/cs2/maps/nuke_backhall_s2.jpg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:18 GMT
content-type: image/jpeg
content-length: 2255249
cf-bgj: h2pri
etag: "641b2ba3-226991"
last-modified: Wed, 22 Mar 2023 16:24:03 GMT
cf-cache-status: HIT
age: 4127
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a577ee630b55-OSL
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/nuke_t_s2.jpg
104.18.37.23200 OK 3.0 MB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/nuke_t_s2.jpg
IP 104.18.37.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.1 (Windows), datetime=2023:03:15 14:37:57], baseline, precision 8, 2560x1550, components 3\012- data
Size 3.0 MB (3027260 bytes)
Hash 88d80930d82325e48bc9208b330b0206
60881f48fb0cd38cdf3b65aa6e63ec82fe21d5c2
70f0518f2103d409027a00ef12f7b8a031122e76824667a0aefb55216e9f9685
GET /apps/csgo/images/csgo_react/cs2/maps/nuke_t_s2.jpg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:18 GMT
content-type: image/jpeg
content-length: 3027260
cf-bgj: h2pri
etag: "641b2ba3-2e313c"
last-modified: Wed, 22 Mar 2023 16:24:03 GMT
cf-cache-status: HIT
age: 4127
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a577ee600b55-OSL
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/dust2_blue_s1.jpg
104.18.37.23200 OK 2.1 MB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/dust2_blue_s1.jpg
IP 104.18.37.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1600, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2560], baseline, precision 8, 2560x1550, components 3\012- data
Size 2.1 MB (2075051 bytes)
Hash 543faba5f6a976c67a0b14ee2155ccad
7ac8dd508317e0bc05c02db3e9f966993a6d6409
ee54b993843e4aae3191ea3f0244da974f6cd46b3900033775d1498f0f008ffe
GET /apps/csgo/images/csgo_react/cs2/maps/dust2_blue_s1.jpg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:18 GMT
content-type: image/jpeg
content-length: 2075051
cf-bgj: h2pri
etag: "641b2ba3-1fa9ab"
last-modified: Wed, 22 Mar 2023 16:24:03 GMT
cf-cache-status: HIT
age: 4127
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a577fe710b55-OSL
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/dust2_ct_ramp_s1.jpg
104.18.37.23200 OK 1.7 MB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/dust2_ct_ramp_s1.jpg
IP 104.18.37.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1600, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2560], baseline, precision 8, 2560x1550, components 3\012- data
Size 1.7 MB (1689283 bytes)
Hash 59cae543c5835172439aa764e2010333
99c61c478b0973d6768a924f4f23c53396527243
08ad4775683675975f58b1022ebb40ec1657ef9e98e78d1e82b41b910edfbd77
GET /apps/csgo/images/csgo_react/cs2/maps/dust2_ct_ramp_s1.jpg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:18 GMT
content-type: image/jpeg
content-length: 1689283
cf-bgj: h2pri
etag: "641b2ba3-19c6c3"
last-modified: Wed, 22 Mar 2023 16:24:03 GMT
cf-cache-status: HIT
age: 4127
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a578df9d0b55-OSL
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/dust2_back_plat_s2.jpg
104.18.37.23200 OK 2.9 MB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/dust2_back_plat_s2.jpg
IP 104.18.37.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.1 (Windows), datetime=2023:03:15 14:38:04], baseline, precision 8, 2560x1550, components 3\012- data
Size 2.9 MB (2869485 bytes)
Hash dc001a2648de83ec35b0c6271b244fa4
535ae2f23c94d17d63a520bd6e8ef4270f669ce4
422640b3c8433a15c0c3ba2d4f642353937668cf6e0aaf3c6b9bed2137073992
GET /apps/csgo/images/csgo_react/cs2/maps/dust2_back_plat_s2.jpg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:18 GMT
content-type: image/jpeg
content-length: 2869485
cf-bgj: h2pri
etag: "641b2ba3-2bc8ed"
last-modified: Wed, 22 Mar 2023 16:24:03 GMT
cf-cache-status: HIT
age: 4127
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a577fe6f0b55-OSL
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/dust2_double_doors_s1.jpg
104.18.37.23200 OK 1.6 MB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/dust2_double_doors_s1.jpg
IP 104.18.37.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1600, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2560], baseline, precision 8, 2560x1550, components 3\012- data
Size 1.6 MB (1638878 bytes)
Hash 58c403e2b6a6b7f425a1278731a66764
7959d3cf2cdf5d4131e59c84e103744de7ef3eb3
448d3c49c57c1b377e9177a0b0271991d8dfb8fe8a2795d26bad7b23eebea577
GET /apps/csgo/images/csgo_react/cs2/maps/dust2_double_doors_s1.jpg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:18 GMT
content-type: image/jpeg
content-length: 1638878
cf-bgj: h2pri
etag: "641b2ba3-1901de"
last-modified: Wed, 22 Mar 2023 16:24:03 GMT
cf-cache-status: HIT
age: 4127
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a578ffb80b55-OSL
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/dust2_blue_s2.jpg
104.18.37.23200 OK 3.0 MB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/dust2_blue_s2.jpg
IP 104.18.37.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.1 (Windows), datetime=2023:03:15 14:38:02], baseline, precision 8, 2560x1550, components 3\012- data
Size 3.0 MB (3001242 bytes)
Hash f74fba6d65fe3791cbd2381ce2cd053d
7bc1bb056df3111928479757dbde06f1925c5fc1
368d1f3955b8d9950419aeaac1a4c8f1eff0a0629a3e7cb759d0260e5c5dfd48
GET /apps/csgo/images/csgo_react/cs2/maps/dust2_blue_s2.jpg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:18 GMT
content-type: image/jpeg
content-length: 3001242
cf-bgj: h2pri
etag: "641b2ba3-2dcb9a"
last-modified: Wed, 22 Mar 2023 16:24:03 GMT
cf-cache-status: HIT
age: 4127
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a578df9b0b55-OSL
X-Firefox-Spdy: h2
counter-strike.net/public/css/csgo_react/main.css?v=Ar0BRBbmNjln&l=english&_cdn=cloudflare
104.66.119.117200 OK 44 kB URL HTTP/1.1 counter-strike.net/public/css/csgo_react/main.css?v=Ar0BRBbmNjln&l=english&_cdn=cloudflare
IP 104.66.119.117:0
File type ASCII text, with very long lines (35751), with CRLF, LF line terminators
Hash 8e620b8c85cefc66be58191a8dc6c0ec
c5ad1f5d241a694aefefa64d54f5f7f1430adb1a
43ff3e355f12f003fcadfabd3531c1b909a7695e70c750ba62439cb58ac72487
GET /public/css/csgo_react/main.css?v=Ar0BRBbmNjln&l=english&_cdn=cloudflare HTTP/1.1
Host: counter-strike.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: text/css;charset=UTF-8
Content-Length: 44167
Cache-Control: public,max-age=15552000
Expires: Mon, 18 Sep 2023 16:37:59 GMT
ETag: "Ar0BRBbmNjln"
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Sat, 25 Mar 2023 16:49:20 GMT
Connection: keep-alive
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react//cs2/smokes_vid3.mp4
104.18.37.23206 Partial Content 681 kB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react//cs2/smokes_vid3.mp4
IP 104.18.37.23:0
Size 681 kB (680887 bytes)
Hash 18ba5597f6e6ff5724686cf28810d5e6
5e1635e0f115ab8eced51560b2a53c15f44edca5
49350d2f87c0270ae2255e71c1a80c5676d1087cf9b806efbf58b972bd9b1ff1
GET /apps/csgo/images/csgo_react//cs2/smokes_vid3.mp4 HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Sat, 25 Mar 2023 16:49:20 GMT
content-type: video/mp4
content-length: 679287
last-modified: Wed, 22 Mar 2023 16:24:04 GMT
etag: "641b2ba4-a5d77"
cf-cache-status: HIT
age: 3542
content-range: bytes 0-679286/679287
server: cloudflare
cf-ray: 7ad8a5857f470b55-OSL
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/dust2_double_doors_s2.jpg
104.18.37.23200 OK 2.5 MB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/dust2_double_doors_s2.jpg
IP 104.18.37.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.1 (Windows), datetime=2023:03:15 14:38:03], baseline, precision 8, 2560x1550, components 3\012- data
Size 2.5 MB (2483567 bytes)
Hash dc93f1de15370431eee93d0e32086b07
03d53fc4c6a9551a616514db1f15f264b69adce2
6a856f9314f841ea888ce173193dd02f3a5d89548deb0cb47e77cfa532b2a90a
GET /apps/csgo/images/csgo_react/cs2/maps/dust2_double_doors_s2.jpg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:18 GMT
content-type: image/jpeg
content-length: 2483567
cf-bgj: h2pri
etag: "641b2ba3-25e56f"
last-modified: Wed, 22 Mar 2023 16:24:03 GMT
cf-cache-status: HIT
age: 4127
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a578ffba0b55-OSL
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, ETag, Content-Type, Cache-Control, Pragma, Alert, Last-Modified, Retry-After, Backoff, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 25 Mar 2023 16:17:24 GMT
age: 1916
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/dust2_ct_ramp_s2.jpg
104.18.37.23200 OK 3.1 MB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/dust2_ct_ramp_s2.jpg
IP 104.18.37.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.1 (Windows), datetime=2023:03:15 14:38:01], baseline, precision 8, 2560x1550, components 3\012- data
Size 3.1 MB (3073682 bytes)
Hash 677c0848692482f7e8eae212de68dc18
f661103644343369588588d187ec7510af4aed85
0dd7dbf630e269749b52995ba9fa53b8c23a9b330b2c3744e2afe6445b7651b6
GET /apps/csgo/images/csgo_react/cs2/maps/dust2_ct_ramp_s2.jpg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:18 GMT
content-type: image/jpeg
content-length: 3073682
cf-bgj: h2pri
etag: "641b2ba4-2ee692"
last-modified: Wed, 22 Mar 2023 16:24:04 GMT
cf-cache-status: HIT
age: 4127
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a578efaa0b55-OSL
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/overpass_back_long_s1.jpg
104.18.37.23200 OK 2.9 MB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/maps/overpass_back_long_s1.jpg
IP 104.18.37.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1600, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2560], baseline, precision 8, 2560x1550, components 3\012- data
Size 2.9 MB (2856616 bytes)
Hash a8176b26cadb1d3be4839f8155f0ae4a
5baa44fcf9d23f3e2ccf06cfc312622f8980df1f
9ce022d781f5899adfa5da6f066dc2068a1f4bad65c494a55fc5fbaa442fa14c
GET /apps/csgo/images/csgo_react/cs2/maps/overpass_back_long_s1.jpg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:18 GMT
content-type: image/jpeg
content-length: 2856616
cf-bgj: h2pri
etag: "641b2ba3-2b96a8"
last-modified: Wed, 22 Mar 2023 16:24:03 GMT
cf-cache-status: HIT
age: 4127
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a57d2cf30b55-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 70300b32357c46f3448d567189b64cb3
6ba66a5cf63cdbfeaec59b936151cc812bac56df
5a2b4f9fc5ebaa8062058bf68eae75fc28e06c6ef6a0e79c3c761c1d92f81cb9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5A2B4F9FC5EBAA8062058BF68EAE75FC28E06C6EF6A0E79C3C761C1D92F81CB9"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9267
Expires: Sat, 25 Mar 2023 19:23:47 GMT
Date: Sat, 25 Mar 2023 16:49:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 70300b32357c46f3448d567189b64cb3
6ba66a5cf63cdbfeaec59b936151cc812bac56df
5a2b4f9fc5ebaa8062058bf68eae75fc28e06c6ef6a0e79c3c761c1d92f81cb9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5A2B4F9FC5EBAA8062058BF68EAE75FC28E06C6EF6A0E79C3C761C1D92F81CB9"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9267
Expires: Sat, 25 Mar 2023 19:23:47 GMT
Date: Sat, 25 Mar 2023 16:49:20 GMT
Connection: keep-alive
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/textures/linemap-20.png
104.18.37.23200 OK 68 kB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/textures/linemap-20.png
IP 104.18.37.23:0
File type PNG image data, 514 x 513, 8-bit/color RGBA, non-interlaced\012- data
Hash f942ee7750c81f0643b6666e5f3c056b
7122ff1b82b5da71a38bf7a77e8874ae8f3eb572
73123b376e46469b0c366783b596211f3d8818d09275583795c7c7bf70850779
GET /apps/csgo/images/csgo_react/textures/linemap-20.png HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://counter-strike.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:20 GMT
content-type: image/png
content-length: 67997
last-modified: Wed, 22 Mar 2023 16:24:04 GMT
etag: "641b2ba4-1099d"
cf-cache-status: HIT
age: 4129
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a587ea470b55-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f0f306ea49f1bd3f358f7579513e7377
c2845c696f6685a211bc040895d28ebf23fa1bc0
cda7588d5040ef3c8e83955838618a0ed0a6ee242d24abf5af697b2289fc8bdb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:49:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f0f306ea49f1bd3f358f7579513e7377
c2845c696f6685a211bc040895d28ebf23fa1bc0
cda7588d5040ef3c8e83955838618a0ed0a6ee242d24abf5af697b2289fc8bdb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:49:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f0f306ea49f1bd3f358f7579513e7377
c2845c696f6685a211bc040895d28ebf23fa1bc0
cda7588d5040ef3c8e83955838618a0ed0a6ee242d24abf5af697b2289fc8bdb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:49:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f0f306ea49f1bd3f358f7579513e7377
c2845c696f6685a211bc040895d28ebf23fa1bc0
cda7588d5040ef3c8e83955838618a0ed0a6ee242d24abf5af697b2289fc8bdb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:49:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7e3ff6b78faf64b75d13e5e4c390f7c5
1ec395988633a280be5876ea74b91b994ca88bda
470501dd8e4cb351f2b3effe7507b9582758ecf492d587545f740c13527289d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:49:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.cloudflare.steamstatic.com/apps/csgo/videos/csgo_react/cs2/video_ticks.mp4
104.18.37.23206 Partial Content 1.6 MB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/videos/csgo_react/cs2/video_ticks.mp4
IP 104.18.37.23:0
File type ISO Media, MP4 v2 [ISO 14496-14]\012- data
Size 1.6 MB (1551485 bytes)
Hash bd0f63ed7ddb36aacc9e8c9d885f2ffb
7da5091c94f8ffb00c7f31e9f733737c4a6fd99d
0b51468cc708ef289886ef800bec038f474062602d53bbe681b448c60b8e0700
GET /apps/csgo/videos/csgo_react/cs2/video_ticks.mp4 HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Sat, 25 Mar 2023 16:49:20 GMT
content-type: video/mp4
content-length: 2436596
last-modified: Wed, 22 Mar 2023 16:24:04 GMT
etag: "641b2ba4-252df4"
cf-cache-status: HIT
age: 3542
content-range: bytes 0-2436595/2436596
server: cloudflare
cf-ray: 7ad8a5857f4b0b55-OSL
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/fonts/Stratum2WebRegular.woff
104.18.37.23200 OK 43 kB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/fonts/Stratum2WebRegular.woff
IP 104.18.37.23:0
File type Web Open Font Format, TrueType, length 43144, version 0.0\012- data
Hash 0c8cb7ff922b86c6706e69ee089e695c
4bd5e974f5de10081d0b2baa70a58ae01410e0f0
fe001b54af95d838e6630d86b61a26ed048c1df3b1cbed5457658a9c6d933d21
GET /apps/csgo/fonts/Stratum2WebRegular.woff HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://csgo2claim.com
Connection: keep-alive
Referer: https://counter-strike.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:20 GMT
content-type: font/woff
content-length: 43144
last-modified: Wed, 22 Mar 2023 16:24:03 GMT
etag: "641b2ba3-a888"
access-control-allow-origin: *
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a588fb6d0b55-OSL
X-Firefox-Spdy: h2
csgo2claim.com/goto
172.67.207.200200 OK 1.6 MB IP 172.67.207.200:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (759)
Size 1.6 MB (1558008 bytes)
Hash f83ea7438aa4718793e2bdb7fba873f2
3af0e0229c86e14a5ec35f9d602dbd8b32e3507e
267d05b8ec69f7ab64aa3098f18239f6cf44b6eb6147efb378455adb593f4f78
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /goto HTTP/1.1
Host: csgo2claim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:17 GMT
content-type: text/html
last-modified: Sat, 25 Mar 2023 01:03:34 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cjcU2irICTTBi4%2B7OEyomkFaB8Qv4Lk7QGVbUY8FI76cpf6vlK1gSZDjei%2FCfJB7BqcMvmsDbeUyt84BSK11ItfP9SMmxZV4jbU8vEmqj%2FZW4BhuqxRKoi3hysNIrSy1TA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ad8a5761f280b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12393
Expires: Sat, 25 Mar 2023 20:15:53 GMT
Date: Sat, 25 Mar 2023 16:49:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12393
Expires: Sat, 25 Mar 2023 20:15:53 GMT
Date: Sat, 25 Mar 2023 16:49:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12393
Expires: Sat, 25 Mar 2023 20:15:53 GMT
Date: Sat, 25 Mar 2023 16:49:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12393
Expires: Sat, 25 Mar 2023 20:15:53 GMT
Date: Sat, 25 Mar 2023 16:49:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12393
Expires: Sat, 25 Mar 2023 20:15:53 GMT
Date: Sat, 25 Mar 2023 16:49:20 GMT
Connection: keep-alive
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/vfx/blood_hit_fx.mp4
104.18.37.23206 Partial Content 1.2 MB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/vfx/blood_hit_fx.mp4
IP 104.18.37.23:0
File type ISO Media, MP4 v2 [ISO 14496-14]\012- data
Size 1.2 MB (1220624 bytes)
Hash da98569e94f51a65101d8c5884b96f52
d58a66a8f038f139c8bb21a8b815d87a8d56bdca
ace7d36d5d027bca32c8365f61df3d491f7074789d8a4f7039b2d788f2d25bb2
GET /apps/csgo/images/csgo_react/cs2/vfx/blood_hit_fx.mp4 HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Sat, 25 Mar 2023 16:49:20 GMT
content-type: video/mp4
content-length: 3416505
last-modified: Wed, 22 Mar 2023 16:24:04 GMT
etag: "641b2ba4-3421b9"
cf-cache-status: HIT
age: 3542
content-range: bytes 0-3416504/3416505
server: cloudflare
cf-ray: 7ad8a5857f510b55-OSL
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5773974a7341690f006b052ad02c94db
1b11316c952e2195da1646dd94671669e7e3bc2b
a06b72138745500cacc919fea29536ebd4188a1c483f6123e3402458e299f16a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7800
x-amzn-requestid: bad99b1e-3923-4de9-8bea-4dd04e96f7cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTigfFGcIAMFdBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e179c-0826b92d4c4af16553503600;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:24 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 9AGLmjvUSTKIsYIWECOR8QwdF4PP1tP1TweUm0VYvxQ0qskqj3YuLA==
via: 1.1 3698a5f586d9ecca74d570e41f4c8516.cloudfront.net (CloudFront), 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:18 GMT
age: 68942
etag: "1b11316c952e2195da1646dd94671669e7e3bc2b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aecd210f66f83c73c3450d047ae7448a
d68861e96e12e8a3f293dbae8b687f05b6e15afb
22b69c41c56e5538d91f824d5dc2e63ab5563f99ae8e429c9166f4b397cacd0e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5296
x-amzn-requestid: 11fdf0c8-244c-4cd5-bfa7-4c77d777174f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTiuzEqkIAMFXOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17f8-5c241d63598dbf595b54ead5;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:36:56 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: b1KWFmKdRQ4DU0v5JmC7AJatpv2B5FAHKVWL7pFiyh13fqYDA5qydA==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:28 GMT
age: 68932
etag: "d68861e96e12e8a3f293dbae8b687f05b6e15afb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.13.249.229101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.13.249.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: FpuBTZJ81lI+1+4UotBMJg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: JE+y/mxzP1TYp0HS7qS8txKHVK8=
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dd191e3a122d6e31f81e6e9d434c58d6
aec88022970c93289434f8097e4a663da33e5271
1f00c901ef479637ec703d7924526a970cb13dd2635b2bbb68b285df9d98e011
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6185
x-amzn-requestid: 223de50b-9a7e-4ac7-9305-336658eec4ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTiwYHoLoAMFXtg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e1802-226bd8524ade75234053ff50;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:37:06 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: tMnTFkK-AtSlEsQskvoxwwCjddndz5GBLHiV5RHi3QumyL6MVC9ovg==
via: 1.1 3698a5f586d9ecca74d570e41f4c8516.cloudfront.net (CloudFront), 1.1 34f8ef0e4c880df0650a814412a26ea6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:28 GMT
age: 68932
etag: "aec88022970c93289434f8097e4a663da33e5271"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/map_s2tools.mp4
104.18.37.23206 Partial Content 1.3 MB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/map_s2tools.mp4
IP 104.18.37.23:0
File type ISO Media, MP4 v2 [ISO 14496-14]\012- data
Size 1.3 MB (1280530 bytes)
Hash 18efea84104ec3eebbbcac7a551f21d9
e592cb08add99730834945a35ac8de9f29a13357
6c1605ceab60ab56346c8808702401883859bcf29dd3b8658c6469f790bb665f
GET /apps/csgo/images/csgo_react/cs2/map_s2tools.mp4 HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Sat, 25 Mar 2023 16:49:20 GMT
content-type: video/mp4
content-length: 1483089
last-modified: Wed, 22 Mar 2023 16:24:03 GMT
etag: "641b2ba3-16a151"
cf-cache-status: HIT
age: 3542
content-range: bytes 0-1483088/1483089
server: cloudflare
cf-ray: 7ad8a5857f4f0b55-OSL
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/vfx/explosions.mp4
104.18.37.23206 Partial Content 1.1 MB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/vfx/explosions.mp4
IP 104.18.37.23:0
File type ISO Media, MP4 v2 [ISO 14496-14]\012- data
Size 1.1 MB (1053665 bytes)
Hash cdb7d1aed8670f777b2c8619a4d1231e
53aa31d8eabe66ec144ea0980f2c641a8905aa92
cb5350502918e85c77cbf4270db23b00f14a6f9b2e967e71b89e0075669115f9
GET /apps/csgo/images/csgo_react/cs2/vfx/explosions.mp4 HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Sat, 25 Mar 2023 16:49:20 GMT
content-type: video/mp4
content-length: 2225842
last-modified: Wed, 22 Mar 2023 16:24:04 GMT
etag: "641b2ba4-21f6b2"
cf-cache-status: HIT
age: 3542
content-range: bytes 0-2225841/2225842
server: cloudflare
cf-ray: 7ad8a5857f530b55-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7e3ff6b78faf64b75d13e5e4c390f7c5
1ec395988633a280be5876ea74b91b994ca88bda
470501dd8e4cb351f2b3effe7507b9582758ecf492d587545f740c13527289d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:49:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ce6948c57f579a85042a4388c45514d6
4b3002c036034ef0cb8d9eb73b7bf7f561862b99
85e655e198ac1724ffca7bf4efc4f98de8c436cebf41ed665cc397fbb02a243a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:49:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ce6948c57f579a85042a4388c45514d6
4b3002c036034ef0cb8d9eb73b7bf7f561862b99
85e655e198ac1724ffca7bf4efc4f98de8c436cebf41ed665cc397fbb02a243a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:49:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:41 GMT
expires: Sat, 23 Mar 2024 10:26:41 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 109360
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:42 GMT
expires: Sat, 23 Mar 2024 10:26:42 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 109359
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i.imgur.com/7MraScM.png
151.101.84.193200 OK 721 B IP 151.101.84.193:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 62e63f713ff6d956fdb02c13261f1708
e2722c5e07ac4e17abdd2ab5817e828ef94a17bd
a8f55808e1ac0273532edfa3ba75f93730ae20367f410c86ab0bcb17c8d02466
GET /7MraScM.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 22 Mar 2023 18:03:27 GMT
etag: "62e63f713ff6d956fdb02c13261f1708"
x-amz-server-side-encryption: AES256
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Sat, 25 Mar 2023 16:49:21 GMT
age: 254755
x-served-by: cache-iad-kcgs7200118-IAD, cache-bma1631-BMA
x-cache: MISS, HIT
x-cache-hits: 0, 2
x-timer: S1679762961.428531,VS0,VE0
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 721
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash fa363658b10afd87af493d2c443e3106
6d1f5da75206662432381be4dd22e72fb3cb968a
f0d0e2a38e51f762415e65b7f49f2acd09b4651b5c111875ff9184a58f0cc8f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:49:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.70200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.70:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 25 Mar 2023 16:35:11 GMT
expires: Sat, 25 Mar 2023 16:50:11 GMT
cache-control: public, max-age=900
age: 850
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash eef4409d0ad90e2899e538028bd3fa76
2d6edd13cbd2d201ef921fc33c053aec8f8b740c
61eef3a534769ac291c82d37206b392dea96af36a38e9d7da4cf0fb2d5d2342d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:49:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/id
142.250.74.162302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Sat, 25 Mar 2023 16:49:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash fa363658b10afd87af493d2c443e3106
6d1f5da75206662432381be4dd22e72fb3cb968a
f0d0e2a38e51f762415e65b7f49f2acd09b4651b5c111875ff9184a58f0cc8f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:49:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/bgGray.svg
104.18.37.23200 OK 4.4 kB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/bgGray.svg
IP 104.18.37.23:0
Hash ac17956ee9079575916eb5538bf1d495
f803f74cc0c23bb9ca409c613914b241207e12f7
9eafd44d94781c79f2eef7c5a0cfb0834fdc5f4f73b5b5755abfeb72bbc81dfd
GET /apps/csgo/images/csgo_react/cs2/bgGray.svg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://counter-strike.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:20 GMT
content-type: image/svg+xml
last-modified: Wed, 22 Mar 2023 16:24:03 GMT
etag: W/"641b2ba3-38df"
cf-cache-status: HIT
age: 4129
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a5887aec0b55-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 63ca8c4e17e0b692d1829cd62b9af3af
d0bbecbe0b93ea21026898dbd13edee5fc071cb2
1208545ecf01edb7bcef0b3c288d9edd34d2034c7404ba68a64c2ef251cb42f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:49:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3a85d9c2de0b1015b62c81a1ab7fe625
389c7fe2d0d53ff607a3fd8e27283c8f1cb3a238
717fa1c4098bd6e282c24452a39aafc0b436941b2f398ef0086960effcc3f2ca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:49:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9b762efe5751eb25cd26ca67ad6dcf22
661f1247ecc842236957d05747967ec4f20835a2
c51c54e54ffc33cc7643bb0a64da2265f93efaf38838351ec0f2a2fe102efa2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:49:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.170200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sat, 25 Mar 2023 16:49:22 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 994368e9cd3edd7245f8ad39ac8565c5
0b08a0465cb418aba7dd3d401b727613315166f2
a2e99e3e0f86d8e1d5fb288e943518a03c05196ac592cefaaaa8dfc962fba4f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:49:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/bgOrange.svg
104.18.37.23200 OK 18 kB URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/bgOrange.svg
IP 104.18.37.23:0
Hash a925666e4a2488fee266ec822e7e97d8
594a83155e79f558e04bd464810c3a8acad0e421
40ffb08c834c2694f52d4b97a23308fd545b86d25aba735ab0fd3851de5d0589
GET /apps/csgo/images/csgo_react/cs2/bgOrange.svg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://counter-strike.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:20 GMT
content-type: image/svg+xml
last-modified: Wed, 22 Mar 2023 16:24:03 GMT
etag: W/"641b2ba3-3309"
cf-cache-status: HIT
age: 4129
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a5887aed0b55-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.170200 OK 3 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.170:0
Hash 344cb90c9cea24e3fd7d53c37a700afd
4460d93d41e542dbffba74b05bcfaf5bf88327d0
fa8b3050c745eb53dd2bea7ba537764269e8aca03015419f4a4327544640773a
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sat, 25 Mar 2023 16:49:22 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/js/th/zSRPe1x9Qzj8HrqOv9VzSTVp8VQLU5DvkSPeJaRtFaU.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/zSRPe1x9Qzj8HrqOv9VzSTVp8VQLU5DvkSPeJaRtFaU.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (35820)
Hash 38203f7d380a9057f6cd98bc00d718d0
8c196c9a155974e4a65c4b7e437db69cd8c19c33
67a507df610fdafe019d9263c3c8e9be353200ab2e7f58c654de0ad37f0cae7a
GET /js/th/zSRPe1x9Qzj8HrqOv9VzSTVp8VQLU5DvkSPeJaRtFaU.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14172
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Mar 2023 14:17:07 GMT
expires: Thu, 21 Mar 2024 14:17:07 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Mar 2023 10:00:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 268335
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.170200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.170:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 60c14ec7c1768f20eef0582b91a0aed0
0a175173d374c32b3f64f2c86de22403e6ba02e4
5844b4b4fb7043fa9cc2631256f5858182d7629df4bd0e4dce15207c9ebfd027
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 25 Mar 2023 16:49:22 GMT
server: ESF
cache-control: private
content-length: 30788
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3a85d9c2de0b1015b62c81a1ab7fe625
389c7fe2d0d53ff607a3fd8e27283c8f1cb3a238
717fa1c4098bd6e282c24452a39aafc0b436941b2f398ef0086960effcc3f2ca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:49:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.170200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.170:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash c447b274d3239531be6d78837fa124c0
9bf4ccb7207404a0c3d080ccb07373ac54654116
ef7575ca79152c241cff2b8a5f46aa63359e3069598a9d76cc67b68afca097ea
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 25 Mar 2023 16:49:22 GMT
server: ESF
cache-control: private
content-length: 31178
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i.ytimg.com/vi/_y9MpNcAitQ/maxresdefault.jpg
142.250.74.22200 OK 134 kB URL HTTP/2 i.ytimg.com/vi/_y9MpNcAitQ/maxresdefault.jpg
IP 142.250.74.22:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Size 134 kB (133751 bytes)
Hash a5f7a8fc076a07bf62660bc65bdca49d
06665fee36c516848ddc814df0263d52cdbcce1b
4b8bbd2a565ca7164856e9ebdbe6a165f6ff0eb7823a064dd97033c7103f9184
GET /vi/_y9MpNcAitQ/maxresdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 133751
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 25 Mar 2023 16:45:32 GMT
expires: Sat, 25 Mar 2023 18:45:32 GMT
cache-control: public, max-age=7200
etag: "1679466804"
content-type: image/jpeg
vary: Origin
age: 230
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 994368e9cd3edd7245f8ad39ac8565c5
0b08a0465cb418aba7dd3d401b727613315166f2
a2e99e3e0f86d8e1d5fb288e943518a03c05196ac592cefaaaa8dfc962fba4f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:49:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
embed.tawk.to/_s/v4/app/641d54f6f05/js/twk-vendor.js
104.22.24.131200 OK 28 kB URL HTTP/2 embed.tawk.to/_s/v4/app/641d54f6f05/js/twk-vendor.js
IP 104.22.24.131:0
File type ASCII text, with very long lines (65472)
Hash 0f5a1a52212491d09a895935c35f5251
1e8d206171c5e5bdac2953885080b91e0339f1b2
e0d111b4157cb1f552b7239c852b08a8b41b0f8f7d60b0099fb9dc5de99f89c4
GET /_s/v4/app/641d54f6f05/js/twk-vendor.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://csgo2claim.com
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:22 GMT
content-type: application/javascript
age: 31822
last-modified: Fri, 24 Mar 2023 07:45:38 GMT
etag: W/"7dcb496e4882926f93f2e73fa87062c0"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ad8a5933d78b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
yt3.ggpht.com/ytc/AL5GRJXmgQ_y00ZLxFqv_6ubYYY40EuR-pDpiAXKSB91=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 3.0 kB URL HTTP/2 yt3.ggpht.com/ytc/AL5GRJXmgQ_y00ZLxFqv_6ubYYY40EuR-pDpiAXKSB91=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash 7c00908eea5fee3620506968e4332b40
79a1d29884a42f917c094acaf8a97b03e6aac91f
60f8edbb4ed827eb11612f4e3c2a494d999c36dc00bbfdcf9d42e57229aba4ce
GET /ytc/AL5GRJXmgQ_y00ZLxFqv_6ubYYY40EuR-pDpiAXKSB91=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2970
x-xss-protection: 0
date: Sat, 25 Mar 2023 14:05:24 GMT
expires: Thu, 23 Mar 2023 18:05:11 GMT
cache-control: public, max-age=86400, no-transform
age: 9838
etag: "v62"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.170200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sat, 25 Mar 2023 16:49:22 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.170200 OK 110 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.170:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0c237d1324a61e72c070184e39b93014
6fcc296892874a764d4d0fea7c263a8f8edba6c2
f00922a9d3d39c71c09ba73ea9f5a92c00f65f50e9f66c47b79b7bea80d116d3
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1042
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 25 Mar 2023 16:49:22 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a229e13ab0262306e8233705569c7866
d389ff1fc114c031f85a57a9ebf1845ead515e38
9865a8767eed63858b778ab5774d5ae48fc46d0adcb1693c76eabb9ad9e81bc1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:49:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vsb97.tawk.to/s/?k=641f2613ef55153d25936c99&cver=0&pop=false&asver=6&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2NDFlNDcyYzQyNDdmMjBmZWZlN2Q5YmYiLCJ2aWQiOiI2NDFlNDcyYzQyNDdmMjBmZWZlN2Q5YmYtek8zR2Z5VkFzbDZ1Q2dMTUNjbnp0Iiwic2lkIjoiNjQxZjI2MTNlZjU1MTUzZDI1OTM2Yzk5IiwiaWF0IjoxNjc5NzYyOTYzLCJleHAiOjE2Nzk3NjQ3NjMsImp0aSI6Ingxa0oxQ0FuMlBGQWEyOWg4V0kydiJ9.ofpC5CgFoQkTx2hm1mIj3zj5bYF4C-Co77bO40uRi9ziZH8lScHocTj312fboOdIpoVRxRmMxakziQEle1jqsg&EIO=3&transport=websocket&__t=OSPhF1z
104.22.24.131101 Switching Protocols 7.4 kB URL HTTP/1.1 vsb97.tawk.to/s/?k=641f2613ef55153d25936c99&cver=0&pop=false&asver=6&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2NDFlNDcyYzQyNDdmMjBmZWZlN2Q5YmYiLCJ2aWQiOiI2NDFlNDcyYzQyNDdmMjBmZWZlN2Q5YmYtek8zR2Z5VkFzbDZ1Q2dMTUNjbnp0Iiwic2lkIjoiNjQxZjI2MTNlZjU1MTUzZDI1OTM2Yzk5IiwiaWF0IjoxNjc5NzYyOTYzLCJleHAiOjE2Nzk3NjQ3NjMsImp0aSI6Ingxa0oxQ0FuMlBGQWEyOWg4V0kydiJ9.ofpC5CgFoQkTx2hm1mIj3zj5bYF4C-Co77bO40uRi9ziZH8lScHocTj312fboOdIpoVRxRmMxakziQEle1jqsg&EIO=3&transport=websocket&__t=OSPhF1z
IP 104.22.24.131:0
Hash 9605cede6a137a6a98a27ac8c11b6263
400ccdb52aa27be85305898ffec9a4829f45e293
d67d30910c1a6ba0da4ae5ade736b678cf52c9c6cf6079ce5125d2db972c9490
GET /s/?k=641f2613ef55153d25936c99&cver=0&pop=false&asver=6&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2NDFlNDcyYzQyNDdmMjBmZWZlN2Q5YmYiLCJ2aWQiOiI2NDFlNDcyYzQyNDdmMjBmZWZlN2Q5YmYtek8zR2Z5VkFzbDZ1Q2dMTUNjbnp0Iiwic2lkIjoiNjQxZjI2MTNlZjU1MTUzZDI1OTM2Yzk5IiwiaWF0IjoxNjc5NzYyOTYzLCJleHAiOjE2Nzk3NjQ3NjMsImp0aSI6Ingxa0oxQ0FuMlBGQWEyOWg4V0kydiJ9.ofpC5CgFoQkTx2hm1mIj3zj5bYF4C-Co77bO40uRi9ziZH8lScHocTj312fboOdIpoVRxRmMxakziQEle1jqsg&EIO=3&transport=websocket&__t=OSPhF1z HTTP/1.1
Host: vsb97.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://csgo2claim.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DoxcAIBEuU4qeFzyZulZ4A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Sat, 25 Mar 2023 16:49:24 GMT
Connection: upgrade
upgrade: websocket
sec-websocket-accept: 3/JcfcjeoqlT8ynHTfIVx1Vqv5E=
sec-websocket-extensions: permessage-deflate
strict-transport-security: max-age=0; includeSubDomains; preload
CF-Cache-Status: DYNAMIC
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 7ad8a599fa8b0b61-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/thumbnails/weapons.mp4
104.18.37.23206 Partial Content 0 B URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/thumbnails/weapons.mp4
IP 104.18.37.23:0
GET /apps/csgo/images/csgo_react/cs2/thumbnails/weapons.mp4 HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Sat, 25 Mar 2023 16:49:20 GMT
content-type: video/mp4
content-length: 6512603
last-modified: Wed, 22 Mar 2023 16:24:04 GMT
etag: "641b2ba4-635fdb"
cf-cache-status: HIT
age: 3542
content-range: bytes 0-6512602/6512603
server: cloudflare
cf-ray: 7ad8a5857f500b55-OSL
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/641d54f6f05/js/twk-main.js
104.22.24.131200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/641d54f6f05/js/twk-main.js
IP 104.22.24.131:0
GET /_s/v4/app/641d54f6f05/js/twk-main.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://csgo2claim.com
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:22 GMT
content-type: application/javascript
age: 31822
last-modified: Fri, 24 Mar 2023 07:45:38 GMT
etag: W/"da5bb1dc647470204df0e49f5afac2de"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ad8a5931d53b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/smokes_vid2.mp4
104.18.37.23206 Partial Content 0 B URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/smokes_vid2.mp4
IP 104.18.37.23:0
GET /apps/csgo/images/csgo_react/cs2/smokes_vid2.mp4 HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Sat, 25 Mar 2023 16:49:19 GMT
content-type: video/mp4
content-length: 1828578
last-modified: Wed, 22 Mar 2023 16:24:04 GMT
etag: "641b2ba4-1be6e2"
cf-cache-status: HIT
age: 3540
content-range: bytes 0-1828577/1828578
server: cloudflare
cf-ray: 7ad8a583dd2d0b55-OSL
X-Firefox-Spdy: h2
www.youtube.com/embed/_y9MpNcAitQ?autoplay=0&showinfo=0&autohide=1&fs=1&modestbranding=1&rel=0&playsinline=1&iv_load_policy=3&controls=1&enablejsapi=1&origin=https%3A%2F%2Fcounter-strike.net&widgetid=1
142.250.74.46200 OK 0 B URL HTTP/2 www.youtube.com/embed/_y9MpNcAitQ?autoplay=0&showinfo=0&autohide=1&fs=1&modestbranding=1&rel=0&playsinline=1&iv_load_policy=3&controls=1&enablejsapi=1&origin=https%3A%2F%2Fcounter-strike.net&widgetid=1
IP 142.250.74.46:0
GET /embed/_y9MpNcAitQ?autoplay=0&showinfo=0&autohide=1&fs=1&modestbranding=1&rel=0&playsinline=1&iv_load_policy=3&controls=1&enablejsapi=1&origin=https%3A%2F%2Fcounter-strike.net&widgetid=1 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 25 Mar 2023 16:49:20 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=vz-luIBCr5c; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=kqtcYdsQ7uE; Domain=.youtube.com; Expires=Thu, 21-Sep-2023 16:49:20 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+822; expires=Mon, 24-Mar-2025 16:49:20 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/bgDarkBlue.svg
104.18.37.23200 OK 0 B URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/bgDarkBlue.svg
IP 104.18.37.23:0
GET /apps/csgo/images/csgo_react/cs2/bgDarkBlue.svg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://counter-strike.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:20 GMT
content-type: image/svg+xml
last-modified: Wed, 22 Mar 2023 16:24:03 GMT
etag: W/"641b2ba3-214e"
cf-cache-status: HIT
age: 4129
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a5887aea0b55-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
104.16.86.20200 OK 0 B URL HTTP/2 cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
IP 104.16.86.20:0
GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:23 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
etag: W/"49dda-cp9vjKV4fYl0Ow7X6yf9dkBr+YU"
x-served-by: cache-fra-eddf8230136-FRA, cache-yyz4541-YYZ
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 2708141
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yjyAlOJkKNxVX%2BSSNxKqKgqH2AydvnmIZ%2Fi13mWNAxML5EN01j1NV5LWON34mbbIMSurFPOUxZkHeyZ7xGw%2FXqs0E0%2BM4W25rP01DJVIjVD5h%2BD6zWX2%2Bdr9u6vfjfohoZ8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ad8a59a8c320b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.youtube.com/embed/ExZtISgOxEQ?autoplay=0&showinfo=0&autohide=1&fs=1&modestbranding=1&rel=0&playsinline=1&iv_load_policy=3&controls=1&enablejsapi=1&origin=https%3A%2F%2Fcounter-strike.net&widgetid=5
142.250.74.46200 OK 0 B URL HTTP/2 www.youtube.com/embed/ExZtISgOxEQ?autoplay=0&showinfo=0&autohide=1&fs=1&modestbranding=1&rel=0&playsinline=1&iv_load_policy=3&controls=1&enablejsapi=1&origin=https%3A%2F%2Fcounter-strike.net&widgetid=5
IP 142.250.74.46:0
GET /embed/ExZtISgOxEQ?autoplay=0&showinfo=0&autohide=1&fs=1&modestbranding=1&rel=0&playsinline=1&iv_load_policy=3&controls=1&enablejsapi=1&origin=https%3A%2F%2Fcounter-strike.net&widgetid=5 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 25 Mar 2023 16:49:20 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=vDCN83pa9AM; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=DcSQXqm42_I; Domain=.youtube.com; Expires=Thu, 21-Sep-2023 16:49:20 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+620; expires=Mon, 24-Mar-2025 16:49:20 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/embed/GqhhFl5zgA0?autoplay=0&showinfo=0&autohide=1&fs=1&modestbranding=1&rel=0&playsinline=1&iv_load_policy=3&controls=1&enablejsapi=1&origin=https%3A%2F%2Fcounter-strike.net&widgetid=3
142.250.74.46200 OK 0 B URL HTTP/2 www.youtube.com/embed/GqhhFl5zgA0?autoplay=0&showinfo=0&autohide=1&fs=1&modestbranding=1&rel=0&playsinline=1&iv_load_policy=3&controls=1&enablejsapi=1&origin=https%3A%2F%2Fcounter-strike.net&widgetid=3
IP 142.250.74.46:0
GET /embed/GqhhFl5zgA0?autoplay=0&showinfo=0&autohide=1&fs=1&modestbranding=1&rel=0&playsinline=1&iv_load_policy=3&controls=1&enablejsapi=1&origin=https%3A%2F%2Fcounter-strike.net&widgetid=3 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 25 Mar 2023 16:49:20 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=HGhQz3sqoYY; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=tA7lbg4g_jw; Domain=.youtube.com; Expires=Thu, 21-Sep-2023 16:49:20 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+069; expires=Mon, 24-Mar-2025 16:49:20 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i.ytimg.com/vi/GqhhFl5zgA0/maxresdefault.jpg
142.250.74.22200 OK 0 B URL HTTP/2 i.ytimg.com/vi/GqhhFl5zgA0/maxresdefault.jpg
IP 142.250.74.22:0
GET /vi/GqhhFl5zgA0/maxresdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 122780
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 25 Mar 2023 16:49:13 GMT
expires: Sat, 25 Mar 2023 18:49:13 GMT
cache-control: public, max-age=7200
etag: "1679467638"
content-type: image/jpeg
vary: Origin
age: 9
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/smokes_vid1.mp4
104.18.37.23206 Partial Content 0 B URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/smokes_vid1.mp4
IP 104.18.37.23:0
GET /apps/csgo/images/csgo_react/cs2/smokes_vid1.mp4 HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Sat, 25 Mar 2023 16:49:19 GMT
content-type: video/mp4
content-length: 1499371
last-modified: Wed, 22 Mar 2023 16:24:04 GMT
etag: "641b2ba4-16e0eb"
cf-cache-status: HIT
age: 3541
content-range: bytes 0-1499370/1499371
server: cloudflare
cf-ray: 7ad8a583dd2e0b55-OSL
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/videos/csgo_react/cs2/video_smokes.mp4
104.18.37.23206 Partial Content 0 B URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/videos/csgo_react/cs2/video_smokes.mp4
IP 104.18.37.23:0
GET /apps/csgo/videos/csgo_react/cs2/video_smokes.mp4 HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Sat, 25 Mar 2023 16:49:19 GMT
content-type: video/mp4
content-length: 1944237
last-modified: Wed, 22 Mar 2023 16:24:04 GMT
etag: "641b2ba4-1daaad"
cf-cache-status: HIT
age: 3541
content-range: bytes 0-1944236/1944237
server: cloudflare
cf-ray: 7ad8a583dd2c0b55-OSL
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/global/logo_cs_full_blk.svg
104.18.37.23200 OK 0 B URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/global/logo_cs_full_blk.svg
IP 104.18.37.23:0
GET /apps/csgo/images/csgo_react/global/logo_cs_full_blk.svg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://counter-strike.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:20 GMT
content-type: image/svg+xml
last-modified: Wed, 22 Mar 2023 16:24:04 GMT
etag: W/"641b2ba4-275a"
cf-cache-status: HIT
age: 4129
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a5887ae70b55-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/global/play_button.svg
104.18.37.23200 OK 0 B URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/global/play_button.svg
IP 104.18.37.23:0
GET /apps/csgo/images/csgo_react/global/play_button.svg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:19 GMT
content-type: image/svg+xml
last-modified: Wed, 22 Mar 2023 16:24:04 GMT
etag: W/"641b2ba4-2ac"
cf-cache-status: HIT
age: 4128
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a583dd290b55-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/vfx/UI.mp4
104.18.37.23206 Partial Content 0 B URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/vfx/UI.mp4
IP 104.18.37.23:0
GET /apps/csgo/images/csgo_react/cs2/vfx/UI.mp4 HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Sat, 25 Mar 2023 16:49:20 GMT
content-type: video/mp4
content-length: 2937509
last-modified: Wed, 22 Mar 2023 16:24:04 GMT
etag: "641b2ba4-2cd2a5"
cf-cache-status: HIT
age: 3541
content-range: bytes 0-2937508/2937509
server: cloudflare
cf-ray: 7ad8a5857f550b55-OSL
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/header_bg.svg
104.18.37.23200 OK 0 B URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react/cs2/header_bg.svg
IP 104.18.37.23:0
GET /apps/csgo/images/csgo_react/cs2/header_bg.svg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://counter-strike.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:20 GMT
content-type: image/svg+xml
last-modified: Wed, 22 Mar 2023 16:24:03 GMT
etag: W/"641b2ba3-99af"
cf-cache-status: HIT
age: 3780
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a5887ae90b55-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
embed.tawk.to/641e472c4247f20fefe7d9bf/1gsb4c1ce
104.22.24.131200 OK 0 B URL HTTP/2 embed.tawk.to/641e472c4247f20fefe7d9bf/1gsb4c1ce
IP 104.22.24.131:0
GET /641e472c4247f20fefe7d9bf/1gsb4c1ce HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://csgo2claim.com
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:21 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-641d54f6f05"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: REVALIDATED
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ad8a5876d8fb500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react//cs2/logo_cs2_header.svg
104.18.37.23200 OK 0 B URL HTTP/2 cdn.cloudflare.steamstatic.com/apps/csgo/images/csgo_react//cs2/logo_cs2_header.svg
IP 104.18.37.23:0
GET /apps/csgo/images/csgo_react//cs2/logo_cs2_header.svg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csgo2claim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:49:18 GMT
content-type: image/svg+xml
last-modified: Wed, 22 Mar 2023 16:24:03 GMT
etag: W/"641b2ba3-14ec"
cf-cache-status: HIT
age: 4127
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad8a57d2cf20b55-OSL
content-encoding: gzip
X-Firefox-Spdy: h2