r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1456357aecbd23f21ad98da57e0127eb
7074815b39fa8da9013883971d665e4c1b0797ea
f3eba265ee64870b2f822f1511b36c747d763c382557789cdad8be1d3b52d1f5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F3EBA265EE64870B2F822F1511B36C747D763C382557789CDAD8BE1D3B52D1F5"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3679
Expires: Thu, 24 Nov 2022 14:47:14 GMT
Date: Thu, 24 Nov 2022 13:45:55 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash af40a2fcf8debb90c3608002da6c907a
3c75d6c0b557a3bd8d5db50155b8d896e852c145
555617a51ee3077552545a29a3baf0b43e8a82367e4c08110ee480ebedc8b523
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3451
Cache-Control: max-age=164567
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 13:45:55 GMT
Etag: "637f47ef-1d7"
Expires: Sat, 26 Nov 2022 11:28:42 GMT
Last-Modified: Thu, 24 Nov 2022 10:31:11 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 054ff0d1a0a43f7cb1d78dbd34e27f99
3caf54f3de1d6a8c6f6454083f8b8e7dec77db54
fcdcef8306ae31f20c366489e1f88aa40b08f154d25d45f4055c4f8cdef47634
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FCDCEF8306AE31F20C366489E1F88AA40B08F154D25D45F4055C4F8CDEF47634"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3143
Expires: Thu, 24 Nov 2022 14:38:18 GMT
Date: Thu, 24 Nov 2022 13:45:55 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 13:18:58 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1617
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: IYoWZZTOUChqsU59mqKI9YNC3Jl+AU1opjbUJW26beTc1pk5RYwkAjlLXQ7w+Ndm8Wy3WWiiIyk=
x-amz-request-id: MSCJ1W6TR2V9M481
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 13:43:25 GMT
age: 150
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 13:45:55 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 13:08:53 GMT
cache-control: public,max-age=3600
age: 2222
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ttrlive.com/
173.233.68.236200 OK 7.2 kB IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 658055a12e64fef3bcc1023f79820a8c
078473b35671ee4a3be99bc3ec6fefc82f0b9b9e
5725f3094d75999813104f252b631a0273f3e75c45a31c729646b0d7d9bb22df
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET / HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:54 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7189
Keep-Alive: timeout=5, max=100
Content-Type: text/html; charset=UTF-8
ttrlive.com/wp-content/themes/Polished/css/reset.css
173.233.68.236200 OK 521 B URL HTTP/1.1 ttrlive.com/wp-content/themes/Polished/css/reset.css
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
Hash 157d98a1ba05870a95dde144417080fc
bdd075528d405ea6f42afb33cc62d98a1981e1db
16b2d56cd135d6e299f4f1f282739fcaf70b32b201da87d65e36d0349e3986d4
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/Polished/css/reset.css HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:55 GMT
Server: Apache
Last-Modified: Wed, 08 Dec 2021 02:21:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 24 Nov 2023 13:45:55 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 521
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fb6949e7abaa473393f7c604691de14f
599681bba3947709baa603bbae2dd7afd04059a4
36c5165526ea9d34de14d36655ed494d0cffaa11ca3271ee47824ac11246ba13
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 81
Cache-Control: max-age=156135
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 13:45:55 GMT
Etag: "637f3429-1d7"
Expires: Sat, 26 Nov 2022 09:08:10 GMT
Last-Modified: Thu, 24 Nov 2022 09:06:49 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ttrlive.com/wp-content/themes/Polished/style-Red.css
173.233.68.236200 OK 447 B URL HTTP/1.1 ttrlive.com/wp-content/themes/Polished/style-Red.css
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type ASCII text, with CRLF line terminators
Hash 666386b59636559a0afeeb6bc04c8332
1fe7865eca319f28b4548fedb04c44b0bd47160b
10e90343c2abbc0426c2499186b6a2c1ac4eb3111b44ab14c7e43fbb9f05697b
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/Polished/style-Red.css HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:55 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 08 Dec 2021 02:21:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 24 Nov 2023 13:45:55 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 447
Keep-Alive: timeout=5, max=100
Content-Type: text/css
ttrlive.com/wp-content/themes/Polished/style.css
173.233.68.236200 OK 5.8 kB URL HTTP/1.1 ttrlive.com/wp-content/themes/Polished/style.css
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type ASCII text, with very long lines (339)
Hash 6cfcc719570d2b623d400369eb3b81c5
d5d21511f416a9226c6c6a7678e8192a5a834dea
9066dc906fd4948ea1b99f2346985b6a809c59cd77cbf1c9361e5354faaadd82
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/Polished/style.css HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:55 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 08 Dec 2021 02:21:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 24 Nov 2023 13:45:55 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5758
Keep-Alive: timeout=5, max=100
Content-Type: text/css
ttrlive.com/wp-content/themes/Polished/epanel/page_templates/js/fancybox/jquery.fancybox-1.3.4.css
173.233.68.236200 OK 1.8 kB URL HTTP/1.1 ttrlive.com/wp-content/themes/Polished/epanel/page_templates/js/fancybox/jquery.fancybox-1.3.4.css
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type ASCII text, with CRLF line terminators
Hash e070985e06eb13311f208c51e427a86b
aede190f6b1d8a9888db3ff8f7c4f16f65f490b6
cdff19dcee4865beb90f19b0e03d35df6bc0a324834fe81075973fd6c0daaa7d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/Polished/epanel/page_templates/js/fancybox/jquery.fancybox-1.3.4.css HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:55 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 08 Dec 2021 02:21:14 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 24 Nov 2023 13:45:55 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1813
Keep-Alive: timeout=5, max=100
Content-Type: text/css
ttrlive.com/wp-content/themes/Polished/epanel/page_templates/page_templates.css
173.233.68.236200 OK 2.2 kB URL HTTP/1.1 ttrlive.com/wp-content/themes/Polished/epanel/page_templates/page_templates.css
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type ASCII text, with CRLF line terminators
Hash a4c22627792d3eca7c4d5a32e370ab24
44d16dd91a6a69e57ef16e91ef1b59155d8f8eec
5d685ed134c486558729eef39958387d1c42e4200407af50368cf1ff76f5e3f1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/Polished/epanel/page_templates/page_templates.css HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:55 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 08 Dec 2021 02:21:14 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 24 Nov 2023 13:45:55 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2163
Keep-Alive: timeout=5, max=100
Content-Type: text/css
ttrlive.com/wp-content/plugins/cardoza-facebook-like-box/cardozafacebook.css?ver=5.9.5
173.233.68.236200 OK 332 B URL HTTP/1.1 ttrlive.com/wp-content/plugins/cardoza-facebook-like-box/cardozafacebook.css?ver=5.9.5
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type CSV text\012- , ASCII text, with CRLF line terminators
Hash bcb6bcdc3b9f75d9834b745fafbcd2ef
d559a6d33ef73c30d7a546a69e5e6c7843dec4e4
ffee38b18271e25849cfd2ce95e3206b34e15d01aa3c21acf6dd29da55ce60f4
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/cardoza-facebook-like-box/cardozafacebook.css?ver=5.9.5 HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:55 GMT
Server: Apache
Last-Modified: Wed, 08 Dec 2021 02:21:06 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 24 Nov 2023 13:45:55 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 332
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
ttrlive.com/wp-content/plugins/login-sidebar-widget/css/style_login_widget.css?ver=5.9.5
173.233.68.236200 OK 687 B URL HTTP/1.1 ttrlive.com/wp-content/plugins/login-sidebar-widget/css/style_login_widget.css?ver=5.9.5
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type ASCII text, with CRLF line terminators
Hash c6e3068a96426e58501954e6ed21bcb2
c97e70235796ad7a3f06d6c025ea1c5b4aa1c893
2344fa5839d58acee29af331758f635a067c829266da9509d2f531d457c7c560
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/login-sidebar-widget/css/style_login_widget.css?ver=5.9.5 HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:55 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 29 Dec 2021 04:40:44 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 24 Nov 2023 13:45:55 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 687
Keep-Alive: timeout=5, max=100
Content-Type: text/css
ttrlive.com/wp-content/themes/Polished/epanel/shortcodes/shortcodes.css?ver=1.8
173.233.68.236200 OK 4.9 kB URL HTTP/1.1 ttrlive.com/wp-content/themes/Polished/epanel/shortcodes/shortcodes.css?ver=1.8
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type ASCII text, with very long lines (447), with CRLF line terminators
Hash e81f7514f8068931b026391a30d1cb79
dd5ef22067e535d1fd3a74936986f59a980886f0
2f094c9e3f8fd70d5445f2217e5d860ac32dca8bd5e4ad4cba48094a13884a0c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/Polished/epanel/shortcodes/shortcodes.css?ver=1.8 HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:55 GMT
Server: Apache
Last-Modified: Wed, 08 Dec 2021 02:21:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 24 Nov 2023 13:45:55 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4879
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ttrlive.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
173.233.68.236200 OK 4.2 kB URL HTTP/1.1 ttrlive.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:55 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 19:36:06 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 24 Nov 2023 13:45:55 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4169
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
ttrlive.com/wp-content/plugins/cardoza-facebook-like-box/cardozafacebook.js?ver=5.9.5
173.233.68.236200 OK 381 B URL HTTP/1.1 ttrlive.com/wp-content/plugins/cardoza-facebook-like-box/cardozafacebook.js?ver=5.9.5
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type ASCII text, with CRLF line terminators
Hash c26c1149a61b90738434f96a6eb566be
60b7efad2c1852b4e66737965e2edd6afc8af2e9
5e3dba55cd599aefa42c63e6726f3c2e95cf14b077c7f1a8195f9788d77207d8
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/cardoza-facebook-like-box/cardozafacebook.js?ver=5.9.5 HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:55 GMT
Server: Apache
Last-Modified: Wed, 08 Dec 2021 02:21:08 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 24 Nov 2023 13:45:55 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 381
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
ttrlive.com/wp-content/plugins/login-sidebar-widget/js/jquery.validate.min.js?ver=5.9.5
173.233.68.236200 OK 7.4 kB URL HTTP/1.1 ttrlive.com/wp-content/plugins/login-sidebar-widget/js/jquery.validate.min.js?ver=5.9.5
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type Unicode text, UTF-8 text, with very long lines (22932)
Hash 08bca7b78d398231767ba9e999cf14fe
a9c624fae4f82973e01a525fc3bb6b6bb779bfa1
3ab19fc3a6ab9225bdad072a165f9cb6b61b458fd89462c40b2a285a612e15d8
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/login-sidebar-widget/js/jquery.validate.min.js?ver=5.9.5 HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:55 GMT
Server: Apache
Last-Modified: Wed, 29 Dec 2021 04:40:44 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 24 Nov 2023 13:45:55 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7446
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
ttrlive.com/wp-content/plugins/login-sidebar-widget/js/additional-methods.js?ver=5.9.5
173.233.68.236200 OK 11 kB URL HTTP/1.1 ttrlive.com/wp-content/plugins/login-sidebar-widget/js/additional-methods.js?ver=5.9.5
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type Unicode text, UTF-8 text, with very long lines (1239)
Hash 1bbf36fb01bbf5ad99d5334800c219cc
2e8ea7269ddcfdc258ee73beb40813b117f11385
b28486a5028b5bdf4ddab3faabe642b92be4b35e7fdf868da1a93dfff5f6776e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/login-sidebar-widget/js/additional-methods.js?ver=5.9.5 HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:55 GMT
Server: Apache
Last-Modified: Wed, 29 Dec 2021 04:40:44 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 24 Nov 2023 13:45:55 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 11397
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
push.services.mozilla.com/
34.214.236.46101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.214.236.46:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ywcerD+7qa9WXeYuE3/wAw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ShEaXItK3KbeVWMAYTxfS+kiLyI=
ttrlive.com/wp-content/themes/Polished/epanel/shortcodes/js/et_shortcodes_frontend.js?ver=1.8
173.233.68.236200 OK 2.4 kB URL HTTP/1.1 ttrlive.com/wp-content/themes/Polished/epanel/shortcodes/js/et_shortcodes_frontend.js?ver=1.8
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type HTML document, ASCII text
Hash b521a3fe847d3e97ec91450a13c2560a
826337f7ab40f7bb3a86312010e455e559111d59
eca15ca8990a194672e6732d9736a9b5adbd068244aa2011d828fd5fbfff5023
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/Polished/epanel/shortcodes/js/et_shortcodes_frontend.js?ver=1.8 HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:56 GMT
Server: Apache
Last-Modified: Wed, 08 Dec 2021 02:21:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 24 Nov 2023 13:45:56 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2353
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
ttrlive.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
173.233.68.236200 OK 31 kB URL HTTP/1.1 ttrlive.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type ASCII text, with very long lines (65447)
Hash 9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:55 GMT
Server: Apache
Last-Modified: Thu, 11 Mar 2021 01:37:24 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 24 Nov 2023 13:45:55 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 30908
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
ttrlive.com/wp-content/themes/Polished/js/jquery.lavalamp.1.3.3-min.js
173.233.68.236200 OK 3.5 kB URL HTTP/1.1 ttrlive.com/wp-content/themes/Polished/js/jquery.lavalamp.1.3.3-min.js
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type HTML document, ASCII text
Hash 20ba6c2ab974e455147d7bffe558016f
541e88e99dcf13730118ceac6518dc2da8a72aa6
cb011c99255e0eeb1337b17467638880fd56e7ec4b2e30176192a7af6eca46a8
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/Polished/js/jquery.lavalamp.1.3.3-min.js HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:56 GMT
Server: Apache
Last-Modified: Wed, 08 Dec 2021 02:21:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 24 Nov 2023 13:45:56 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3472
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
ttrlive.com/wp-content/themes/Polished/js/superfish.js
173.233.68.236200 OK 1.5 kB URL HTTP/1.1 ttrlive.com/wp-content/themes/Polished/js/superfish.js
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
Hash 21b007ba21159fed4536629a44e19df0
f2cd4b7b561d8017473a19b53cb6babb51dbee81
d681fab5f0c204f83ab0319e9b0b67ee06348c1435fc17d8a041ce23da89cd3d
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/Polished/js/superfish.js HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:56 GMT
Server: Apache
Last-Modified: Wed, 08 Dec 2021 02:21:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 24 Nov 2023 13:45:56 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1514
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
ttrlive.com/wp-content/themes/Polished/js/jquery.cycle.all.min.js
173.233.68.236200 OK 6.9 kB URL HTTP/1.1 ttrlive.com/wp-content/themes/Polished/js/jquery.cycle.all.min.js
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type ASCII text, with very long lines (16491)
Hash b17f9a7da7a45c639fd1952ba740813a
2897f1f46fb2520f4b18145a6a595cba6193af2d
1b8ba0c7365f9af5011c92b9274747493ce733db0bb48ef778d4d7032ac8dc33
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/Polished/js/jquery.cycle.all.min.js HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:56 GMT
Server: Apache
Last-Modified: Wed, 08 Dec 2021 02:21:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 24 Nov 2023 13:45:56 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6869
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
ttrlive.com/wp-content/themes/Polished/js/jquery.easing.1.3.js
173.233.68.236200 OK 2.0 kB URL HTTP/1.1 ttrlive.com/wp-content/themes/Polished/js/jquery.easing.1.3.js
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
Hash a6759141afcbcf0a161171becbdb51f3
77e91d639ecf18d8bb76e4f40e3d53fe2b11f787
3299718703ddc77d79ca733312395b64bf49932ea9687cf40f48c88af1d78bf8
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/Polished/js/jquery.easing.1.3.js HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:56 GMT
Server: Apache
Last-Modified: Wed, 08 Dec 2021 02:21:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 24 Nov 2023 13:45:56 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1986
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
ttrlive.com/wp-content/uploads/2020/12/images-300x136.png
173.233.68.236200 OK 21 kB URL HTTP/2 ttrlive.com/wp-content/uploads/2020/12/images-300x136.png
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type PNG image data, 300 x 136, 8-bit/color RGB, non-interlaced\012- data
Hash d8a6b00a4ccaa897782b08d1d2ec6530
e91c0f2ec809b0ece62ea114694f03685526c6e0
53e8f9ab4e6abf20e9be7739568f301a153bf471be15cfb759b738958ccf0a99
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2020/12/images-300x136.png HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ttrlive.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 08 Dec 2021 02:20:40 GMT
accept-ranges: bytes
cache-control: public
expires: Fri, 24 Nov 2023 13:45:55 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 21215
content-type: image/png
date: Thu, 24 Nov 2022 13:45:55 GMT
server: Apache
X-Firefox-Spdy: h2
ttrlive.com/wp-includes/js/comment-reply.min.js?ver=5.9.5
173.233.68.236200 OK 1.3 kB URL HTTP/1.1 ttrlive.com/wp-includes/js/comment-reply.min.js?ver=5.9.5
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type ASCII text, with very long lines (2944)
Hash d25cda0d687e9ddfe3f4bc93881c4a74
ce174f3dcc4b5cc45bf0b3bd4ef89058f38ae2aa
42fcfaacfb93689c77bdef10f1bc9f16c4cca896c746081229d6d0552bbbd3f5
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/comment-reply.min.js?ver=5.9.5 HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:56 GMT
Server: Apache
Last-Modified: Tue, 02 Nov 2021 07:17:14 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 24 Nov 2023 13:45:56 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1345
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
ttrlive.com/wp-content/themes/Polished/epanel/page_templates/js/fancybox/jquery.easing-1.3.pack.js?ver=1.3.4
173.233.68.236200 OK 2.2 kB URL HTTP/1.1 ttrlive.com/wp-content/themes/Polished/epanel/page_templates/js/fancybox/jquery.easing-1.3.pack.js?ver=1.3.4
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type Unicode text, UTF-8 text, with very long lines (3199)
Hash 31d092fa78d324fff6c230bd4ae78051
b82e1c27ddb93c51e41fb3953e4d83c5fb176cc2
c39d4be5d9ebca6e0675716493126b7b941a70f569a4f27e14308840be3b62fd
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/Polished/epanel/page_templates/js/fancybox/jquery.easing-1.3.pack.js?ver=1.3.4 HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:56 GMT
Server: Apache
Last-Modified: Wed, 08 Dec 2021 02:21:14 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 24 Nov 2023 13:45:56 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2193
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
ttrlive.com/wp-content/themes/Polished/epanel/page_templates/js/fancybox/jquery.fancybox-1.3.4.pack.js?ver=1.3.4
173.233.68.236200 OK 5.6 kB URL HTTP/1.1 ttrlive.com/wp-content/themes/Polished/epanel/page_templates/js/fancybox/jquery.fancybox-1.3.4.pack.js?ver=1.3.4
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type ASCII text, with very long lines (752)
Hash 6e437a75ee890107ddfbbe7ad3e9df32
c52cc97c9a505a9356cf3cd18afc13a96198606a
755d3316379dd87d6b6cbb6d59035cf116b10b483295164322e7edd6e9372329
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/Polished/epanel/page_templates/js/fancybox/jquery.fancybox-1.3.4.pack.js?ver=1.3.4 HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:56 GMT
Server: Apache
Last-Modified: Wed, 08 Dec 2021 02:21:14 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 24 Nov 2023 13:45:56 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5574
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
ttrlive.com/wp-content/themes/Polished/epanel/page_templates/js/et-ptemplates-frontend.js?ver=1.1
173.233.68.236200 OK 1.5 kB URL HTTP/1.1 ttrlive.com/wp-content/themes/Polished/epanel/page_templates/js/et-ptemplates-frontend.js?ver=1.1
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
Hash 7ab6d1a4fd64ff79df9a7af5b3630d80
c1f3f1996231012933de9ccb0743f16267b3bff7
f6537032cdfeee4f8487f389d598e0935c1e04cafdbb205d8d7c228633a68bf1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/Polished/epanel/page_templates/js/et-ptemplates-frontend.js?ver=1.1 HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:56 GMT
Server: Apache
Last-Modified: Wed, 08 Dec 2021 02:21:14 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 24 Nov 2023 13:45:56 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1473
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
ttrlive.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
173.233.68.236200 OK 11 kB URL HTTP/1.1 ttrlive.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type ASCII text, with very long lines (39791)
Hash 68c55e0e26ede0ee6d29668c5e7ff18a
ea17cd26ac9dd53fdfb6b227d5737bc2714c4db5
ad7d949e15ee2ea92473b1fcdfa56cc6239de0aeceed78065aa3a060523c0e00
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.5 HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:56 GMT
Server: Apache
Last-Modified: Wed, 06 Apr 2022 00:57:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 24 Nov 2023 13:45:56 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 11206
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
ttrlive.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5
173.233.68.236200 OK 4.9 kB URL HTTP/1.1 ttrlive.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type ASCII text, with very long lines (15224)
Hash 3179794486ec4ca8f59329ccd67ae3e1
4b9c6e22ee7966479ef9844259f39f19d584f4a4
6e616b83910943042f683d5d21691f7e15aca8e2d8d154ff8f35bf09c612297a
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.9.5 HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:56 GMT
Server: Apache
Last-Modified: Wed, 09 Jun 2021 07:45:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 24 Nov 2023 13:45:56 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4930
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
ttrlive.com/wp-content/themes/Polished/images/search_btn.png
173.233.68.236200 OK 644 B URL HTTP/1.1 ttrlive.com/wp-content/themes/Polished/images/search_btn.png
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type PNG image data, 19 x 19, 8-bit colormap, non-interlaced\012- data
Hash b0dd8483bd944ec964b226eac4be56c4
e040bc9b7d0fa6208c32d01fe5ab0e86854c1d05
782403b213881667433ef86135c5161391f453ef608d28609022229aa5a4985b
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/Polished/images/search_btn.png HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:56 GMT
Server: Apache
Last-Modified: Wed, 08 Dec 2021 02:21:16 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Fri, 24 Nov 2023 13:45:56 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 644
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
ttrlive.com/wp-content/themes/Polished/images/content-bottom.gif
173.233.68.236200 OK 464 B URL HTTP/1.1 ttrlive.com/wp-content/themes/Polished/images/content-bottom.gif
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type GIF image data, version 89a, 962 x 10\012- data
Hash 9a4355217e0c9b339619e4c50cb728f2
7f40920d36f42293189d4453ade84f8970b12cd1
166bbafdc8789302407302727ec59f59ad823699757ee6535e2394f3a8c6fe0c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/Polished/images/content-bottom.gif HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:56 GMT
Server: Apache
Last-Modified: Wed, 08 Dec 2021 02:21:16 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Fri, 24 Nov 2023 13:45:56 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 464
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/gif
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash b4c80d898ef99131eb5fcc9643e83ed5
f704eeb3a4c865f91ea79e6fdcce94125b5d26c2
e31cbbf8ef33f8737171bb1d3e49806912d0ee0a91d9ddfa678842db1d566b3c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2322
Cache-Control: max-age=162354
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 13:45:56 GMT
Etag: "637f43b4-118"
Expires: Sat, 26 Nov 2022 10:51:50 GMT
Last-Modified: Thu, 24 Nov 2022 10:13:08 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 280
ttrlive.com/wp-content/themes/Polished/images/content-top.gif
173.233.68.236200 OK 461 B URL HTTP/1.1 ttrlive.com/wp-content/themes/Polished/images/content-top.gif
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type GIF image data, version 89a, 962 x 10\012- data
Hash 75065da6be484b0c299c3abb4fa679a7
3353df886283fe0b6bb569bdf32d66c8feff3b16
99ccddc3f932a3c50c896d454e2380eabcf995d02846f7634219df764b632f46
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/Polished/images/content-top.gif HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:56 GMT
Server: Apache
Last-Modified: Wed, 08 Dec 2021 02:21:16 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Fri, 24 Nov 2023 13:45:56 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 461
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/gif
ttrlive.com/wp-content/themes/Polished/images/logo.png
173.233.68.236200 OK 14 kB URL HTTP/1.1 ttrlive.com/wp-content/themes/Polished/images/logo.png
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type PNG image data, 202 x 58, 8-bit/color RGBA, non-interlaced\012- data
Hash f238341fc992eaa7e20e883510034554
41670186f00230a6fb0aabac11e23ec39073c8d4
a24025521cfca3e443ad72ccbee4a5124b5d5d45cda65e107ee809ed7d084baa
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/Polished/images/logo.png HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:56 GMT
Server: Apache
Last-Modified: Wed, 08 Dec 2021 02:21:16 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Fri, 24 Nov 2023 13:45:56 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 14530
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
ttrlive.com/wp-content/themes/Polished/images/separator.png
173.233.68.236200 OK 269 B URL HTTP/1.1 ttrlive.com/wp-content/themes/Polished/images/separator.png
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type PNG image data, 2 x 59, 8-bit/color RGBA, non-interlaced\012- data
Hash c4f6b027a178587be8a8fa142e74e06f
5424502a052fb1ceaf22ae5d8e27735f88027085
4e8c279f9069c1a07d5a9e1ec7fa03f6d7469e2bc9f5b0d7663b9e4ba3ad3988
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/Polished/images/separator.png HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:56 GMT
Server: Apache
Last-Modified: Wed, 08 Dec 2021 02:21:16 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Fri, 24 Nov 2023 13:45:56 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 269
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
ttrlive.com/wp-content/themes/Polished/images/sidebar_hr.png
173.233.68.236200 OK 2.0 kB URL HTTP/1.1 ttrlive.com/wp-content/themes/Polished/images/sidebar_hr.png
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type PNG image data, 258 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 79ff706e60df04e663f12e886114a03e
82c845b44028963830a1095304f9eeff6a7bec9e
ac50c4ad2ad9df17148aa1695003faf23470385dfb97a725f3cfb6890745659c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/Polished/images/sidebar_hr.png HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:56 GMT
Server: Apache
Last-Modified: Wed, 08 Dec 2021 02:21:16 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Fri, 24 Nov 2023 13:45:56 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2027
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
ttrlive.com/wp-content/themes/Polished/images/background.png
173.233.68.236200 OK 3.0 kB URL HTTP/1.1 ttrlive.com/wp-content/themes/Polished/images/background.png
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type PNG image data, 140 x 141, 8-bit colormap, non-interlaced\012- data
Hash 757e45770a4981c9a44da8fb0ca6b4fa
f1454cd9950edeec733691a2d3a35db07a41776f
fd92a36985b3328385b0549465f577b251d93cbe3ec9452ff009e45df8ca06b4
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/Polished/images/background.png HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/wp-content/themes/Polished/style.css
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:56 GMT
Server: Apache
Last-Modified: Wed, 08 Dec 2021 02:21:16 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Fri, 24 Nov 2023 13:45:56 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2952
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
ttrlive.com/wp-content/themes/Polished/images/header_bg.png
173.233.68.236200 OK 11 kB URL HTTP/1.1 ttrlive.com/wp-content/themes/Polished/images/header_bg.png
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type PNG image data, 1311 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 474a73233f4f9d58d43adc770e64e1eb
1023d06a0320625c607d969e69ea586e922333f2
6697f9d3eb9f4ccdc3b34206547b2b5c40ee60919e64bfbce460ce1baa840764
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/Polished/images/header_bg.png HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/wp-content/themes/Polished/style.css
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:56 GMT
Server: Apache
Last-Modified: Wed, 08 Dec 2021 02:21:16 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Fri, 24 Nov 2023 13:45:56 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 10769
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
ttrlive.com/wp-content/themes/Polished/images/menu_bg.png
173.233.68.236200 OK 831 B URL HTTP/1.1 ttrlive.com/wp-content/themes/Polished/images/menu_bg.png
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type PNG image data, 961 x 58, 8-bit colormap, non-interlaced\012- data
Hash 8d803a4c74f8e2e994679e0eaf7a3063
5ed5b0932df87b6467e20d5f88d32d649bd427c8
13358dd72ab3bf0d0b93913915da10b5ac39b0f81deb9197e5ceb6f3c52a1d5b
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/Polished/images/menu_bg.png HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/wp-content/themes/Polished/style.css
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:56 GMT
Server: Apache
Last-Modified: Wed, 08 Dec 2021 02:21:16 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Fri, 24 Nov 2023 13:45:56 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 831
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
ttrlive.com/wp-content/themes/Polished/images/menu_line.png
173.233.68.236200 OK 404 B URL HTTP/1.1 ttrlive.com/wp-content/themes/Polished/images/menu_line.png
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type PNG image data, 2 x 49, 8-bit colormap, non-interlaced\012- data
Hash d5839a2b9b43fe2cc115a50df4df73db
663282ce3407dbe757c6d954cdefb3da8b8c147f
b31ae38207883d221769bd3f1b2f75028e7b9b63dc0487664398de5f32016689
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/Polished/images/menu_line.png HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/wp-content/themes/Polished/style.css
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:56 GMT
Server: Apache
Last-Modified: Wed, 08 Dec 2021 02:21:16 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Fri, 24 Nov 2023 13:45:56 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 404
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
ttrlive.com/wp-content/themes/Polished/images/content_bg.png
173.233.68.236200 OK 188 B URL HTTP/1.1 ttrlive.com/wp-content/themes/Polished/images/content_bg.png
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type PNG image data, 961 x 10, 8-bit/color RGB, non-interlaced\012- data
Hash 69a493fd6154b035abff59600bb0d145
33710af6c1ffa989f015c8907a3f867b26861e2f
f2b007ce84506da6698f94f8cb30a176ca17697a2ed89ac5302fb36dbbc007f8
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/Polished/images/content_bg.png HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/wp-content/themes/Polished/style.css
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:56 GMT
Server: Apache
Last-Modified: Wed, 08 Dec 2021 02:21:16 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Fri, 24 Nov 2023 13:45:56 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 188
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
ttrlive.com/wp-content/themes/Polished/images/sidebar_block_h2.png
173.233.68.236200 OK 605 B URL HTTP/1.1 ttrlive.com/wp-content/themes/Polished/images/sidebar_block_h2.png
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type PNG image data, 258 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash e2097be3e1545e80d580c9ab2e305be2
7feb14a6927035f943f01a1eeb99e4a16b0e6c77
5fef5cd95a27aa86bb408a8ea4f11c3cf5cbe89a5914e26bb8555b5618c53161
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/Polished/images/sidebar_block_h2.png HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/wp-content/themes/Polished/style.css
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:56 GMT
Server: Apache
Last-Modified: Wed, 08 Dec 2021 02:21:16 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Fri, 24 Nov 2023 13:45:56 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 605
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 18be0aab4e4597b1e84a3942e68d3893
7d822e6c32f41f889a02dee0729c0af3f867e157
5e789e92338775f6fee60422698c8507140d08908b3f63881a571e7fd020a7cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E789E92338775F6FEE60422698C8507140D08908B3F63881A571E7FD020A7CC"
Last-Modified: Tue, 22 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 24 Nov 2022 19:45:56 GMT
Date: Thu, 24 Nov 2022 13:45:56 GMT
Connection: keep-alive
ttrlive.com/wp-content/themes/Polished/images/footer_text_bg.png
173.233.68.236200 OK 143 B URL HTTP/1.1 ttrlive.com/wp-content/themes/Polished/images/footer_text_bg.png
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type PNG image data, 258 x 2, 8-bit colormap, non-interlaced\012- data
Hash e5a94007c684569b8fa531ae22087d0d
d6fa1ac469fbcf55a9addc467a1236f60ba00b33
bd515f795a8ef1139e6408fd7826110cd399df84afca5bc50e60904b473f4189
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/Polished/images/footer_text_bg.png HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/wp-content/themes/Polished/style.css
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:56 GMT
Server: Apache
Last-Modified: Wed, 08 Dec 2021 02:21:16 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Fri, 24 Nov 2023 13:45:56 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 143
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
ttrlive.com/wp-content/themes/Polished/images/red/lavalamp.png
173.233.68.236200 OK 886 B URL HTTP/1.1 ttrlive.com/wp-content/themes/Polished/images/red/lavalamp.png
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type PNG image data, 64 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 38327892285bb07e55aaa989db9d0f09
da07b18b1c97582bf68ad58e153cf3a9ba4dab8b
b3316332ca88b3d3eddc6bb03caa090adfdad06f030b724ede7c4e91df229c77
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/Polished/images/red/lavalamp.png HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/wp-content/themes/Polished/style-Red.css
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:56 GMT
Server: Apache
Last-Modified: Wed, 08 Dec 2021 02:21:16 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Fri, 24 Nov 2023 13:45:56 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 886
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
radio.massstream.net/cp/widgets/player/single/?p=8010
51.15.2.143200 OK 1.3 kB URL HTTP/1.1 radio.massstream.net/cp/widgets/player/single/?p=8010
IP 51.15.2.143:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5a7a97693d6c71d73d746c79b14d15bc
5b777280ad8e27994094c4a4951b41326b1b9e06
79cb830b97fdc96a496b5eb1ee54cb771a687d4e7a0b22e3aa86f7a08ea7a7a8
GET /cp/widgets/player/single/?p=8010 HTTP/1.1
Host: radio.massstream.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ttrlive.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: SonicPanel
Date: Thu, 24 Nov 2022 13:45:56 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache
Content-Encoding: gzip
cdn-radiotime-logos.tunein.com/s0q.png
104.18.40.188200 OK 270 B URL HTTP/2 cdn-radiotime-logos.tunein.com/s0q.png
IP 104.18.40.188:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 1ddf5f9fc55c3bd1f6f2ae2ed9204159
a0ac7ee0c3f75d9a770844c0a863b50c41dc60b4
0ba662a3ef98d4aedbf66ba8f19ad8bba32b2e154cece6cc61c55224d8dee38c
GET /s0q.png HTTP/1.1
Host: cdn-radiotime-logos.tunein.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tunein.com/
Cookie: __cf_bm=6Fvqy_x__RaoZUEw0PrHBB3dE7dUgGPb.KF1NFB94hw-1669297556-0-AXhxbRRCjSFcPZpK8pP2jLy8yVFOZjk7r0ONQy146cQ7XUWdZSVhvOnwZy+bwk3GQg32xEEczma6sJ+C/OO1tG0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 13:45:56 GMT
content-type: image/webp
content-length: 270
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=2539
content-disposition: inline; filename="s0q.webp"
etag: "534d099b8dd2ce66e3555965ccd32ab1"
last-modified: Mon, 08 Jan 2018 21:06:40 GMT
vary: Accept
x-amz-id-2: 2oIpiMPxQTfdA3GUiTErwC8e7YZZ+SbbcNKHGuG4nQKmHKTyhLmNDAmv8JAYaFyzf0rgJo5NPgU=
x-amz-request-id: 2R2NFESKJ3MFJ9GZ
cf-cache-status: HIT
age: 68307
expires: Fri, 25 Nov 2022 13:45:56 GMT
cache-control: public, max-age=86400
accept-ranges: bytes
server: cloudflare
cf-ray: 76f29681486a1c12-OSL
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk.js
157.240.200.14200 OK 1.7 kB URL HTTP/1.1 connect.facebook.net/en_US/sdk.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (1957)
Hash 93eeccfba1a543679c88b7ebf2147dfc
860ae94a7cd105143560f5e5521b4f2dc58eda42
6410f0ee94fffa796017ba8abafc191a41c4cebbcfa4af21fa00259f8640357c
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Expose-Headers: X-FB-Content-MD5
x-fb-content-md5: 6ae64b76d32d2f95d779e7d9407621c8
ETag: "4ce4436343dcf9e2d12ec71cfb376afe"
Content-Type: application/x-javascript; charset=utf-8
timing-allow-origin: *
Access-Control-Allow-Origin: *
cross-origin-resource-policy: cross-origin
Expires: Thu, 24 Nov 2022 13:59:05 GMT
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
X-Content-Type-Options: nosniff
x-fb-rlafr: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Content-MD5: k+7M+6GlQ2eciLfr8hR9/A==
X-FB-Debug: w+FpJDDrYkUIBgoPhorkuGKqvK5n75yFKAotjNt+DnBJ8MJEvKUg0LtZp3SnhSxy0PHZ2Y0swELZ80Cw2voePw==
Priority: u=3,i
X-FB-TRIP-ID: 1679558926
Date: Thu, 24 Nov 2022 13:45:56 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 1688
cdn-embed.tunein.com/resources/styles/bundle.486f07d8.css
104.18.40.188200 OK 39 kB URL HTTP/2 cdn-embed.tunein.com/resources/styles/bundle.486f07d8.css
IP 104.18.40.188:0
File type ASCII text, with very long lines (44101), with no line terminators
Hash e2c5bf15b8f90de4efe3171f9cd4c01f
324d96a248e00805691b2a939dc56b33434691f6
b6e23d7b5ebaab9261b9ab7585256f280f7f4594a49da644a59c58c7156dd8dc
GET /resources/styles/bundle.486f07d8.css HTTP/1.1
Host: cdn-embed.tunein.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tunein.com/
Cookie: __cf_bm=6Fvqy_x__RaoZUEw0PrHBB3dE7dUgGPb.KF1NFB94hw-1669297556-0-AXhxbRRCjSFcPZpK8pP2jLy8yVFOZjk7r0ONQy146cQ7XUWdZSVhvOnwZy+bwk3GQg32xEEczma6sJ+C/OO1tG0=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 13:45:56 GMT
content-type: text/css
x-amz-id-2: wam5pVU4SVOd9HiYBhMQBCQhQf0pjY6M9yTpVJ9XP0kuPOa9v0j5rX2z1pcRQW5dIFo7ogbR3Ug=
x-amz-request-id: NT979K8V0C9HB1BQ
last-modified: Wed, 01 Jun 2022 00:00:32 GMT
etag: W/"c123b39a3699e3d7779c11d62432f017"
cf-cache-status: HIT
age: 1830
expires: Fri, 25 Nov 2022 13:45:56 GMT
cache-control: public, max-age=86400
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f29681384e1c12-OSL
content-encoding: br
X-Firefox-Spdy: h2
ttrlive.com/wp-content/themes/Polished/images/footer_bg.png
173.233.68.236200 OK 47 kB URL HTTP/1.1 ttrlive.com/wp-content/themes/Polished/images/footer_bg.png
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type PNG image data, 962 x 168, 8-bit colormap, non-interlaced\012- data
Hash 87aa66be2b2c329b5468b1dbbd224cc6
429d4a63a90254d582a02dfc64adc1130253713a
37877cbcbd966d5e307c6afc84c7a1f9a35fa83c7c9d6d2b4bd818737b032b98
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/Polished/images/footer_bg.png HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/wp-content/themes/Polished/style.css
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:56 GMT
Server: Apache
Last-Modified: Wed, 08 Dec 2021 02:21:16 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Fri, 24 Nov 2023 13:45:56 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 47044
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
cdn-embed.tunein.com/resources/img/loading-title.gif
104.18.40.188200 OK 8.3 kB URL HTTP/2 cdn-embed.tunein.com/resources/img/loading-title.gif
IP 104.18.40.188:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash a52763be16006b6abe54f77637ec3414
ae5e620939f500218b040cc2635cffc520bb8263
3a31959ecfbf75f2d0764a603f615726bb2567bd4304596274cbeb3241f97cc1
GET /resources/img/loading-title.gif HTTP/1.1
Host: cdn-embed.tunein.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-embed.tunein.com/resources/styles/bundle.486f07d8.css
Cookie: __cf_bm=6Fvqy_x__RaoZUEw0PrHBB3dE7dUgGPb.KF1NFB94hw-1669297556-0-AXhxbRRCjSFcPZpK8pP2jLy8yVFOZjk7r0ONQy146cQ7XUWdZSVhvOnwZy+bwk3GQg32xEEczma6sJ+C/OO1tG0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 13:45:56 GMT
content-type: image/webp
content-length: 8250
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=gif, origSize=19911
content-disposition: inline; filename="loading-title.webp"
etag: "6619b7625180684bcd34b1a6053d1955"
last-modified: Thu, 10 Nov 2022 17:09:15 GMT
vary: Accept
x-amz-id-2: IspXlwencol1xr+3Cf2wxHnHIP4MQyRschouFm8FaQsGLq9LgHwtVbqtm2ZaVB/DKNvUbOg6Pbc=
x-amz-request-id: J2NY2HREPB9BCJXN
x-amz-server-side-encryption: AES256
cf-cache-status: HIT
age: 1829
expires: Fri, 25 Nov 2022 13:45:56 GMT
cache-control: public, max-age=86400
accept-ranges: bytes
server: cloudflare
cf-ray: 76f29681e9201c12-OSL
X-Firefox-Spdy: h2
radio.massstream.net/cp/widgets/player/single/animate.css
51.15.2.143200 OK 5.1 kB URL HTTP/1.1 radio.massstream.net/cp/widgets/player/single/animate.css
IP 51.15.2.143:0
Hash c3bc9e9bb48aba56e6b01c4dfade5ba9
8f7677ab8d08992d2040589aaff4966978c42a77
2e50a1de47ba775ea251d1caa6628a07098ee967e11d6fb74d3a7bad595e948a
GET /cp/widgets/player/single/animate.css HTTP/1.1
Host: radio.massstream.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://radio.massstream.net/cp/widgets/player/single/?p=8010
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: SonicPanel
Date: Thu, 24 Nov 2022 13:45:56 GMT
Content-Type: text/css
Last-Modified: Wed, 19 Feb 2020 20:29:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5e4d9aa2-13053"
Cache-Control: no-cache
Content-Encoding: gzip
cdn-embed.tunein.com/resources/fonts/Calibre-Regular.woff?dejdbe2
104.18.40.188200 OK 29 kB URL HTTP/2 cdn-embed.tunein.com/resources/fonts/Calibre-Regular.woff?dejdbe2
IP 104.18.40.188:0
File type Web Open Font Format, CFF, length 28708, version 0.0\012- data
Hash fbe1c98bc563dca8ec6945536c7e013a
8d83b42a4bd4511f2b21d7bffc63bdddfd9267da
d4c0eec77a62c3ca38254ab9e19f04008508f9c966c3b39434c165dbf7953fd7
GET /resources/fonts/Calibre-Regular.woff?dejdbe2 HTTP/1.1
Host: cdn-embed.tunein.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tunein.com
Connection: keep-alive
Referer: https://cdn-embed.tunein.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 13:45:56 GMT
content-type: font/woff
content-length: 28708
x-amz-id-2: WXOukT9Hi4XzaCtk08VYPYm7j4uTTdaZ0HNKpw3HMri19efy6qKuKUEB6hrqJal+CEY4C5LHJ5k=
x-amz-request-id: YX5R2VQP3S6RR8CJ
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 28 Sep 2022 21:04:23 GMT
etag: "fbe1c98bc563dca8ec6945536c7e013a"
cf-cache-status: HIT
age: 2248
expires: Fri, 25 Nov 2022 13:45:56 GMT
cache-control: public, max-age=86400
accept-ranges: bytes
set-cookie: __cf_bm=ngFh_EJZDcPr9OOHlyB1Eh8LbuQnE8TnHps1wERMuYk-1669297556-0-ASM0VCXfttqNgVDAfY31wjSLde1wUdWpNmzkCvd6C1fLf4Ci2Fnjcd/YnOlx6wwmp78JG0sKwF9ZoyB77dlkqn4=; path=/; expires=Thu, 24-Nov-22 14:15:56 GMT; domain=.tunein.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 76f29681e8841bfe-OSL
X-Firefox-Spdy: h2
radio.massstream.net/cp/widgets/player/single/skin/flatie.jplayer.skin.js?r=8c0p6zub
51.15.2.143200 OK 2.2 kB URL HTTP/1.1 radio.massstream.net/cp/widgets/player/single/skin/flatie.jplayer.skin.js?r=8c0p6zub
IP 51.15.2.143:0
File type HTML document, ASCII text
Hash 5effce3f402ff70cf9604d501f08b7cf
886bba6abb0be733269a70d845310dd453fa5ad6
4937486f98d6dd32e14d03a8a305d260bfa59b905a5024d0e59f20d23eecbc90
GET /cp/widgets/player/single/skin/flatie.jplayer.skin.js?r=8c0p6zub HTTP/1.1
Host: radio.massstream.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://radio.massstream.net/cp/widgets/player/single/?p=8010
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: SonicPanel
Date: Thu, 24 Nov 2022 13:45:56 GMT
Content-Type: application/javascript
Last-Modified: Tue, 14 Apr 2020 07:19:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5e956400-1b1e"
Cache-Control: no-cache
Content-Encoding: gzip
radio.massstream.net/cp/widgets/player/single/widgets.css?r=3uqb4d3f
51.15.2.143200 OK 805 B URL HTTP/1.1 radio.massstream.net/cp/widgets/player/single/widgets.css?r=3uqb4d3f
IP 51.15.2.143:0
File type ASCII text, with CRLF, CR line terminators
Hash cd5465468fe84d068b11236a586464fc
d8bcfcaaf97573a7ebeb8b18f10ef6ffe6bd4410
787ab16a078e08aeacf839d9ac57f291536593228ec6fc245dd8da399734525a
GET /cp/widgets/player/single/widgets.css?r=3uqb4d3f HTTP/1.1
Host: radio.massstream.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://radio.massstream.net/cp/widgets/player/single/?p=8010
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: SonicPanel
Date: Thu, 24 Nov 2022 13:45:56 GMT
Content-Type: text/css
Last-Modified: Fri, 24 Apr 2020 15:24:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5ea304a0-7bd"
Cache-Control: no-cache
Content-Encoding: gzip
radio.massstream.net/cp/widgets/player/single/skin/flatie.jplayer.skin.css?r=uuh4gsan
51.15.2.143200 OK 1.3 kB URL HTTP/1.1 radio.massstream.net/cp/widgets/player/single/skin/flatie.jplayer.skin.css?r=uuh4gsan
IP 51.15.2.143:0
File type ASCII text, with CRLF line terminators
Hash 0124e603071c96a940df0d2263a1f752
571fadf692b6bcf701af6e647cf6acb6c99c1d7f
dbfa4fc1bcffe255cab22eb95e7dd360c8295a71e5602fa1700f49d5e4eee778
GET /cp/widgets/player/single/skin/flatie.jplayer.skin.css?r=uuh4gsan HTTP/1.1
Host: radio.massstream.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://radio.massstream.net/cp/widgets/player/single/?p=8010
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: SonicPanel
Date: Thu, 24 Nov 2022 13:45:56 GMT
Content-Type: text/css
Last-Modified: Sun, 17 May 2020 17:24:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5ec17362-1916"
Cache-Control: no-cache
Content-Encoding: gzip
radio.massstream.net/cp/widgets/player/single/jquery.marquee.min.js
51.15.2.143200 OK 2.0 kB URL HTTP/1.1 radio.massstream.net/cp/widgets/player/single/jquery.marquee.min.js
IP 51.15.2.143:0
File type ASCII text, with very long lines (516)
Hash 581ecd5ff225c0f240e8e834b413baf1
d44fd917d4457560c3723785d9b604b718f84aa7
8364a29f53bf0e357b709e64287108f4a7efce720b3e18386ee2d1fa6a7f8eef
GET /cp/widgets/player/single/jquery.marquee.min.js HTTP/1.1
Host: radio.massstream.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://radio.massstream.net/cp/widgets/player/single/?p=8010
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: SonicPanel
Date: Thu, 24 Nov 2022 13:45:56 GMT
Content-Type: application/javascript
Last-Modified: Mon, 13 Apr 2020 03:09:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5e93d7f2-1718"
Cache-Control: no-cache
Content-Encoding: gzip
radio.massstream.net/cp/widgets/player/single/skin/jquery.jplayer.min.js
51.15.2.143200 OK 14 kB URL HTTP/1.1 radio.massstream.net/cp/widgets/player/single/skin/jquery.jplayer.min.js
IP 51.15.2.143:0
File type JPEG 2000 image\012- , ASCII text, with very long lines (32026)
Hash 02a8d506c4e6c6270ce0c5be19470a81
447f8bb7d0c0bcdd9bb1ce6c90237a9e95d6f444
7d8c5ebcc18494ee37a0296a5f9bde12dca6c38ca56c90f275377dacc9c0befe
GET /cp/widgets/player/single/skin/jquery.jplayer.min.js HTTP/1.1
Host: radio.massstream.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://radio.massstream.net/cp/widgets/player/single/?p=8010
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: SonicPanel
Date: Thu, 24 Nov 2022 13:45:56 GMT
Content-Type: application/javascript
Last-Modified: Sun, 14 Dec 2014 16:55:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"548dc106-ee16"
Cache-Control: no-cache
Content-Encoding: gzip
radio.massstream.net/cp/widgets/player/single/images/art2.gif
51.15.2.143200 OK 30 kB URL HTTP/1.1 radio.massstream.net/cp/widgets/player/single/images/art2.gif
IP 51.15.2.143:0
File type GIF image data, version 89a, 96 x 96\012- data
Hash 5cd58312a3dbafce4aa2d14dd183ecb3
0993b34081205d1df8dd89fce140dc87c769efe0
cb4f12e29b9120649d538138a88b249bedf3cba3082b475b10d0018901a6b709
GET /cp/widgets/player/single/images/art2.gif HTTP/1.1
Host: radio.massstream.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://radio.massstream.net/cp/widgets/player/single/?p=8010
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: SonicPanel
Date: Thu, 24 Nov 2022 13:45:56 GMT
Content-Type: image/gif
Content-Length: 30261
Last-Modified: Tue, 17 Dec 2019 08:48:42 GMT
Connection: keep-alive
ETag: "5df8966a-7635"
Cache-Control: no-cache
Accept-Ranges: bytes
radio.massstream.net/cp/inc/images/preload.gif
51.15.2.143200 OK 25 kB URL HTTP/1.1 radio.massstream.net/cp/inc/images/preload.gif
IP 51.15.2.143:0
File type GIF image data, version 89a, 64 x 64\012- data
Hash faeb17ce10b82be5edba2a31ee45de55
9d681e4fe694c1ae0ad8b8fa8e543bbd10d5d00b
a40798749df261bf2c227c35f705085cbdfad4973d55edb0d7c1e452d02c2d32
GET /cp/inc/images/preload.gif HTTP/1.1
Host: radio.massstream.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://radio.massstream.net/cp/widgets/player/single/widgets.css?r=3uqb4d3f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: SonicPanel
Date: Thu, 24 Nov 2022 13:45:56 GMT
Content-Type: image/gif
Content-Length: 25056
Last-Modified: Fri, 12 Jul 2019 04:53:48 GMT
Connection: keep-alive
ETag: "5d28125c-61e0"
Cache-Control: no-cache
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b6e7c5faf2d24e0d958ab10ee95f6791
16b68ad4b4a2776571697dff8edc9369a3c5c451
1431771f6fd4ad8c028d53a7489acc16b829e32e01d92df5e8c923723024b75a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1657
Cache-Control: max-age=90373
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 13:45:56 GMT
Etag: "637e2d20-1d7"
Expires: Fri, 25 Nov 2022 14:52:09 GMT
Last-Modified: Wed, 23 Nov 2022 14:24:32 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ttrlive.com/wp-content/themes/Polished/images/searchbox.png
173.233.68.236200 OK 684 B URL HTTP/1.1 ttrlive.com/wp-content/themes/Polished/images/searchbox.png
IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type PNG image data, 186 x 44, 8-bit colormap, non-interlaced\012- data
Hash 1d92b390ac207240cdf50b4a17b9df3f
53e734d9d499ddc6b639f8bcff6a6534da4974d0
60fbf2b15030b4cced00a88cc5d0118f3673fce8d463a6007348648cccff4d45
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/Polished/images/searchbox.png HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/wp-content/themes/Polished/style.css
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:56 GMT
Server: Apache
Last-Modified: Wed, 08 Dec 2021 02:21:16 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Fri, 24 Nov 2023 13:45:56 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 684
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
radio.massstream.net/cp/widgets/player/single/nowplay.php
51.15.2.143200 OK 34 B URL HTTP/1.1 radio.massstream.net/cp/widgets/player/single/nowplay.php
IP 51.15.2.143:0
File type ASCII text, with no line terminators
Hash 6f91dda81eb367283621a87f8b50bb2b
2cad02cf0276a7ec04ae1cd0527764e1dbcae68e
e9373d083fbeb483d0b506b605b305fd8b8ad05c20c6225e439ec8a168e1d072
POST /cp/widgets/player/single/nowplay.php HTTP/1.1
Host: radio.massstream.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 42
Origin: https://radio.massstream.net
Connection: keep-alive
Referer: https://radio.massstream.net/cp/widgets/player/single/?p=8010
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: SonicPanel
Date: Thu, 24 Nov 2022 13:45:56 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache
Content-Encoding: gzip
connect.facebook.net/en_US/sdk.js?hash=47e287106a96623b161472a38a24efc4
157.240.200.14200 OK 88 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=47e287106a96623b161472a38a24efc4
IP 157.240.200.14:0
File type ASCII text, with very long lines (18530)
Hash b15b2635c86f56b2c63f3458ebb42a9e
385e0efd4a38563d0b16835861c42026e3e38e52
847830a9f293b1ea3eb30add7cf2fb4ef9213ea0105589bbae1d4bae0a3228eb
GET /en_US/sdk.js?hash=47e287106a96623b161472a38a24efc4 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://ttrlive.com
Connection: keep-alive
Referer: http://ttrlive.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 11c5dd6ace0136e88d150e3edb3d2407
etag: "fa0e58d9753b9eb376e5a912b3d589ca"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 24 Nov 2023 12:29:41 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: sVsmNchvVrLGPzRY67Qqng==
x-fb-debug: uRnV+PDop5YerQ3jN9j3Ka9e2oHMvkx5/yeHgYSLz+/nSqPIlUjoe8DXeRVpF9IaN9TzugNbgV+lraF/sWuPLA==
priority: u=3,i
content-length: 88359
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:45:56 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b6e7c5faf2d24e0d958ab10ee95f6791
16b68ad4b4a2776571697dff8edc9369a3c5c451
1431771f6fd4ad8c028d53a7489acc16b829e32e01d92df5e8c923723024b75a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1657
Cache-Control: max-age=90373
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 13:45:56 GMT
Etag: "637e2d20-1d7"
Expires: Fri, 25 Nov 2022 14:52:09 GMT
Last-Modified: Wed, 23 Nov 2022 14:24:32 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
radio.massstream.net/cp/widgets/player/single/skin/fonts/player-font.ttf?iqly2j
51.15.2.143200 OK 1.1 kB URL HTTP/1.1 radio.massstream.net/cp/widgets/player/single/skin/fonts/player-font.ttf?iqly2j
IP 51.15.2.143:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, player-font\012- data
Hash ac72ec605bc12f97fa325a4167059991
7cc2d776aa10abc168fa070b9c27f527c7435529
3d7accc42eacc203dba09bf9fd03695ea328a3444ed817dfa478b5cd1dd80ebb
GET /cp/widgets/player/single/skin/fonts/player-font.ttf?iqly2j HTTP/1.1
Host: radio.massstream.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://radio.massstream.net/cp/widgets/player/single/skin/flatie.jplayer.skin.css?r=uuh4gsan
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: SonicPanel
Date: Thu, 24 Nov 2022 13:45:56 GMT
Content-Type: application/octet-stream
Last-Modified: Tue, 09 Feb 2016 13:30:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"56b9e9e6-6e0"
Cache-Control: no-cache
Content-Encoding: gzip
radio.massstream.net/cp/widgets/player/single/art.php
51.15.2.143200 OK 1.2 MB URL HTTP/1.1 radio.massstream.net/cp/widgets/player/single/art.php
IP 51.15.2.143:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 1.2 MB (1164956 bytes)
Hash 85fb8392dc76015af1129e7b780432c1
b775024fbace5e6d2e0217ea4823b486e273b905
dfd39baf1af96b40b441ca2772b0011dfd4e45e2275e519018a4e00a539119b7
POST /cp/widgets/player/single/art.php HTTP/1.1
Host: radio.massstream.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 55
Origin: https://radio.massstream.net
Connection: keep-alive
Referer: https://radio.massstream.net/cp/widgets/player/single/?p=8010
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: SonicPanel
Date: Thu, 24 Nov 2022 13:45:56 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18450
Expires: Thu, 24 Nov 2022 18:53:27 GMT
Date: Thu, 24 Nov 2022 13:45:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18450
Expires: Thu, 24 Nov 2022 18:53:27 GMT
Date: Thu, 24 Nov 2022 13:45:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18450
Expires: Thu, 24 Nov 2022 18:53:27 GMT
Date: Thu, 24 Nov 2022 13:45:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18450
Expires: Thu, 24 Nov 2022 18:53:27 GMT
Date: Thu, 24 Nov 2022 13:45:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18450
Expires: Thu, 24 Nov 2022 18:53:27 GMT
Date: Thu, 24 Nov 2022 13:45:57 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 64d79191f005c9876b952c5f948aa0f7
1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a
00fb36c3d322e8302c5ce202d6d4119d637510cd6f3b63e1347781ec3bb9d7fc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13882
x-amzn-requestid: 9022b0b3-31d5-4149-a969-02514f11b95a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvzNHjMoAMFWMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9347-0e8354a02bef623644714e31;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ve4q5FDkwMGhPK6ZVVVCZtoBTaGaz43r_PwINzwS5Nx5tcZeQkVIfw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:49:47 GMT
age: 57370
etag: "1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F707b8d34-3bd2-4793-9e17-c60d0b285f84.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F707b8d34-3bd2-4793-9e17-c60d0b285f84.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dc118bae963b381ce5450890130ecf15
9355a16a81b11e024dd2c5c0024aba1121fff925
cb5bc2cc49e05c133434eeb725690b3e32a0d3c6b75074582f941eee3bf7e1c1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F707b8d34-3bd2-4793-9e17-c60d0b285f84.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9828
x-amzn-requestid: bf2f8429-416d-40d4-a237-7593ee26c27a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEv0KHywIAMFvtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e934d-349e1dcc595b1be906a83577;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bQcpPUgu6eN6PQeLMGWwBlf01iHj77_aXHjKmh8SH7HsWlUX6kipDg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:23 GMT
age: 56914
etag: "9355a16a81b11e024dd2c5c0024aba1121fff925"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 92c78302bcce1568eb6a5563100b932c
43d1dec7fc06879988c9c3cadd800cc8145df988
0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7YSXUV-LZpsI7vciFhuqt1EVr6YRkhxcOgMg8z8bxLcOE01_baf6Gg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:06 GMT
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
content-type: image/jpeg
age: 57531
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d9d93b2a6875d446c3467eb49767eef5
303c571b13b05fcf27ee1159d8fdf6369aaef0a2
2a2345a925e0187979930a7f2de8548957ad9f2baae77364dcb157286e2b3fcf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6789
x-amzn-requestid: 4d94ce1b-d18f-43b8-bb4d-e7093f9bea42
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvd2G9UIAMFrEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5f2-64a570135be59b83031811da;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:04:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JygkDI7XSvlgurUTot874ZAXlOIqnv4cntMQ55IvHVqw93JBcksZjQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:15:22 GMT
age: 23435
etag: "303c571b13b05fcf27ee1159d8fdf6369aaef0a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: blE0hGNioAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:14:07 GMT
age: 23510
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b4157f2c5c3c77ce699324ecb08f47c7
a7d9135f9d01ba13c3cdaf8b038c70212f159297
2305f7afee95bb34d9e8dbff571c6b146ba7b694be96e9e925c32d1f41785916
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7462
x-amzn-requestid: 1f6fb14d-83e0-43d3-9dab-5bc83af1a7c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwV3HV9oAMFs9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9425-634d43db6308e0be596aa5a0;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GW5UTfY7-TwPWTno9z1e21a2cA9fmU7GfHFYWdL-zQvMLxeq-S9Trg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:03:54 GMT
age: 56523
etag: "a7d9135f9d01ba13c3cdaf8b038c70212f159297"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
delivery-cdn-cf.adswizz.com/adswizz/js/SynchroClient2.js
54.230.111.49200 OK 9.2 kB URL HTTP/2 delivery-cdn-cf.adswizz.com/adswizz/js/SynchroClient2.js
IP 54.230.111.49:0
Hash 3a38a4c45e3aa46a58e390f0b0baebfd
e578f9a058050680ea5fa55edc15617628ee6314
dc3a0e2e935e1287780338713472a6ab77cfddcd82259c9d6bb4317de0d93898
GET /adswizz/js/SynchroClient2.js HTTP/1.1
Host: delivery-cdn-cf.adswizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tunein.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 9187
last-modified: Tue, 15 Sep 2020 06:28:38 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 23 Nov 2022 20:54:35 GMT
etag: "3a38a4c45e3aa46a58e390f0b0baebfd"
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: p3wwP8UB2QjBvMn4rrtryhvJXpzCafeWrbkYFV5v_UAL8svC5alMOQ==
age: 60683
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5f07c78d469c92836851fac9ba1c51db
a93d0e7a2019170603c42bad200faa903a39f960
cd99642459866f53d342deaf8029492936ba8c176baede02265ba7108efd1b29
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4171
Cache-Control: max-age=106223
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 13:45:57 GMT
Etag: "637e6139-1d7"
Expires: Fri, 25 Nov 2022 19:16:20 GMT
Last-Modified: Wed, 23 Nov 2022 18:06:49 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 13:45:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 13:45:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dd0dd96ca622aa07354fabdd0da767bf
a29eaa02a81dabed2c12be20a89d65a5a0417524
6a670e9031ec8c94bdc91c47a2d6a4ca2bd95fe032fec28888a8e6d7dc163cb4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 13:45:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tunein.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 24 Nov 2022 12:41:08 GMT
expires: Thu, 24 Nov 2022 14:41:08 GMT
cache-control: public, max-age=7200
age: 3889
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
imasdk.googleapis.com/pal/sdkloader/pal.js
142.250.74.138200 OK 39 kB URL HTTP/2 imasdk.googleapis.com/pal/sdkloader/pal.js
IP 142.250.74.138:0
File type ASCII text, with very long lines (49007)
Hash 889ec226611d68b6be947be78c66a90c
c06926c82634ac4994c230bc30f38d2c565c9461
41784331a9d1d74edf5ed529b1a9bb2a29b5280220b94f7aaeb6e0937022a142
GET /pal/sdkloader/pal.js HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tunein.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 38812
date: Thu, 24 Nov 2022 13:45:57 GMT
expires: Thu, 24 Nov 2022 13:45:57 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
sb.scorecardresearch.com/b?c1=7&c2=14306206&c3=1&cs_ucfr=1&cs_it=b3&cv=3.8.0.210223&ns__t=1669297557153&ns_c=UTF-8&ns_if=1&c7=https%3A%2F%2Ftunein.com%2Fembed%2Fplayer%2Fs138020%2F&c8=TuneIn%20Radio&c9=http%3A%2F%2Fttrlive.com%2F
143.204.55.96204 No Content 0 B URL HTTP/2 sb.scorecardresearch.com/b?c1=7&c2=14306206&c3=1&cs_ucfr=1&cs_it=b3&cv=3.8.0.210223&ns__t=1669297557153&ns_c=UTF-8&ns_if=1&c7=https%3A%2F%2Ftunein.com%2Fembed%2Fplayer%2Fs138020%2F&c8=TuneIn%20Radio&c9=http%3A%2F%2Fttrlive.com%2F
IP 143.204.55.96:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b?c1=7&c2=14306206&c3=1&cs_ucfr=1&cs_it=b3&cv=3.8.0.210223&ns__t=1669297557153&ns_c=UTF-8&ns_if=1&c7=https%3A%2F%2Ftunein.com%2Fembed%2Fplayer%2Fs138020%2F&c8=TuneIn%20Radio&c9=http%3A%2F%2Fttrlive.com%2F HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tunein.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 24 Nov 2022 13:45:57 GMT
set-cookie: UID=192f290de3e2182cdcb01281669297557; domain=.scorecardresearch.com; path=/; max-age=62208000
x-cache: Miss from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: V2_sDeJEI18YSDSR01IO4lvAASmbeTuCa-NoGTbGFnlAcikmHgKgVQ==
X-Firefox-Spdy: h2
imasdk.googleapis.com/js/sdkloader/ima3.js
142.250.74.138200 OK 127 kB URL HTTP/2 imasdk.googleapis.com/js/sdkloader/ima3.js
IP 142.250.74.138:0
File type ASCII text, with very long lines (2791)
Size 127 kB (126568 bytes)
Hash d298ebea71faa19cd8237ddf8c37d550
628f6436cdc4db74ecda4fad134b4499f41ad4cb
f02e9221a17b677d0aa0b76876bd82931f57bf5dd1ff9aa24a1ab945838b0e64
GET /js/sdkloader/ima3.js HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tunein.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 126568
date: Thu, 24 Nov 2022 13:45:57 GMT
expires: Thu, 24 Nov 2022 13:45:57 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dd0dd96ca622aa07354fabdd0da767bf
a29eaa02a81dabed2c12be20a89d65a5a0417524
6a670e9031ec8c94bdc91c47a2d6a4ca2bd95fe032fec28888a8e6d7dc163cb4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 13:45:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 13:45:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rules.quantcount.com/rules-p-49SVsgIZlUqPk.js
54.230.111.47200 OK 130 B URL HTTP/2 rules.quantcount.com/rules-p-49SVsgIZlUqPk.js
IP 54.230.111.47:0
Hash cca9b815af4733d640be46ec20909b54
d369e2837eb870a8f576478d5461381127bdb4d6
222fe705464d740720c312045785a76120dad97e35c6795322ba656815a3e9a5
GET /rules-p-49SVsgIZlUqPk.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tunein.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 130
last-modified: Thu, 13 Apr 2017 01:01:32 GMT
accept-ranges: bytes
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
date: Thu, 24 Nov 2022 13:30:43 GMT
cache-control: max-age=3600
etag: "cca9b815af4733d640be46ec20909b54"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xQrhfVhn8xp5FWdXpAcZWkvmo87rLLhA3odXZvYnn5V5SBa81ndUKA==
age: 1054
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 9853d4f0716135acf416ec8502f3df26
951b4b359669406a074cd2ce846707d977127d15
462fc6a3d3a4cc860a8ee1f90db64a12f2c8e44357fdc22b628b45163febf775
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=96833
Date: Thu, 24 Nov 2022 13:45:57 GMT
Etag: "637e3e32-1d7"
Expires: Fri, 25 Nov 2022 16:39:50 GMT
Last-Modified: Wed, 23 Nov 2022 15:37:22 GMT
Server: ECS (dcb/7F60)
X-Cache: Miss from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: OPMoMlmrqWimJ0nVIY_7JjPAL6TcNMXhnXy3ZXp38Ggks4FIA5_LJw==
Age: 3748
pixel.quantserve.com/pixel;r=1364131034;rf=0;a=p-49SVsgIZlUqPk;url=https%3A%2F%2Ftunein.com%2Fembed%2Fplayer%2Fs138020%2F;ref=http%3A%2F%2Fttrlive.com%2F;uht=2;fpan=1;fpa=P0-2064475668-1669297557272;pbc=;ns=1;ce=0;qjs=1;qv=48c6ea86-20221121114006;cm=;gdpr=0;d=tunein.com;dst=0;et=1669297557297;tzo=0;ogl=;ses=697fe28a-1e80-4c81-9f2e-3724cf954602
91.228.74.206200 OK 35 B URL HTTP/2 pixel.quantserve.com/pixel;r=1364131034;rf=0;a=p-49SVsgIZlUqPk;url=https%3A%2F%2Ftunein.com%2Fembed%2Fplayer%2Fs138020%2F;ref=http%3A%2F%2Fttrlive.com%2F;uht=2;fpan=1;fpa=P0-2064475668-1669297557272;pbc=;ns=1;ce=0;qjs=1;qv=48c6ea86-20221121114006;cm=;gdpr=0;d=tunein.com;dst=0;et=1669297557297;tzo=0;ogl=;ses=697fe28a-1e80-4c81-9f2e-3724cf954602
IP 91.228.74.206:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55d25e9dc950d5db4d53a3b195c046c6
75e91ae3e549dab12ed1c9787ade9131aef1c981
a0d3a0aff7dc3bf32d2176fc3dcda6e7aba2867c4f4d1f7af6355d2cfc6c44f8
GET /pixel;r=1364131034;rf=0;a=p-49SVsgIZlUqPk;url=https%3A%2F%2Ftunein.com%2Fembed%2Fplayer%2Fs138020%2F;ref=http%3A%2F%2Fttrlive.com%2F;uht=2;fpan=1;fpa=P0-2064475668-1669297557272;pbc=;ns=1;ce=0;qjs=1;qv=48c6ea86-20221121114006;cm=;gdpr=0;d=tunein.com;dst=0;et=1669297557297;tzo=0;ogl=;ses=697fe28a-1e80-4c81-9f2e-3724cf954602 HTTP/1.1
Host: pixel.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tunein.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 13:45:57 GMT
content-type: image/gif
content-length: 35
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: mc=637f7595-99368-fec40-5194a; expires=Mon, 25-Dec-2023 13:45:57 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
synchrobox.adswizz.com/register2.php
52.210.102.47200 OK 589 B URL HTTP/1.1 synchrobox.adswizz.com/register2.php
IP 52.210.102.47:0
Hash cde99ea96f3b187731b66583e79e1b49
c315ff20bd909be2207844f614fec4e162f1b319
3ba58582bf5e1b451eb9c5bac24e27539c67d4f5e5a6640c25f6ccc75183a021
GET /register2.php HTTP/1.1
Host: synchrobox.adswizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tunein.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, Authorization
Access-Control-Allow-Methods: GET, HEAD, OPTIONS, POST, PUT
Access-Control-Allow-Origin: *
content-type: text/javascript
P3P: CP="IDC DSP COR CURa ADMa OUR IND PHY ONL COM STA"
set-cookie: OAID=7986a38302287cdc4bf31971b99a4d2e; Max-Age=7776000; Expires=Wed, 22 Feb 2023 13:45:57 GMT; Path=/; Domain=.adswizz.com;SameSite=None;SameSite=None;Secure
Content-Length: 589
Connection: keep-alive
cdn-embed.tunein.com/resources/fonts/Calibre-Medium.woff?dejdbe2
104.18.40.188200 OK 27 kB URL HTTP/2 cdn-embed.tunein.com/resources/fonts/Calibre-Medium.woff?dejdbe2
IP 104.18.40.188:0
File type Web Open Font Format, CFF, length 26696, version 0.0\012- data
Hash e07daf2f0c4a32126b57b3d01436759f
21b176e6b4d57ba5e0d87c7c36ef3737f140b7db
949e4be169d404dd0a67d2839bb2780497faef74039bb4ef841142872d024231
GET /resources/fonts/Calibre-Medium.woff?dejdbe2 HTTP/1.1
Host: cdn-embed.tunein.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tunein.com
Connection: keep-alive
Referer: https://cdn-embed.tunein.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 13:45:57 GMT
content-type: font/woff
content-length: 26696
x-amz-id-2: pbNJr6V1RaF94EUvx//GKQt2FQ7pkFvs5xPTqGo7SDWLU0P47a4Dbnf7A5VgxXxdm5uNvPlBayM=
x-amz-request-id: NHD2R9Q43ZN4AFV5
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 28 Sep 2022 21:04:23 GMT
etag: "e07daf2f0c4a32126b57b3d01436759f"
cf-cache-status: HIT
age: 2248
expires: Fri, 25 Nov 2022 13:45:57 GMT
cache-control: public, max-age=86400
accept-ranges: bytes
set-cookie: __cf_bm=QeGMSUVPtYcMHmPp7eg_LhKKoiM4KPH5sPSErSGudwM-1669297557-0-ARLhOz9PfmRdBZJ4yGtqi2eZaoKpBEF1ct+Im86qScZ1vhvLXGgdxJxdFMAjSQBoYzwcFqVhte/nVmOi9cz4hh8=; path=/; expires=Thu, 24-Nov-22 14:15:57 GMT; domain=.tunein.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 76f296874d791bfe-OSL
X-Firefox-Spdy: h2
cdn-embed.tunein.com/resources/fonts/Calibre-Semibold.woff?dejdbe2
104.18.40.188200 OK 30 kB URL HTTP/2 cdn-embed.tunein.com/resources/fonts/Calibre-Semibold.woff?dejdbe2
IP 104.18.40.188:0
File type Web Open Font Format, CFF, length 29804, version 0.0\012- data
Hash 7de3cc3a2af17b42ac6fa7b743e3980a
7756efe3131179175b22ba491b75e09be9acb622
c7996fd3b8834c8593c8176b25f69a653d0943a009b7545002c1f97fb24dd71f
GET /resources/fonts/Calibre-Semibold.woff?dejdbe2 HTTP/1.1
Host: cdn-embed.tunein.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tunein.com
Connection: keep-alive
Referer: https://cdn-embed.tunein.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 13:45:57 GMT
content-type: font/woff
content-length: 29804
x-amz-id-2: lnRS+deHN7ch7PsuSbrEFjiuKMHh2LjJRLqBzCwmIUws/y15hBHkav+dXkVJzbpIFPz4YcgBDotEJilSDWEUkw==
x-amz-request-id: 5YK2THZ7AR5ZEH7S
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 01 Jun 2022 00:00:32 GMT
etag: "7de3cc3a2af17b42ac6fa7b743e3980a"
cf-cache-status: HIT
age: 2248
expires: Fri, 25 Nov 2022 13:45:57 GMT
cache-control: public, max-age=86400
accept-ranges: bytes
set-cookie: __cf_bm=EU2Atfy_qKsCuq1R3kmx_ztE6sN3S81V2tj7bg5Id5A-1669297557-0-AUlNNBA0S6VPXsnCi6ApxDZqTPIcZzwvgQiH32z+y7ZbH17TYyrsfjsC/Z3XLM6tq0aIrccE1v+3pXX7YAp1htA=; path=/; expires=Thu, 24-Nov-22 14:15:57 GMT; domain=.tunein.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 76f296874d7f1bfe-OSL
X-Firefox-Spdy: h2
ttrlive.com/favicon.ico
173.233.68.236200 OK 22 B IP 173.233.68.236:0
ASN #40244 TURNKEY-INTERNET
File type ASCII text, with CRLF line terminators
Hash 81db138ca369d4f889c9e2e5deaf9b4b
8dd470920f0d470383ad61f248816a64c8f72633
9343e4ff1c30e54022baeaf6443281346b12301614d370710f806792d4746804
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: ttrlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ttrlive.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 13:45:56 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 22
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
cdn-radiotime-logos.tunein.com/s138020d.png
104.18.40.188200 OK 29 kB URL HTTP/2 cdn-radiotime-logos.tunein.com/s138020d.png
IP 104.18.40.188:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash a2549630d50ade1d9c8a09ab4a9cbfb9
0f64ec17e8465c393ea434a094a2177162776317
922de223e273b82f0e7a12c548058b761a4f7417757b60dc12d639fc4633f4d9
GET /s138020d.png HTTP/1.1
Host: cdn-radiotime-logos.tunein.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tunein.com/
Cookie: __cf_bm=6Fvqy_x__RaoZUEw0PrHBB3dE7dUgGPb.KF1NFB94hw-1669297556-0-AXhxbRRCjSFcPZpK8pP2jLy8yVFOZjk7r0ONQy146cQ7XUWdZSVhvOnwZy+bwk3GQg32xEEczma6sJ+C/OO1tG0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 13:45:58 GMT
content-type: image/png
content-length: 28783
x-amz-id-2: Pa6sH4jnjk2GIxHtF8jRVveWOGjkrYZbQQPmWrMZSAODLgFBBVUIyxdndxcYILJcWeIL23SAVZI=
x-amz-request-id: 0BRQY1V9TEJ0CMVG
last-modified: Tue, 21 Sep 2021 19:08:11 GMT
etag: "a2549630d50ade1d9c8a09ab4a9cbfb9"
cache-control: public, max-age=86400
cf-cache-status: MISS
expires: Fri, 25 Nov 2022 13:45:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f296873ee11c12-OSL
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash ccc5b421e0e9e56a10929df37f87be75
b6aa168936786dc60bc18ff83320515cfe82ae90
5df2bde66fee43a3ede8f11bcf71201de8555dabefb6a4b0f213b7c97ae60c0f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=171762
Date: Thu, 24 Nov 2022 13:45:58 GMT
Etag: "637f628d-1d7"
Expires: Sat, 26 Nov 2022 13:28:40 GMT
Last-Modified: Thu, 24 Nov 2022 12:24:45 GMT
Server: ECS (dcb/7F60)
X-Cache: Miss from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: WII9xZS91aIqDVG4oGGBUoIzuXVF0jkGgTsm0y9rYyKflDMR1EtgBg==
Age: 3835
tunein.com/api/v1/log/info/?formats=mp3,aac,ogg,flash,hls&serial=5d7fb9b8-7a91-4336-8a37-b37032635bc4&partnerId=qZjjnm85&version=0.65&itemUrlScheme=secure&mode=embed&reqAttempt=1
104.18.40.188200 OK 2 B URL HTTP/2 tunein.com/api/v1/log/info/?formats=mp3,aac,ogg,flash,hls&serial=5d7fb9b8-7a91-4336-8a37-b37032635bc4&partnerId=qZjjnm85&version=0.65&itemUrlScheme=secure&mode=embed&reqAttempt=1
IP 104.18.40.188:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /api/v1/log/info/?formats=mp3,aac,ogg,flash,hls&serial=5d7fb9b8-7a91-4336-8a37-b37032635bc4&partnerId=qZjjnm85&version=0.65&itemUrlScheme=secure&mode=embed&reqAttempt=1 HTTP/1.1
Host: tunein.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 277
Origin: https://tunein.com
Connection: keep-alive
Referer: https://tunein.com/embed/player/s138020/
Cookie: __cf_bm=6Fvqy_x__RaoZUEw0PrHBB3dE7dUgGPb.KF1NFB94hw-1669297556-0-AXhxbRRCjSFcPZpK8pP2jLy8yVFOZjk7r0ONQy146cQ7XUWdZSVhvOnwZy+bwk3GQg32xEEczma6sJ+C/OO1tG0=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 13:45:58 GMT
content-type: application/json; charset=utf-8
content-length: 2
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
x-envoy-upstream-service-time: 10
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 76f2968c2bb61c12-OSL
X-Firefox-Spdy: h2
synchroscript.deliveryengine.adswizz.com/www/delivery/afr.php?zoneid=9&aw_0_req.gdpr=false
52.51.119.104200 5.9 kB URL HTTP/1.1 synchroscript.deliveryengine.adswizz.com/www/delivery/afr.php?zoneid=9&aw_0_req.gdpr=false
IP 52.51.119.104:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1079), with CRLF, LF line terminators
Hash 3670cdc312fba65d11a07e705e04b0ca
39e79affe511c90e5c56dff2a50f57146231d281
25af263f4b6d77d7a0d39b4bad82669ca0deed73338459aa891950ec89815c7e
GET /www/delivery/afr.php?zoneid=9&aw_0_req.gdpr=false HTTP/1.1
Host: synchroscript.deliveryengine.adswizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tunein.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Accept-Charset: utf-8
Access-Control-Allow-Origin: *
Content-Type: text/html;charset=UTF-8
Date: Thu, 24 Nov 2022 13:45:58 GMT
Instance-id: i-01ca7799da47658d8
P3P: policyref="synchroscript.adswizz.com/docs/adswizz_adserver.htm", CP="CUR OUR NAV INT IND"
Set-Cookie: sessionId=5d536b2d62e6674d089df258524a68; Domain=.adswizz.com; Path=/
X-AdsWizz-Banner-Status-Code: 0
X-Adswizz-request-id: 538f2a30-6bfe-11ed-82f1-0a7983a049d9
X-Application-Context: application:production
X-Clacks-Overhead: GNU Terry Pratchett
Content-Length: 5896
Connection: keep-alive
delivery-cdn-cf.adswizz.com/adswizz/js/swfobject-2.2.min.js
54.230.111.49200 OK 9.2 kB URL HTTP/2 delivery-cdn-cf.adswizz.com/adswizz/js/swfobject-2.2.min.js
IP 54.230.111.49:0
File type ASCII text, with very long lines (9211), with no line terminators
Hash e6a40488a5f5774d02c06d0787ef01d8
b15e42bc41917b9454c76fceedb4368f60de90c2
a18cbdbb0fbb733d7f4cba5d2afd6b2706e3f141c743f491057e5800368cd8e5
GET /adswizz/js/swfobject-2.2.min.js HTTP/1.1
Host: delivery-cdn-cf.adswizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synchroscript.deliveryengine.adswizz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 9211
last-modified: Wed, 01 Apr 2015 12:24:04 GMT
accept-ranges: bytes
server: AmazonS3
date: Thu, 24 Nov 2022 12:40:53 GMT
etag: "e6a40488a5f5774d02c06d0787ef01d8"
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fQBIoQh2wuhIodaDPAuunbvtG5aM7Eju_K2C7A7O6NYcKwe1DpWA3Q==
age: 3906
X-Firefox-Spdy: h2
synchroscript.deliveryengine.adswizz.com/www/delivery/ajs.php?zoneid=8&withtext=1&isDisableLogImpression=1&listenerId=68df3430ac2b84811edf391e6f03daf0&cb=14816546864&charset=UTF-8&loc=https%3A//synchroscript.deliveryengine.adswizz.com/www/delivery/afr.php%3Fzoneid%3D9%26aw_0_req.gdpr%3Dfalse&referer=https%3A//tunein.com/
52.51.119.104200 1.5 kB URL HTTP/1.1 synchroscript.deliveryengine.adswizz.com/www/delivery/ajs.php?zoneid=8&withtext=1&isDisableLogImpression=1&listenerId=68df3430ac2b84811edf391e6f03daf0&cb=14816546864&charset=UTF-8&loc=https%3A//synchroscript.deliveryengine.adswizz.com/www/delivery/afr.php%3Fzoneid%3D9%26aw_0_req.gdpr%3Dfalse&referer=https%3A//tunein.com/
IP 52.51.119.104:0
File type ASCII text, with very long lines (1388)
Hash d55b5b7a9521fb709d2e50d78a3e94d4
886bf0e38ab4d656a9cd7bb049d09dd2f754726c
9e3315babed23142fd3e49e2864430997deb50cb8300f70ca05715bcea352cc7
GET /www/delivery/ajs.php?zoneid=8&withtext=1&isDisableLogImpression=1&listenerId=68df3430ac2b84811edf391e6f03daf0&cb=14816546864&charset=UTF-8&loc=https%3A//synchroscript.deliveryengine.adswizz.com/www/delivery/afr.php%3Fzoneid%3D9%26aw_0_req.gdpr%3Dfalse&referer=https%3A//tunein.com/ HTTP/1.1
Host: synchroscript.deliveryengine.adswizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synchroscript.deliveryengine.adswizz.com/www/delivery/afr.php?zoneid=9&aw_0_req.gdpr=false
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200
Accept-Charset: utf-8
Access-Control-Allow-Origin: *
Content-Type: application/x-javascript;charset=UTF-8
Date: Thu, 24 Nov 2022 13:45:57 GMT
Instance-id: i-0a86c06e7412fd1af
P3P: policyref="synchroscript.adswizz.com/docs/adswizz_adserver.htm", CP="CUR OUR NAV INT IND"
Set-Cookie: sessionId=8236ec9fdbe6b17ed7578eccc16166; Domain=.adswizz.com; Path=/
X-Adswizz-request-id: 539df740-6bfe-11ed-aee4-02484d5c3cd7
X-Application-Context: application:production
X-Clacks-Overhead: GNU Terry Pratchett
Content-Length: 1451
Connection: keep-alive
static.xx.fbcdn.net/rsrc.php/v3/yr/l/0,cross/nWIU5H2unqI.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 3.4 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yr/l/0,cross/nWIU5H2unqI.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (3040)
Hash 67341f39b2ce247e697a10779f128a4d
f02c4778acb39deb48e616259ba730fd59a19fc3
7e7f121969a70cc7962e6b31531a1afca8d5492879b9b52291b2c8014ca0bf76
GET /rsrc.php/v3/yr/l/0,cross/nWIU5H2unqI.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 23 Nov 2023 18:25:56 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: ZzQfObLOJH5pehB3nxKKTQ==
x-fb-debug: xXc3tB6KW2GlKJu1jGtCJl1gxVhj5AQ85x7wZ7SmqXL5xeWj0x3cQ1IVai2V73sS60cXq/nCIPlGg6/Y4DvsgA==
priority: u=3,i
content-length: 3399
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:45:58 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yB/l/0,cross/Z8HwmBQAssQ.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 4.4 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yB/l/0,cross/Z8HwmBQAssQ.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (4431)
Hash b113b03774dd681750e13a29e21bb731
7f04db6a230a826eecad3667b4e770b9e72ec31e
193918cbf46245338989996fcd9c0e76f0625e1a39f5ba648a2fac2960a1b16c
GET /rsrc.php/v3/yB/l/0,cross/Z8HwmBQAssQ.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 23 Nov 2023 18:25:56 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: sROwN3TdaBdQ4Top4hu3MQ==
x-fb-debug: 2+7xHS/eDx07NmhPNkyywIjCCVloU4QlzRZJJgKsbCgCjIDfHNXfHrBmU+/Xx8tnlHsCvyab2/94fUDvDqkzFw==
priority: u=3,i
content-length: 4377
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:45:58 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y8/r/qc0dVyw0ZD0.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 91 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y8/r/qc0dVyw0ZD0.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (18622)
Hash 151e87d38f4f425e44d9c851c9aecf05
762111e5095f5354be95b98ad476f6e7161ce6b1
f236f289f38c8081b496e0537ed3b2c66822e7a743f5d9d4959f955c64b0b2b0
GET /rsrc.php/v3/y8/r/qc0dVyw0ZD0.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 17 Nov 2023 16:54:49 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: FR6H049PQl5E2chRya7PBQ==
x-fb-debug: XKYCuFqqNH0kZrgnBK9d939R6pWs+fcIzk26id8p6lRkOvr6n2vQtYYz0yMcJoZ8xMvN0Ztyy0Cqwk+0Rwgf4Q==
content-length: 91088
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:45:58 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 1.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (1984)
Hash 16f083b23b565db9d2f20d1ad75933c1
6d74ad139c96b1e3fc9d541419788b5b4893ec9a
36b909cd9132a8996a1bbb221d05217c31506a6951bb408deeea6aa612dc4200
GET /rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 13 Nov 2023 06:07:00 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: FvCDsjtWXbnS8g0a11kzwQ==
x-fb-debug: bP7Hn62kFAjWr7jSa5xbIHjvtrymCc5+/BWiU8jmZWvoE9UNywvxV+fazhrnkAfvO75toNN1+8hqwJRQpK4bpw==
content-length: 1657
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:45:58 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 338 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (327)
Hash 76f593e842677f73cd0a06232874b2c3
25a13f79478d5a0e286a2299dca2f3b296463079
74dcbe026002f10b703960a500b50dabe518862e568a9e689dec7afa243fa44d
GET /rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 06:18:30 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: dvWT6EJnf3PNCgYjKHSyww==
x-fb-debug: DZhU5MwmbbIIVGRdiUxU0LCjP+Pg/Lu5l9kyPRqKLtZFG3Mdj7yoWkGHBpn/J6Hl6OgtOkcrGjypCwpY1KmM2A==
priority: u=3,i
content-length: 338
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:45:58 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y-/r/y841rZ2iNa0.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 8.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y-/r/y841rZ2iNa0.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (9885)
Hash 71e8e93b5e55f2010013b0814f4e3ae5
4732ba3acc539a0e9ff12d08c1b5a16f535bd594
b710ea52f812ac39c5195f0c170142bfcfcc274aa6b250a29a1ed1c59ea58556
GET /rsrc.php/v3/y-/r/y841rZ2iNa0.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 06:28:09 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: cejpO15V8gEAE7CBT0465Q==
x-fb-debug: dx53roeeU5CWrw0j2jeWexOAWoUT/r66xg58VI72Hevb7bsVEGBXTTjyH1qf06WxMAYufHBre3cxcv6awJ+KwA==
priority: u=3,i
content-length: 8748
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:45:58 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 12 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (5542)
Hash 0765d76d746716156d53d36ee6f80836
17e1546f87cc6417615caa10dcbbcb699c59471a
f1e6af63ae9ff0385126b72a492b0d34709514dd4c00074a1be28272c253d4f8
GET /rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 03:38:47 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: B2XXbXRnFhVtU9Nu5vgINg==
x-fb-debug: wiiQpSv+hINmxdmDh50qRYLH0Cc0/G7L/Ii7uM69ujJ9255olUBP7wXxq1ttCrD/GuMczOSWMrxFCttWIBEa7Q==
priority: u=3,i
content-length: 12369
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:45:58 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/v2.4/plugins/page.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Dfb1b4a1a8c028e%26domain%3Dttrlive.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fttrlive.com%252Ff2ae86f42c484b%26relation%3Dparent.parent&container_width=230&height=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fvannathamil%3Flocale%3D&locale=en_US&sdk=joey&show_facepile=true&show_posts=false&small_header=true&tabs=timeline&width=250
157.240.200.35200 OK 32 kB URL HTTP/2 www.facebook.com/v2.4/plugins/page.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Dfb1b4a1a8c028e%26domain%3Dttrlive.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fttrlive.com%252Ff2ae86f42c484b%26relation%3Dparent.parent&container_width=230&height=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fvannathamil%3Flocale%3D&locale=en_US&sdk=joey&show_facepile=true&show_posts=false&small_header=true&tabs=timeline&width=250
IP 157.240.200.35:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (20013)
Hash 735defe84c5b689a8cb3ba65576aaa44
42fd5051f18bc78a97bfb7e2e9f13acaf81eca79
d54c1436354d5264e25f187ad0e4cc8d6c3119b5a61949bcf3b46bc335fffb0c
GET /v2.4/plugins/page.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Dfb1b4a1a8c028e%26domain%3Dttrlive.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fttrlive.com%252Ff2ae86f42c484b%26relation%3Dparent.parent&container_width=230&height=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fvannathamil%3Flocale%3D&locale=en_US&sdk=joey&show_facepile=true&show_posts=false&small_header=true&tabs=timeline&width=250 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ttrlive.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
facebook-api-version: v9.0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: syafwoPzfV67+Tr3L/4P8QtPPp40gWBUi3iIx7FEM6ru51MSMeGmuT5HGQ5L4urz5qiMM3oqyDXqZEFj9iik9A==
date: Thu, 24 Nov 2022 13:45:58 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iEpO4/yt/l/en_US/JGSM2yXjSKh.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 24 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEpO4/yt/l/en_US/JGSM2yXjSKh.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (42048)
Hash 3051900d03a657ddbbc9afa8ac11cdbd
557f26734897e137a6678f6d2a81672fc6a34ad2
038035ce01be57324c7e251c8834229b4910f27e3a042912fd7276947e5750df
GET /rsrc.php/v3iEpO4/yt/l/en_US/JGSM2yXjSKh.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 03:32:37 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-fb-rlafr: 0
content-md5: MFGQDQOmV927ya+orBHNvQ==
x-fb-debug: bYJtwnmxjXNN/5yVzx0xIPOgUd6Q8v8AOjtZxr+sBc5dyqixEfG4vUGd0PG5yIVM8WsyOnRU3pNCX33EeE2n6Q==
content-length: 23455
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:45:58 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yW/r/0aTHA2C1d6g.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 7.2 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yW/r/0aTHA2C1d6g.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (4057)
Hash 571700b5a1e8db88d5d79007a910b962
07102cc5f2b19f190830664e1ec6718efb33c011
ecccefedaf39e094079b22880aba987993015fbf1b70fd3c63bc57dc10685f11
GET /rsrc.php/v3/yW/r/0aTHA2C1d6g.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 06:04:49 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: VxcAtaHo24jV15AHqRC5Yg==
x-fb-debug: NT+M5oXO8pwkIMnEqGwapf+WVRORcDdI9fHky/3paBQ/wwz6CTFWuVr8ViFofTrTwDWDAUG1I14mocRnBu+xzA==
content-length: 7238
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:45:58 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
synchroscript.deliveryengine.adswizz.com/www/delivery/ajs.php?zoneid=8&withtext=1&cb=19671414639&charset=UTF-8&loc=https%3A//synchroscript.deliveryengine.adswizz.com/www/delivery/afr.php%3Fzoneid%3D9%26aw_0_req.gdpr%3Dfalse&referer=https%3A//tunein.com/
52.51.119.104200 1.4 kB URL HTTP/1.1 synchroscript.deliveryengine.adswizz.com/www/delivery/ajs.php?zoneid=8&withtext=1&cb=19671414639&charset=UTF-8&loc=https%3A//synchroscript.deliveryengine.adswizz.com/www/delivery/afr.php%3Fzoneid%3D9%26aw_0_req.gdpr%3Dfalse&referer=https%3A//tunein.com/
IP 52.51.119.104:0
File type ASCII text, with very long lines (1364)
Hash c395e763540e3df3500e6953b3e16428
e9d8efc1cc614f82e1fd06b02a12099ef5d34c61
9f6173565b583e2a0f61e062b82d72c38ee54979b86db00e9c89004b6be52806
GET /www/delivery/ajs.php?zoneid=8&withtext=1&cb=19671414639&charset=UTF-8&loc=https%3A//synchroscript.deliveryengine.adswizz.com/www/delivery/afr.php%3Fzoneid%3D9%26aw_0_req.gdpr%3Dfalse&referer=https%3A//tunein.com/ HTTP/1.1
Host: synchroscript.deliveryengine.adswizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synchroscript.deliveryengine.adswizz.com/www/delivery/afr.php?zoneid=9&aw_0_req.gdpr=false
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200
Accept-Charset: utf-8
Access-Control-Allow-Origin: *
Content-Type: application/x-javascript;charset=UTF-8
Date: Thu, 24 Nov 2022 13:45:58 GMT
Instance-id: i-08ec7c648553d1c0a
P3P: policyref="synchroscript.adswizz.com/docs/adswizz_adserver.htm", CP="CUR OUR NAV INT IND"
Set-Cookie: sessionId=caacd4ba6b68bdc99ed3d43bee5427a; Domain=.adswizz.com; Path=/
X-Adswizz-request-id: 53ad3980-6bfe-11ed-b20a-02a053b3d8d1
X-Application-Context: application:production
X-Clacks-Overhead: GNU Terry Pratchett
Content-Length: 1427
Connection: keep-alive
static.xx.fbcdn.net/rsrc.php/v3iLl54/yh/l/en_US/m3C9wUm7Rze.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 43 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iLl54/yh/l/en_US/m3C9wUm7Rze.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /rsrc.php/v3iLl54/yh/l/en_US/m3C9wUm7Rze.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 06:17:50 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: dzRxGBVHgZIJak35Crv6AQ==
x-fb-debug: NPG7cUx7io88tftsvvRij0CszNI0CPq7sIm2xUD4riF1w4KATain+ASLapi2Soo40inw5jzizwlumjWHHhA6UQ==
content-length: 8360
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:45:58 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 61f19a6a9bfb333a1afe7b297b6ccffa
518ab4bfb0a45c969669c64cbcd4802a865d820f
0902912fc4a71d7cfd4b26d60fd833de5c7b736d1563e1f83b48b3bfcce6ef4f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 171
Cache-Control: max-age=149052
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 13:45:59 GMT
Etag: "637f1829-1d7"
Expires: Sat, 26 Nov 2022 07:10:11 GMT
Last-Modified: Thu, 24 Nov 2022 07:07:21 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
synchroscript.deliveryengine.adswizz.com/www/delivery/lg.php?adData=targeted-publisher-info%3A2%3Bsynchroscript%5Ebilling%3Asynchroscript_A12%3B56%3BUSD%3B0.00000%3Bfalse%5EtraceId%3A53ad39d0-6bfe-11ed-8594-02a053b3d8d1%5EAS%2Fi%3Asynchroscript%3Bad_id%3A56%3Bzone_id%3A8%3Bview_key%3A1669297558825%3Bduration%3A0%3Baf%3A0.00000%3Btf%3A0.00000%3Bnp%3A0.00000%3Bgp%3A0.00000%3Bc%3AUSD%3Bbaf%3A0.00000%3Bbtf%3A0.00000%3Bbnp%3A0.00000%3Bbgp%3A0.00000%3Bbc%3AUSD%3Bat%3A1%3Bo_id%3A0%3Bc_id%3A22%5Epchain%3A52ded3ee71b94c84%3Asynchroscript&loc=https%3A%2F%2Fsynchroscript.deliveryengine.adswizz.com%2Fwww%2Fdelivery%2Fafr.php%3Fzoneid%3D9%26aw_0_req.gdpr%3Dfalse&listenerId=68df3430ac2b84811edf391e6f03daf0&sessionId=caacd4ba6b68bdc99ed3d43bee5427a&ip=%3A%3Affff%3A91.90.42.154&user_agent=Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0&aw_0_req.gdpr=false&cbs=5175685&charset=UTF-8&loc=https%3A%2F%2Fsynchroscript.deliveryengine.adswizz.com%2Fwww%2Fdelivery%2Fafr.php%3Fzoneid%3D9%26aw_0_req.gdpr%3Dfalse&withtext=1
52.51.119.104200 43 B URL HTTP/1.1 synchroscript.deliveryengine.adswizz.com/www/delivery/lg.php?adData=targeted-publisher-info%3A2%3Bsynchroscript%5Ebilling%3Asynchroscript_A12%3B56%3BUSD%3B0.00000%3Bfalse%5EtraceId%3A53ad39d0-6bfe-11ed-8594-02a053b3d8d1%5EAS%2Fi%3Asynchroscript%3Bad_id%3A56%3Bzone_id%3A8%3Bview_key%3A1669297558825%3Bduration%3A0%3Baf%3A0.00000%3Btf%3A0.00000%3Bnp%3A0.00000%3Bgp%3A0.00000%3Bc%3AUSD%3Bbaf%3A0.00000%3Bbtf%3A0.00000%3Bbnp%3A0.00000%3Bbgp%3A0.00000%3Bbc%3AUSD%3Bat%3A1%3Bo_id%3A0%3Bc_id%3A22%5Epchain%3A52ded3ee71b94c84%3Asynchroscript&loc=https%3A%2F%2Fsynchroscript.deliveryengine.adswizz.com%2Fwww%2Fdelivery%2Fafr.php%3Fzoneid%3D9%26aw_0_req.gdpr%3Dfalse&listenerId=68df3430ac2b84811edf391e6f03daf0&sessionId=caacd4ba6b68bdc99ed3d43bee5427a&ip=%3A%3Affff%3A91.90.42.154&user_agent=Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0&aw_0_req.gdpr=false&cbs=5175685&charset=UTF-8&loc=https%3A%2F%2Fsynchroscript.deliveryengine.adswizz.com%2Fwww%2Fdelivery%2Fafr.php%3Fzoneid%3D9%26aw_0_req.gdpr%3Dfalse&withtext=1
IP 52.51.119.104:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /www/delivery/lg.php?adData=targeted-publisher-info%3A2%3Bsynchroscript%5Ebilling%3Asynchroscript_A12%3B56%3BUSD%3B0.00000%3Bfalse%5EtraceId%3A53ad39d0-6bfe-11ed-8594-02a053b3d8d1%5EAS%2Fi%3Asynchroscript%3Bad_id%3A56%3Bzone_id%3A8%3Bview_key%3A1669297558825%3Bduration%3A0%3Baf%3A0.00000%3Btf%3A0.00000%3Bnp%3A0.00000%3Bgp%3A0.00000%3Bc%3AUSD%3Bbaf%3A0.00000%3Bbtf%3A0.00000%3Bbnp%3A0.00000%3Bbgp%3A0.00000%3Bbc%3AUSD%3Bat%3A1%3Bo_id%3A0%3Bc_id%3A22%5Epchain%3A52ded3ee71b94c84%3Asynchroscript&loc=https%3A%2F%2Fsynchroscript.deliveryengine.adswizz.com%2Fwww%2Fdelivery%2Fafr.php%3Fzoneid%3D9%26aw_0_req.gdpr%3Dfalse&listenerId=68df3430ac2b84811edf391e6f03daf0&sessionId=caacd4ba6b68bdc99ed3d43bee5427a&ip=%3A%3Affff%3A91.90.42.154&user_agent=Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0&aw_0_req.gdpr=false&cbs=5175685&charset=UTF-8&loc=https%3A%2F%2Fsynchroscript.deliveryengine.adswizz.com%2Fwww%2Fdelivery%2Fafr.php%3Fzoneid%3D9%26aw_0_req.gdpr%3Dfalse&withtext=1 HTTP/1.1
Host: synchroscript.deliveryengine.adswizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synchroscript.deliveryengine.adswizz.com/www/delivery/afr.php?zoneid=9&aw_0_req.gdpr=false
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200
Access-Control-Allow-Origin: *
Content-Type: image/gif
Date: Thu, 24 Nov 2022 13:45:58 GMT
Instance-id: i-0db688036e97e0400
Set-Cookie: sessionId=caacd4ba6b68bdc99ed3d43bee5427a; Domain=.adswizz.com; Path=/
Content-Length: 43
Connection: keep-alive
ad.turn.com/r/cs?pid=54
46.228.164.11302 Found 0 B IP 46.228.164.11:0
ASN #56396 Amobee EMEA Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/cs?pid=54 HTTP/1.1
Host: ad.turn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synchroscript.deliveryengine.adswizz.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
cache-control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache
set-cookie: uid=2470807037014276653; Domain=.turn.com; Expires=Tue, 23-May-2023 13:45:59 GMT; Path=/; Secure; SameSite=None
location: https://synchroscript.deliveryengine.adswizz.com/syncMe?partnerUserId=2470807037014276653&partnerDomain=turn.com&idType=cookie
content-length: 0
date: Thu, 24 Nov 2022 13:45:58 GMT
X-Firefox-Spdy: h2
synchroscript.deliveryengine.adswizz.com/syncMe?partnerUserId=2470807037014276653&partnerDomain=turn.com&idType=cookie
52.51.119.104200 0 B URL HTTP/1.1 synchroscript.deliveryengine.adswizz.com/syncMe?partnerUserId=2470807037014276653&partnerDomain=turn.com&idType=cookie
IP 52.51.119.104:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /syncMe?partnerUserId=2470807037014276653&partnerDomain=turn.com&idType=cookie HTTP/1.1
Host: synchroscript.deliveryengine.adswizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synchroscript.deliveryengine.adswizz.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Thu, 24 Nov 2022 13:45:58 GMT
Instance-id: i-006971f87d53ba212
Set-Cookie: OAID=68df3430ac2b84811edf391e6f03daf0; Domain=.adswizz.com; Expires=Sat, 24-Dec-2022 13:45:59 GMT; Path=/
X-Adswizz-request-id: 53e51260-6bfe-11ed-998e-0aa18bac0f4b
X-Application-Context: application:production
X-Clacks-Overhead: GNU Terry Pratchett
Content-Length: 0
Connection: keep-alive
synchroscript.deliveryengine.adswizz.com/www/delivery/lg.php?adData=targeted-publisher-info%3A2%3Bsynchroscript%5Ebilling%3Asynchroscript_A12%3B56%3BUSD%3B0.00000%3Bfalse%5EtraceId%3A539df7d8-6bfe-11ed-8ba4-02484d5c3cd7%5EAS%2Fi%3Asynchroscript%3Bad_id%3A56%3Bzone_id%3A8%3Bview_key%3A1669297558724%3Bduration%3A0%3Baf%3A0.00000%3Btf%3A0.00000%3Bnp%3A0.00000%3Bgp%3A0.00000%3Bc%3AUSD%3Bbaf%3A0.00000%3Bbtf%3A0.00000%3Bbnp%3A0.00000%3Bbgp%3A0.00000%3Bbc%3AUSD%3Bat%3A1%3Bo_id%3A0%3Bc_id%3A22%5Epchain%3A52ded3ee71b94c84%3Asynchroscript&loc=https%3A%2F%2Fsynchroscript.deliveryengine.adswizz.com%2Fwww%2Fdelivery%2Fafr.php%3Fzoneid%3D9%26aw_0_req.gdpr%3Dfalse&listenerId=68df3430ac2b84811edf391e6f03daf0&sessionId=8236ec9fdbe6b17ed7578eccc16166&ip=%3A%3Affff%3A91.90.42.154&user_agent=Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0&aw_0_req.gdpr=false&cbs=3635327&isDisableLogImpression=1&charset=UTF-8&loc=https%3A%2F%2Fsynchroscript.deliveryengine.adswizz.com%2Fwww%2Fdelivery%2Fafr.php%3Fzoneid%3D9%26aw_0_req.gdpr%3Dfalse&withtext=1
52.51.119.104200 43 B URL HTTP/1.1 synchroscript.deliveryengine.adswizz.com/www/delivery/lg.php?adData=targeted-publisher-info%3A2%3Bsynchroscript%5Ebilling%3Asynchroscript_A12%3B56%3BUSD%3B0.00000%3Bfalse%5EtraceId%3A539df7d8-6bfe-11ed-8ba4-02484d5c3cd7%5EAS%2Fi%3Asynchroscript%3Bad_id%3A56%3Bzone_id%3A8%3Bview_key%3A1669297558724%3Bduration%3A0%3Baf%3A0.00000%3Btf%3A0.00000%3Bnp%3A0.00000%3Bgp%3A0.00000%3Bc%3AUSD%3Bbaf%3A0.00000%3Bbtf%3A0.00000%3Bbnp%3A0.00000%3Bbgp%3A0.00000%3Bbc%3AUSD%3Bat%3A1%3Bo_id%3A0%3Bc_id%3A22%5Epchain%3A52ded3ee71b94c84%3Asynchroscript&loc=https%3A%2F%2Fsynchroscript.deliveryengine.adswizz.com%2Fwww%2Fdelivery%2Fafr.php%3Fzoneid%3D9%26aw_0_req.gdpr%3Dfalse&listenerId=68df3430ac2b84811edf391e6f03daf0&sessionId=8236ec9fdbe6b17ed7578eccc16166&ip=%3A%3Affff%3A91.90.42.154&user_agent=Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0&aw_0_req.gdpr=false&cbs=3635327&isDisableLogImpression=1&charset=UTF-8&loc=https%3A%2F%2Fsynchroscript.deliveryengine.adswizz.com%2Fwww%2Fdelivery%2Fafr.php%3Fzoneid%3D9%26aw_0_req.gdpr%3Dfalse&withtext=1
IP 52.51.119.104:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /www/delivery/lg.php?adData=targeted-publisher-info%3A2%3Bsynchroscript%5Ebilling%3Asynchroscript_A12%3B56%3BUSD%3B0.00000%3Bfalse%5EtraceId%3A539df7d8-6bfe-11ed-8ba4-02484d5c3cd7%5EAS%2Fi%3Asynchroscript%3Bad_id%3A56%3Bzone_id%3A8%3Bview_key%3A1669297558724%3Bduration%3A0%3Baf%3A0.00000%3Btf%3A0.00000%3Bnp%3A0.00000%3Bgp%3A0.00000%3Bc%3AUSD%3Bbaf%3A0.00000%3Bbtf%3A0.00000%3Bbnp%3A0.00000%3Bbgp%3A0.00000%3Bbc%3AUSD%3Bat%3A1%3Bo_id%3A0%3Bc_id%3A22%5Epchain%3A52ded3ee71b94c84%3Asynchroscript&loc=https%3A%2F%2Fsynchroscript.deliveryengine.adswizz.com%2Fwww%2Fdelivery%2Fafr.php%3Fzoneid%3D9%26aw_0_req.gdpr%3Dfalse&listenerId=68df3430ac2b84811edf391e6f03daf0&sessionId=8236ec9fdbe6b17ed7578eccc16166&ip=%3A%3Affff%3A91.90.42.154&user_agent=Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0&aw_0_req.gdpr=false&cbs=3635327&isDisableLogImpression=1&charset=UTF-8&loc=https%3A%2F%2Fsynchroscript.deliveryengine.adswizz.com%2Fwww%2Fdelivery%2Fafr.php%3Fzoneid%3D9%26aw_0_req.gdpr%3Dfalse&withtext=1 HTTP/1.1
Host: synchroscript.deliveryengine.adswizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synchroscript.deliveryengine.adswizz.com/www/delivery/afr.php?zoneid=9&aw_0_req.gdpr=false
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200
Access-Control-Allow-Origin: *
Content-Type: image/gif
Date: Thu, 24 Nov 2022 13:45:58 GMT
Instance-id: i-0a608586074ff1c60
Set-Cookie: sessionId=8236ec9fdbe6b17ed7578eccc16166; Domain=.adswizz.com; Path=/
Content-Length: 43
Connection: keep-alive
static.xx.fbcdn.net/rsrc.php/v3/yH/r/xgVgalBG80z.png
157.240.200.14200 OK 1.3 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yH/r/xgVgalBG80z.png
IP 157.240.200.14:0
File type PNG image data, 24 x 24, 8-bit colormap, non-interlaced\012- data
Hash ac1e1c4d6f16359701b059ed4e8246b4
ff19b30a3b3d8d1765c239b25dbc98cb3263786a
45444d590a67d30e8b2fde01bb6482f829383b64bf14a4b19b86e22fdc319fbb
GET /rsrc.php/v3/yH/r/xgVgalBG80z.png HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.xx.fbcdn.net/rsrc.php/v3/yr/l/0,cross/nWIU5H2unqI.css?_nc_x=Ij3Wp8lg5Kz
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: rB4cTW8WNZcBsFntToJGtA==
expires: Tue, 14 Nov 2023 06:15:41 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
x-fb-debug: tLV0iZ5x8wbibQGutXzZAbz2cNnsdjvdseCnR26ARY+2VvhwKXj2tGcRbdZTLPE0+uEcKNbjMo3XBV6YcajN4A==
content-length: 1315
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:45:59 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yY/l/0,cross/wjovvOdFhE4.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 3.4 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yY/l/0,cross/wjovvOdFhE4.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type assembler source, ASCII text, with very long lines (2642)
Hash 9997cc1cfe1fb36e7672a0c847cc32d2
b4020349331045ac954b275105722375d4a7cfe5
34c8b6ae21bcadd2dc9881ee934388a27247b125a5f70e48fa940a3bf4d29f7d
GET /rsrc.php/v3/yY/l/0,cross/wjovvOdFhE4.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 21 Nov 2023 17:07:35 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: mZfMHP4fs252cqDIR8wy0g==
x-fb-debug: 90FXHgIr7LgdyW54GqSMQoG0wQtO4tukUhljbWkixiA7PUmmFd7keSDZkbhXRtrj0+7oZzj5B5EzPT3e4ucIbA==
priority: u=2
content-length: 3411
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yJ/r/qnSc4RA_g8a.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 1.0 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yJ/r/qnSc4RA_g8a.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (866)
Hash 1860620e865f29d283c8ffe6fa0a52e6
96d773fa4f51e11d3ba07a4ee96cae87f1fd8a6b
b0db87bd4d691eaa04c729d02ea8c1be9db56bcd9d35fbf787ae06b6f4a297b8
GET /rsrc.php/v3/yJ/r/qnSc4RA_g8a.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 20 Nov 2023 17:50:35 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: GGBiDoZfKdKDyP/m+gpS5g==
x-fb-debug: enRBDeuIuOzHda+T6ZKAtlVW1powkVjpEGI4tmtPXoq+kOtT/XNVsZ/TBVMDBMGmdPvJZcnrT33NJSbOD2lBGA==
priority: u=3,i
content-length: 1022
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yq/r/6pd4iTcqYl_.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 5.0 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yq/r/6pd4iTcqYl_.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type C source, ASCII text, with very long lines (10494)
Hash 092b5c28d77f2d11674919ed34ea81a0
4c4f97066f7b733e29643697757417a0e2bee99d
1533d3e4e835168cd2456621fe6cf46db9255586262b7703b182155fa90e33d7
GET /rsrc.php/v3/yq/r/6pd4iTcqYl_.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 16 Nov 2023 23:29:02 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: CStcKNd/LRFnSRntNOqBoA==
x-fb-debug: yJCEkZ80cU8IKuvrUr4gjhyiwvMADyZ34gwf/JrGP0B3pcOOqAAdaCdnxsuzsj7MTwccOv3ZSXqhPbnGBk/0eQ==
priority: u=3,i
content-length: 5016
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/ya/l/0,cross/GRbco9cT0f5.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 3.9 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/ya/l/0,cross/GRbco9cT0f5.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (10262)
Hash 98847f9951c42b7209b2e763cab3e061
33f54d64538b69d67b80c04da93f0a9244e75eb8
f4c3dac3e783454aaccdf4b633ea64aab892de593e08c67463bb6fa66c1fe3bf
GET /rsrc.php/v3/ya/l/0,cross/GRbco9cT0f5.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 18 Nov 2023 18:56:10 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: mIR/mVHEK3IJsudjyrPgYQ==
x-fb-debug: 0k8fRQc9GlGhMkn/wiFo0CfUX/jeaikSBP5uS8FKw2Yjt12lb0b2fln4LIUDYbWOl/BVwADLcGC4rLSFJV+mkw==
content-length: 3927
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yc/l/0,cross/Ff7zec8XHEM.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 793 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yc/l/0,cross/Ff7zec8XHEM.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (1367)
Hash 3439ffb21ae20d578f779fa2b4fba882
79635bfb7d8437bf1b69f32fb53d571ef1f1bb67
b19be56e0a97722488d9549e8a3c4fbdfebf104cecad0316f42e8e6169db7db6
GET /rsrc.php/v3/yc/l/0,cross/Ff7zec8XHEM.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 22 Nov 2023 18:04:08 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: NDn/shriDVePd5+itPuogg==
x-fb-debug: aOI/Rqpjh6IjA1C/f0y9d2vwVPVevXcWCu3gvLtKBDai3tz/fuLlTQiz7HLziA+N9fUoUnMX1c5g9DshU03rYg==
priority: u=3,i
content-length: 793
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yf/l/0,cross/3vXED5UGv9l.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 937 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yf/l/0,cross/3vXED5UGv9l.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (1133)
Hash 776a1fef544962cae9214204c94d43ca
b3b9be9b9d17f685c435113e22a50bad1ddcf3a8
67e053a1f78a183889ff5733df79d6974c8f6862e78fdd5d8a209dea377e5c69
GET /rsrc.php/v3/yf/l/0,cross/3vXED5UGv9l.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 22 Nov 2023 18:22:39 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: d2of71RJYsrpIUIEyU1Dyg==
x-fb-debug: d2uYrRLYSdlMxOgm8gORlIocF4K5/uocnGyVfUfUD+4RVhck1KDWo32Nvi4toPvg1yp8ujPjFAWzH/ldEyWzIQ==
priority: u=3,i
content-length: 937
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yP/l/0,cross/Lc30SJd8cg0.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 8.4 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yP/l/0,cross/Lc30SJd8cg0.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (14181)
Hash 86f62f8bcc034e4c2427de1c137d785a
49008630a7a71a1c92d173b0325d6f49736a3fbc
1e88707caeacfec22228615e15e3099bffca8135e1297ffe082c10c09f45931c
GET /rsrc.php/v3/yP/l/0,cross/Lc30SJd8cg0.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 06:30:03 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: hvYvi8wDTkwkJ94cE314Wg==
x-fb-debug: +Ai44P3WLGMPjKnzD+XIQYOtEadM+TkQIIkvzetJF7Rc8sK4hAu7MaYRhh3hs7IW3E+ULdAnSw5u6qbwEbfEDQ==
priority: u=3,i
content-length: 8387
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y1/l/0,cross/z3GIzqm2WLC.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 2.0 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y1/l/0,cross/z3GIzqm2WLC.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (2909)
Hash 461d28765aada605cc9b56b9d4214935
2bba2dc36d6528921d5a25381126d9319a3e7eb4
0b03b374a3763090a2e5296d6fb701414f12e38d846eb26bf3a841b1875883df
GET /rsrc.php/v3/y1/l/0,cross/z3GIzqm2WLC.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 23 Nov 2023 18:43:05 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Rh0odlqtpgXMm1a51CFJNQ==
x-fb-debug: aXdJCc7JzjM4q6VAEBqlVH8NmSHLjR7bll2YLNuoQMtAm9Rd7E3a0rltVxR+o+U7zpHiCZKpZgWXJuO2/8I/Ag==
priority: u=2
content-length: 1993
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yB/r/lsNkUynfXlo.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 7.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yB/r/lsNkUynfXlo.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type C source, ASCII text, with very long lines (9258)
Hash f4e1cfd4a3ce4f9b1fe2cd9fe4bb2cb4
792fbf2a0ced88cebf3f7ff8450c4eef85f7731e
14c80102c127cea57d49a13228152b5b0e34720e6f8f43398e84da19dd5b4993
GET /rsrc.php/v3/yB/r/lsNkUynfXlo.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 06:34:42 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 9OHP1KPOT5sf4s2f5LsstA==
x-fb-debug: QpBVg5DF5f2VF2iPDogOFBs+opcL1S9quGrICu/vdRVVMFsfbeLz73PR9hhj9M+ci9dihrWYpk+7XH8Fy7O8Og==
priority: u=3,i
content-length: 7724
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yH/r/9ofdOTrimPg.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 48 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yH/r/9ofdOTrimPg.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type C source, ASCII text, with very long lines (5068)
Hash e5396e537f790a057e686148c619bff1
510736e3853128533f5a2ff8c39d95d0158f7e06
122a8b1ef657fe42bbbefb88f7145c49071418626de029c63c0fa00674339f63
GET /rsrc.php/v3/yH/r/9ofdOTrimPg.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 16 Nov 2023 23:58:42 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 5TluU395CgV+aGFIxhm/8Q==
x-fb-debug: oZ4fFwQTzmD0m045IPJ2S5ta5BWpwHWTSNi/sdrsWoD0c4eQpre7yDx5nJrVBFmMJdaYSXbm1opsYMQfqWMAsQ==
content-length: 48023
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yW/l/0,cross/NJiNNgzn9FZ.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 6.4 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yW/l/0,cross/NJiNNgzn9FZ.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (8976)
Hash f18f13f03eb9d52cf83c0aded64079c1
179fdcc3bd0003cfcce42e26e8660556a6dc7c8d
eb3454aa82bab984d96df0c169a4d2fcc20b98d50f2b96eef42452aa1f139d54
GET /rsrc.php/v3/yW/l/0,cross/NJiNNgzn9FZ.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 16 Nov 2023 23:36:15 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 8Y8T8D651Sz4PAre1kB5wQ==
x-fb-debug: 6mVzSiW1+qxy9Pd4znpiLSbKy93RfisZKQ+fZjUnG6018gzCui12zJ+Z6yJqMNBbqoij6nSriR7D/cVDCaR/6w==
priority: u=2
content-length: 6445
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yD/r/u-BBUt81dFY.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yD/r/u-BBUt81dFY.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (15336)
Hash 1a57684b1bbad1c3239fa33bfb7bf4c9
5e2fc164f520b2e61813da6103e1026ff078c779
4a6c3da8ef6e418a2a3eabb2c60512dc28ce3b5daff71e3c2d1fa93af50b75ba
GET /rsrc.php/v3/yD/r/u-BBUt81dFY.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 16 Nov 2023 23:59:17 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: GldoSxu60cMjn6M7+3v0yQ==
x-fb-debug: ddaPRBL+2G5b7FAwz4+y0/kjDW+z+AfkcCszusmpVHnFmd1YyULVV7FH0z+MPflFsAfzryYY7REoOw8uBrYmeA==
priority: u=3,i
content-length: 16255
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yQ/r/3wX2w-O_9zc.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 1.3 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yQ/r/3wX2w-O_9zc.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (1491)
Hash e0e53f8b49bf0ffb37c775b9c288a5c2
ade21104d506e6c9d4946e1afc9b88d80da7333c
5aa28d70ec74ee4b45e03fb453bb4adc23da65fbeb93c581411f0076b1444eb0
GET /rsrc.php/v3/yQ/r/3wX2w-O_9zc.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 05:41:53 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 4OU/i0m/D/s3x3W5woilwg==
x-fb-debug: GQYUhx/vnAkhYEJuTKdd+TPEhoXlxLFvlcSxuNJuFvOu74tHH3chlA9TtOM13V2U3HX7e2VpEbF41orIqlBM2Q==
priority: u=3,i
content-length: 1286
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yk/r/lNQKzORH_3o.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 7.6 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yk/r/lNQKzORH_3o.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (4643)
Hash 3d04fb0bfeec2de76f7a043b3c9d381d
42f49d096e57efaf7d7fe8332d40c4c72da97f7e
81b535cf6d8acd9c9841ae1fc8750ef9c4ee0892e11ed6edb30747f9a4b5d3d2
GET /rsrc.php/v3/yk/r/lNQKzORH_3o.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 13 Nov 2023 18:09:51 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: PQT7C/7sLedvegQ7PJ04HQ==
x-fb-debug: ww0Xi9Utahc6hfg2xq/bjaIJgBYj5x/K092WWy7BPcHdcUiu+01AuLYO0MegWkvHa7KEuokuXE+PYXbytro7RQ==
priority: u=3,i
content-length: 7564
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iEBX4/yg/l/en_US/L3rRYxmZ_M5.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 6.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEBX4/yg/l/en_US/L3rRYxmZ_M5.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (5962)
Hash ba1e18b79724944f946c55a1dc9d4682
f8298c56161c54c767a04a7d6536c62c5214d497
149e9937131b6e28ab9b176a7b5e52780b3bcf86befbdc1f9e6ca7157a756965
GET /rsrc.php/v3iEBX4/yg/l/en_US/L3rRYxmZ_M5.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 13 Nov 2023 06:21:23 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: uh4Yt5cklE+UbFWh3J1Ggg==
x-fb-debug: I4OI/YyAqyNT9urRbC22CjVh9TSnvPs6Wb/8xgAylwc09Lq1nTTWpBSA2FIoa7DDk9DHLBet8CP0COpP5zR/eA==
priority: u=3,i
content-length: 6746
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yw/r/5ojcO3E7m-a.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yw/r/5ojcO3E7m-a.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (12942)
Hash f7e3925ea26b6eb33b62c51db0e00d66
1e7a570210b8c0e5c95611eda42e884c7852007e
ca56f63b46f91234eb46316a57ec87f8e14d05a9bc1be653b44c5b7ba8b1a03f
GET /rsrc.php/v3/yw/r/5ojcO3E7m-a.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 17 Nov 2023 21:09:34 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 9+OSXqJrbrM7YsUdsOANZg==
x-fb-debug: Nx1Fn7dwavvTM0Y4BIEW2W9H43+VqR/Fa8BGWn2U0I8AMiphLQl6r4Gf+efZ4jFro11FHZ6K6hhxzf4Dj9iHag==
content-length: 15933
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yb/r/sDhruNkD0CO.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 62 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yb/r/sDhruNkD0CO.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (14626)
Hash 3544a16da7eb2f9b08e4224fe1fa60a8
5791d2a6c962df862cf48c84bb87e7181f5bc051
dd973be2306c686f9c160a479ab4ffecabac3d6de690e88dcd913da644db9157
GET /rsrc.php/v3/yb/r/sDhruNkD0CO.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 06:09:07 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: NUShbafrL5sI5CJP4fpgqA==
x-fb-debug: ccAMranMapSgakhnjQi06Tu/+XaTKXA8UNjGukAQ0f5IV1Mgp4aMTY59Vtc/7AgeXnulaf7MJ/VsrZX4Dfn4BQ==
priority: u=3,i
content-length: 61642
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/ya/r/3KzPNOpVZzD.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 12 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/ya/r/3KzPNOpVZzD.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (4438)
Hash 4b2c4d77aa6833b7164818d0ea15f824
b25fe455f764db4946f51f55752d5ae2f4dabc12
b145da434a895f58155bb07af3a73c8ee9c08f2b312bd3f88b64339e4120eda6
GET /rsrc.php/v3/ya/r/3KzPNOpVZzD.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 13 Nov 2023 04:32:29 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: SyxNd6poM7cWSBjQ6hX4JA==
x-fb-debug: GjPLxRmPrZsdVPUaaIiGygyL+4t0XlFmDnbl1vrE5tkr/vdbOWXXtSg7pfi3Ar34z7FtoyjLbZJwbh/XjFrMiQ==
priority: u=3,i
content-length: 11686
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yS/r/6YDcW8EHjbp.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 19 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yS/r/6YDcW8EHjbp.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (8606)
Hash eab4d9652bb152973a26936fc85f09f5
756a00cb73057d7aebf869b203663a635de8e74a
01cf1611e7f1431f2532cea3c2377f5b56ce369beb6ab0fdf7c0cb22d8a8fa3d
GET /rsrc.php/v3/yS/r/6YDcW8EHjbp.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 18 Nov 2023 18:11:59 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 6rTZZSuxUpc6JpNvyF8J9Q==
x-fb-debug: 6BP43DwxvmnnXp3/xPhUVF/rUq8GjhPjTykhFiLTAwXeEEce/8ohn5u4ETUwJ+afNJfIs3CFPNtOCn5Dj0vG8w==
priority: u=3,i
content-length: 19088
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3i1MJ4/yE/l/en_US/nbSflc58roT.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 1.5 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3i1MJ4/yE/l/en_US/nbSflc58roT.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (1016)
Hash db1a01c1df2a8769512b7a70feefc933
e5ab13b197e9060b4e5ec2bc4d7e49604de53eda
0633727e6527f78f1c8ab5e50dbf0354b7a6a4b70c5c7185e959568577ddb1cb
GET /rsrc.php/v3i1MJ4/yE/l/en_US/nbSflc58roT.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 21 Nov 2023 17:05:05 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 2xoBwd8qh2lRK3pw/u/JMw==
x-fb-debug: xYBA43cb5k80H9FtQLcnKHcbVLZ/RA/gkd28ymZFLTjXeJh2mCkOOg/N+s1VP+pGYejuqmLC/94xJPscTzFE+A==
content-length: 1514
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yT/r/gh2fO3WqO0-.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yT/r/gh2fO3WqO0-.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (9053)
Hash a6d53336015e838ac55ae5d45efa3999
dd9a8909edc108cc2d29490917ce735024ec0390
77c98a17d8dd21650dd58e52a2b81629f225daf7dff1d51c6758ab34553ff968
GET /rsrc.php/v3/yT/r/gh2fO3WqO0-.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 07:22:42 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: ptUzNgFeg4rFWuXUXvo5mQ==
x-fb-debug: tpxDD7hnycmL1Xf1zqs1rZgFeb0qP3CjfvtYRyrZaNkqE8+t7SQU5sObck1RgiUUOmi+3EX1HiKaRLIKpxAqzw==
priority: u=3,i
content-length: 16028
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/ya/r/AiAzujH6oUc.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 80 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/ya/r/AiAzujH6oUc.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (10835)
Hash 15d25b1018d0c01de8a058fd518e935d
1cd0c1a5afaef774a50a1e63c0ae7c460f95bdba
78a07f24ca01b9ca041236e7113cf7ecbf9f954253c72df077913e4ba29cebf1
GET /rsrc.php/v3/ya/r/AiAzujH6oUc.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 15 Nov 2023 03:56:49 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: FdJbEBjQwB3ooFj9UY6TXQ==
x-fb-debug: Nqc51oiCvwGmqqljMCiA8o/2uTEohmDwIX31+5X898fMWFTHqGW2vS9uGFT8hoa4yeRd1/6K5I+T+CbDaw0Ccg==
priority: u=3,i
content-length: 80522
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yg/r/jT3UWs8QOeD.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 4.9 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yg/r/jT3UWs8QOeD.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (3015)
Hash 7dc98d5e790eff74cb71ce5a556b28f5
25c59fa208b9b936dd9561a1b09997ba19018cd6
ef4e53539eeef378bd171608041339e295d8999a1d6933ac786fad6a73e4e755
GET /rsrc.php/v3/yg/r/jT3UWs8QOeD.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 23 Nov 2023 18:29:12 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: fcmNXnkO/3TLcc5aVWso9Q==
x-fb-debug: 3buidiBmzb1VnniRl96UcE34ONh8stV3es1Xm8RoHLpfcvC3FkRHyVg36Onh8C6gBw7XU6bObHtaYxRgYnS6Kw==
priority: u=1,i
content-length: 4917
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3i72N4/yV/l/en_US/jvl9EoJ_Grv.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 44 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3i72N4/yV/l/en_US/jvl9EoJ_Grv.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (11517)
Hash d9c2febc911394e3a53889a7553d7c06
3f6f5d6f85fa933cd2aced0d39de2df050061528
1761399376481153ff050d2270846bcc032f89f2bb909af7d031e1d6788a5bd5
GET /rsrc.php/v3i72N4/yV/l/en_US/jvl9EoJ_Grv.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 06:32:33 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 2cL+vJETlOOlOImnVT18Bg==
x-fb-debug: Kl8y7sUwSEN7w6fS8PBbTrRHf14OAxswHuJFLXU9Xc9FxVV0gH8FADy/is1BRfKX3iLR5THE2WSBVmN/7kspHA==
priority: u=3,i
content-length: 44072
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y5/r/Phl-HUfEGSW.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 232 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y5/r/Phl-HUfEGSW.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
Hash 9e9f7c79f2773bb18cf6ce4cdfa368ef
670d1cdcbdea9485d6a19b67e12f247a19cab3ec
bf3e32d807092fa60d6a1cecb6b4d80ce20f1ce7b715a34707184bd31016e189
GET /rsrc.php/v3/y5/r/Phl-HUfEGSW.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: np98efJ3O7GM9s5M36No7w==
expires: Sat, 18 Nov 2023 18:13:49 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
x-fb-debug: OTJO0QHdGXUQSkwcHymbqZtqKNwGuLcLhLYkg2ntQFlwjeXe3K8TvOpehxKFtbmvzm5HuB07PtqOvV3legsIsA==
priority: u=3,i
content-length: 232
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yr/r/8GBY6WcEO-y.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 15 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yr/r/8GBY6WcEO-y.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (56522)
Hash 9be66ca068832ec5c575ac6d6d9b6923
bdcbbf3bff75f58bcafb6e4179595f591dc99d32
b8ddffea993cce43fcfd1fd109cf6ccedd74a1774aef19b16bf982c5856c537f
GET /rsrc.php/v3/yr/r/8GBY6WcEO-y.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 03:57:52 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: m+ZsoGiDLsXFdaxtbZtpIw==
x-fb-debug: BDln0xwr3H7dJpfLI9elWHG5jeqCNo10TyGs3VT58SA2Vtzm1QmBo/AJn9LE/hKfnRN6w5VMRa7DqhS5BCjqlw==
content-length: 15217
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yo/r/2RKEmRrB3LB.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 41 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yo/r/2RKEmRrB3LB.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (5085)
Hash 54ac82a5d2817b7c7f2e28d574548e1c
ed777ed8330a30352d7230f81a30d34ad63fead8
c44785fc19aad821ee485fcd20bfcdea01ccc06e62270691b0228c6c6378f37c
GET /rsrc.php/v3/yo/r/2RKEmRrB3LB.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 16 Nov 2023 23:16:46 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: VKyCpdKBe3x/LijVdFSOHA==
x-fb-debug: kXHEfXInh0Xo1h8/xokT63RVGHoOCEhsjppDaERehww9s+WMpmAO7LH0em9BZrmzDThsYpxqfa12JdYLT4JNoA==
priority: u=3,i
content-length: 41076
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yR/r/-QN-nzq60hS.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 46 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yR/r/-QN-nzq60hS.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (1239)
Hash 647969c60c161b968196d05ff89a3ed7
10f9c8af1d12e82f5ed2f5fa23f5bf1d353b0b16
83231bc020d201666f70aae00b6c2dace46ebe5ba51c058ccb2df1834f32c902
GET /rsrc.php/v3/yR/r/-QN-nzq60hS.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 04:19:13 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: ZHlpxgwWG5aBltBf+Jo+1w==
x-fb-debug: 8DJr1b5g6ORK2TxjIBmKyBMR8HjMgpc2uBdVSEPaiXQNFKMEFIZ2ei9L2EL9UnnWVqfwOnRPfJrTvvZRSZ+TWA==
priority: u=3,i
content-length: 46273
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y0/r/amAVfcuqE_s.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 12 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y0/r/amAVfcuqE_s.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (27906)
Hash 581c8e7db81902c4b1a7e68b3fb769b9
f02a6eb814ad6ff5c90c5662d37ba1132a2043b3
f85eb2c44db44ac266555d963a998a030cdc4708312aa32f30594aedf7fd6cec
GET /rsrc.php/v3/y0/r/amAVfcuqE_s.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 18 Nov 2023 18:56:10 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: WByOfbgZAsSxp+aLP7dpuQ==
x-fb-debug: 2+k0MPu7riFutMJQg91AFW1ofRS8nNkPmI928OWnHC31bLhj/E72G8D0lTXzVK5WKCj+vMI5MjcLdt0+sJI76Q==
priority: u=3,i
content-length: 12522
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y5/r/PZefRCP4Yg_.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 12 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y5/r/PZefRCP4Yg_.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (7676)
Hash 63166ee9b30f0e7a9260e10ffa856583
5a1b9ca92ff10012ca06f1d976dcded69172e7de
81b2255525228cd5bf0d3b0f677a9fe07ceb4b73890392e5f69c9355c45b0fa4
GET /rsrc.php/v3/y5/r/PZefRCP4Yg_.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 18 Nov 2023 18:12:23 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: YxZu6bMPDnqSYOEP+oVlgw==
x-fb-debug: yDkmaJHa5/ZITE6n/Djd95W8v7/Iecsr3d34o2W7QHMIMhv4dEGI5ScLzFRMKT+RGWjsNAoqeBZGDMvYWYo3vg==
priority: u=3,i
content-length: 11818
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yH/r/MDNj1eUK5bV.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 10 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yH/r/MDNj1eUK5bV.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (18915)
Hash fa4ad18d1fc36fa88e3680c20e1d1a61
bde4d3abf73cbd341a347979ac28fad8b2835910
141314a07b3470d7bbbec5a711fb10382865d915a1450620c15de95501b96606
GET /rsrc.php/v3/yH/r/MDNj1eUK5bV.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 13 Nov 2023 04:02:35 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: +krRjR/Db6iONoDCDh0aYQ==
x-fb-debug: lGYYo8474lNJHVtrYzQWFvzNtVup4R20M2oYa/2uI0LJszkPSutvtdI9epKRWo3+X9tUfygp5zaCnmogyxhLLQ==
priority: u=3,i
content-length: 10426
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yF/r/3dl2SsY1JNJ.png
157.240.200.14200 OK 6.3 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yF/r/3dl2SsY1JNJ.png
IP 157.240.200.14:0
File type PNG image data, 81 x 378, 8-bit colormap, non-interlaced\012- data
Hash 2a20e3ba9e9a85929a6dfa870520a13d
f397977b86474eebd387a5635aa00af63c406b6d
2d6ced6860996067641161251dbe7809500fd0f666d41a18412f89053e7fd55a
GET /rsrc.php/v3/yF/r/3dl2SsY1JNJ.png HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.xx.fbcdn.net/rsrc.php/v3/yP/l/0,cross/Lc30SJd8cg0.css?_nc_x=Ij3Wp8lg5Kz
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: KiDjup6ahZKabfqHBSChPQ==
expires: Tue, 14 Nov 2023 06:12:05 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
x-fb-debug: 90U27EdTVTJz428akLsTUvsBck+x54+pc7FLPqTo1GM4RRtt3PpsXc3f3737mOs0lREcVS3lIBmOwzRIgQOCmA==
content-length: 6255
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:03 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yD/r/MKQzjVd1bVq.png
157.240.200.14200 OK 548 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yD/r/MKQzjVd1bVq.png
IP 157.240.200.14:0
File type PNG image data, 12 x 12, 8-bit colormap, non-interlaced\012- data
Hash 976d05eb572dff7402dab33e7868d1a3
6de347f502856325e90de1fd137382cc2f61dc75
83b7d2afe243941c2527b2d875836ad2cb864290690dd1b253389de3f7bc7da4
GET /rsrc.php/v3/yD/r/MKQzjVd1bVq.png HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.xx.fbcdn.net/rsrc.php/v3/yr/l/0,cross/nWIU5H2unqI.css?_nc_x=Ij3Wp8lg5Kz
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: l20F61ct/3QC2rM+eGjRow==
expires: Tue, 14 Nov 2023 06:21:31 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
x-fb-debug: j+csjbnGhwnMq1Z+QZJcVY5Gs6orx6lZ0HmAmWDJmX9iKWYUMu5Maq0JFIuLupBOGtITevrqna3ip/Lwf3VzRw==
content-length: 548
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:03 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yx/r/re1hPxQECWj.png
157.240.200.14200 OK 2.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yx/r/re1hPxQECWj.png
IP 157.240.200.14:0
File type PNG image data, 25 x 281, 8-bit colormap, non-interlaced\012- data
Hash 8bb456647dce20d407811b3ddcae0999
c4df3fb38a35fd018a2f0f7a7009fa9aacac40db
fcdaa4a9116d5ab88233e3349fea2428f2a4c46b3538900117cef9c8c1d31f0c
GET /rsrc.php/v3/yx/r/re1hPxQECWj.png HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.xx.fbcdn.net/rsrc.php/v3/yY/l/0,cross/wjovvOdFhE4.css?_nc_x=Ij3Wp8lg5Kz
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: i7RWZH3OINQHgRs93K4JmQ==
expires: Tue, 14 Nov 2023 06:13:01 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
x-fb-debug: ty6I6yUzBnCtUpPsL/223uIgFBo5Yb0RD+rqPgc2JHDstYItuOV3HL1IwhLWQk32zodp3hXO3w57Y+6Jn1b1XQ==
priority: u=3,i
content-length: 2674
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:03 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-arn2-2.xx.fbcdn.net/v/t39.30808-1/294158009_455375683260702_3037274924782606889_n.png?stp=c30.0.50.50a_cp0_dst-png_p50x50&_nc_cat=100&ccb=1-7&_nc_sid=dbb9e7&_nc_ohc=b27OyB655pEAX_lcidn&_nc_ht=scontent-arn2-2.xx&oh=00_AfBexe-Ib7qCH6q3bfsAWem48gOMoJhNKtB05FW_3sTcig&oe=6384CEB5
157.240.194.27200 OK 3.4 kB URL HTTP/2 scontent-arn2-2.xx.fbcdn.net/v/t39.30808-1/294158009_455375683260702_3037274924782606889_n.png?stp=c30.0.50.50a_cp0_dst-png_p50x50&_nc_cat=100&ccb=1-7&_nc_sid=dbb9e7&_nc_ohc=b27OyB655pEAX_lcidn&_nc_ht=scontent-arn2-2.xx&oh=00_AfBexe-Ib7qCH6q3bfsAWem48gOMoJhNKtB05FW_3sTcig&oe=6384CEB5
IP 157.240.194.27:0
File type PNG image data, 50 x 50, 8-bit/color RGB, non-interlaced\012- data
Hash 8b21082979e2680f7521b82d765b4b0a
f79c05417d30132a8857fa10b03113618ba650a2
f636c4bd68c45730ae304c1d0fecb1868db5d877c6392271390c8374347b220b
GET /v/t39.30808-1/294158009_455375683260702_3037274924782606889_n.png?stp=c30.0.50.50a_cp0_dst-png_p50x50&_nc_cat=100&ccb=1-7&_nc_sid=dbb9e7&_nc_ohc=b27OyB655pEAX_lcidn&_nc_ht=scontent-arn2-2.xx&oh=00_AfBexe-Ib7qCH6q3bfsAWem48gOMoJhNKtB05FW_3sTcig&oe=6384CEB5 HTTP/1.1
Host: scontent-arn2-2.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Fri, 22 Jul 2022 20:04:30 GMT
x-haystack-needlechecksum: 2647665560
x-needle-checksum: 2001660698
content-type: image/png
content-digest: adler32=2786884977
content-length: 3400
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
x-fb-trip-id: 1904183273
date: Thu, 24 Nov 2022 13:46:03 GMT
x-fb-edge-debug: gwTaBCinBeWEFlkAO0Xv8vJnuOXNzjAD73Y-MsEyN_kXwrxBTeH-mZtb85_XpulY9IrpV5b2bi8MispNz2lbiDM_c-FyCtH1M_tZKqCm0GY
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yP/r/UDmYwShqrj4.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 1.4 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yP/r/UDmYwShqrj4.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (2185)
Hash 885a1094c9d3cb9da43837818f62ebf2
84f3c4ab4ae594dc443db1f6b4219a53014963b0
af402ec4ed0f24779bfe081fb94bdae4a21a5a00e380b7ecc186a41251f0a3e9
GET /rsrc.php/v3/yP/r/UDmYwShqrj4.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 23 Nov 2023 18:15:24 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 4f0JBstvaak8Wo1joQO9Ww==
x-fb-debug: K4sMxFzRJ6uBKLjwtnYv3PHD7nca3WG371ClCTTGiQNIT69yg14hM933k2CEW8bCLgmkvwrzFTidKg0FGWhCPg==
priority: u=3,i
content-length: 6378
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-arn2-1.xx.fbcdn.net/v/t39.30808-6/275552851_5249865068377550_2739151992799444627_n.png?stp=dst-png_p168x128&_nc_cat=103&ccb=1-7&_nc_sid=dd9801&_nc_ohc=iuQdwaRSxKwAX9Sw2jr&_nc_ht=scontent-arn2-1.xx&oh=00_AfD840_VghFLqHoP-N4JxXM6gvhUJLK71vPydBNt3bYbhg&oe=63845120
31.13.72.12200 OK 21 kB URL HTTP/2 scontent-arn2-1.xx.fbcdn.net/v/t39.30808-6/275552851_5249865068377550_2739151992799444627_n.png?stp=dst-png_p168x128&_nc_cat=103&ccb=1-7&_nc_sid=dd9801&_nc_ohc=iuQdwaRSxKwAX9Sw2jr&_nc_ht=scontent-arn2-1.xx&oh=00_AfD840_VghFLqHoP-N4JxXM6gvhUJLK71vPydBNt3bYbhg&oe=63845120
IP 31.13.72.12:0
Hash 3f683b6ebee8585209c380ff9a6f9679
8bf0a3f58f9426eef64dd5631e5c2b7da2aa6ebb
addfc648ee11aba142666486ad6407bd8481c0022bb1670e20f6dd01d13b101d
GET /v/t39.30808-6/275552851_5249865068377550_2739151992799444627_n.png?stp=dst-png_p168x128&_nc_cat=103&ccb=1-7&_nc_sid=dd9801&_nc_ohc=iuQdwaRSxKwAX9Sw2jr&_nc_ht=scontent-arn2-1.xx&oh=00_AfD840_VghFLqHoP-N4JxXM6gvhUJLK71vPydBNt3bYbhg&oe=63845120 HTTP/1.1
Host: scontent-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Sat, 12 Mar 2022 05:21:23 GMT
accept-ranges: bytes
x-haystack-needlechecksum: 1523953413
x-needle-checksum: 591635952
content-type: image/png
content-length: 20510
content-digest: adler32=4184179570
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
x-fb-trip-id: 1904183273
date: Thu, 24 Nov 2022 13:46:03 GMT
x-fb-edge-debug: KakS3elS6gS83JT_1nCMIec-BPg0OJV4rG_2I4GlzYqKAXfZH2AnzhphngallTXquArhdr_41TIFfFr1mxhiY9_PGjCBmyk6OgeRd7Nggus
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-arn2-1.xx.fbcdn.net/v/t15.5256-10/272299653_442885727378278_5014138436939083005_n.jpg?stp=dst-jpg_p206x206&_nc_cat=107&ccb=1-7&_nc_sid=08861d&_nc_ohc=9uWO7VSWvTMAX_8n1FB&_nc_ht=scontent-arn2-1.xx&oh=00_AfABBh2k5oA79fvDAxLrJAeocXPPr2uitR58CQy678VKkw&oe=638497B0
31.13.72.12200 OK 19 kB URL HTTP/2 scontent-arn2-1.xx.fbcdn.net/v/t15.5256-10/272299653_442885727378278_5014138436939083005_n.jpg?stp=dst-jpg_p206x206&_nc_cat=107&ccb=1-7&_nc_sid=08861d&_nc_ohc=9uWO7VSWvTMAX_8n1FB&_nc_ht=scontent-arn2-1.xx&oh=00_AfABBh2k5oA79fvDAxLrJAeocXPPr2uitR58CQy678VKkw&oe=638497B0
IP 31.13.72.12:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 366x206, components 3\012- data
Hash eefb625c048f2211ea631ab937f1ce62
8c52e1a452d7091ae0acdae60710cffa22266b3d
134a7017f713ed37d29be41d8f495f4568a4ca7b54b4314026ec8cd4f49e3a3f
GET /v/t15.5256-10/272299653_442885727378278_5014138436939083005_n.jpg?stp=dst-jpg_p206x206&_nc_cat=107&ccb=1-7&_nc_sid=08861d&_nc_ohc=9uWO7VSWvTMAX_8n1FB&_nc_ht=scontent-arn2-1.xx&oh=00_AfABBh2k5oA79fvDAxLrJAeocXPPr2uitR58CQy678VKkw&oe=638497B0 HTTP/1.1
Host: scontent-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Sun, 23 Jan 2022 01:32:02 GMT
x-haystack-needlechecksum: 1447398812
x-needle-checksum: 3320239690
content-type: image/jpeg
content-length: 19332
content-digest: adler32=3286500908
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
x-fb-trip-id: 1904183273
date: Thu, 24 Nov 2022 13:46:03 GMT
x-fb-edge-debug: 5dhYZbx2dCE4zFPHd210jKktSAbJg8p4mxx7cgk0-SwwztR-lWBriUsf4ufQUdFCo9azC6LpC-CMyFKIGob9Xk0DszCfeki-mLt3NcYNeHI
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-arn2-2.xx.fbcdn.net/v/t15.5256-10/275616801_1168393127254981_795883572540772872_n.jpg?stp=dst-jpg_p206x206&_nc_cat=100&ccb=1-7&_nc_sid=08861d&_nc_ohc=vd5r2a1lZOkAX8GIBUO&_nc_ht=scontent-arn2-2.xx&oh=00_AfAa2iFp6XNckahMeJbqRyu1FJE8hXnsi6xs4jyuzB9Ekw&oe=6384E9CF
157.240.194.27200 OK 9.7 kB URL HTTP/2 scontent-arn2-2.xx.fbcdn.net/v/t15.5256-10/275616801_1168393127254981_795883572540772872_n.jpg?stp=dst-jpg_p206x206&_nc_cat=100&ccb=1-7&_nc_sid=08861d&_nc_ohc=vd5r2a1lZOkAX8GIBUO&_nc_ht=scontent-arn2-2.xx&oh=00_AfAa2iFp6XNckahMeJbqRyu1FJE8hXnsi6xs4jyuzB9Ekw&oe=6384E9CF
IP 157.240.194.27:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 366x206, components 3\012- data
Hash 8ca0a96cf3926afc2207ec48a266f882
77473a7ddcd4d3996bcea2f36ce7b1fc0ab4f086
73c5166e713288cebdf07f3b842cdb6a1f6988d3e2f8e09e08e4f74bdbad024b
GET /v/t15.5256-10/275616801_1168393127254981_795883572540772872_n.jpg?stp=dst-jpg_p206x206&_nc_cat=100&ccb=1-7&_nc_sid=08861d&_nc_ohc=vd5r2a1lZOkAX8GIBUO&_nc_ht=scontent-arn2-2.xx&oh=00_AfAa2iFp6XNckahMeJbqRyu1FJE8hXnsi6xs4jyuzB9Ekw&oe=6384E9CF HTTP/1.1
Host: scontent-arn2-2.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Sat, 12 Mar 2022 04:38:18 GMT
x-haystack-needlechecksum: 1447151731
x-needle-checksum: 3633859883
content-type: image/jpeg
content-length: 9724
content-digest: adler32=2529615069
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
x-fb-trip-id: 1904183273
date: Thu, 24 Nov 2022 13:46:03 GMT
x-fb-edge-debug: XSstMORTvqZgKJdN6yGXTsLfi26F1Nl8emETIvygnj7l0ia0eBQrCfoOkK6YVM81ChhSRP3wWE6C4GgkKDqijOxzCqEyWQQfMFWCHL95dDA
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-arn2-1.xx.fbcdn.net/v/t15.5256-10/271911880_950907955817838_2813205042744427258_n.jpg?stp=dst-jpg_p206x206&_nc_cat=107&ccb=1-7&_nc_sid=08861d&_nc_ohc=97KitIXfLokAX8fmaJG&_nc_ht=scontent-arn2-1.xx&oh=00_AfB8jYWp8xPbGlVnhFz3cayp8OiwtQrwt4ZC_vbG2wotyg&oe=63848947
31.13.72.12200 OK 20 kB URL HTTP/2 scontent-arn2-1.xx.fbcdn.net/v/t15.5256-10/271911880_950907955817838_2813205042744427258_n.jpg?stp=dst-jpg_p206x206&_nc_cat=107&ccb=1-7&_nc_sid=08861d&_nc_ohc=97KitIXfLokAX8fmaJG&_nc_ht=scontent-arn2-1.xx&oh=00_AfB8jYWp8xPbGlVnhFz3cayp8OiwtQrwt4ZC_vbG2wotyg&oe=63848947
IP 31.13.72.12:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 366x206, components 3\012- data
Hash 3e617804c42789b91c67d9177bd4ba17
8c8a1e6d0d39c0904a1a83e7c536b1ef63aee379
4f8f85d6fe7d29ee1e960553b6b6083e8cb869c422480db4d6cf41a0a0d4ce3a
GET /v/t15.5256-10/271911880_950907955817838_2813205042744427258_n.jpg?stp=dst-jpg_p206x206&_nc_cat=107&ccb=1-7&_nc_sid=08861d&_nc_ohc=97KitIXfLokAX8fmaJG&_nc_ht=scontent-arn2-1.xx&oh=00_AfB8jYWp8xPbGlVnhFz3cayp8OiwtQrwt4ZC_vbG2wotyg&oe=63848947 HTTP/1.1
Host: scontent-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Sun, 23 Jan 2022 00:51:47 GMT
x-haystack-needlechecksum: 2042445757
x-needle-checksum: 4154049489
content-type: image/jpeg
content-length: 19641
content-digest: adler32=3988574117
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
x-fb-trip-id: 1904183273
date: Thu, 24 Nov 2022 13:46:03 GMT
x-fb-edge-debug: mFVcDLG_QqZl6SIQ1N4jmP6k8nS3NX-bNyF44Gny4VDAsPgNqgLk0TdDJpW1ZIx2tY_QVWUAT-KPPOMTr8Uu5JzZMGqE0ZjTsqH6SCIzsis
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-arn2-1.xx.fbcdn.net/v/t15.5256-10/273364214_2951936198430581_6087646855157194478_n.jpg?stp=dst-jpg_p206x206&_nc_cat=107&ccb=1-7&_nc_sid=08861d&_nc_ohc=cmrPIaF0XaoAX9HbmNU&_nc_ht=scontent-arn2-1.xx&oh=00_AfDHSnof8-ymmnF0ZGlTUW5iOwQrV-nUOfP6Dk2j4JJC_Q&oe=6383EAEB
31.13.72.12200 OK 24 kB URL HTTP/2 scontent-arn2-1.xx.fbcdn.net/v/t15.5256-10/273364214_2951936198430581_6087646855157194478_n.jpg?stp=dst-jpg_p206x206&_nc_cat=107&ccb=1-7&_nc_sid=08861d&_nc_ohc=cmrPIaF0XaoAX9HbmNU&_nc_ht=scontent-arn2-1.xx&oh=00_AfDHSnof8-ymmnF0ZGlTUW5iOwQrV-nUOfP6Dk2j4JJC_Q&oe=6383EAEB
IP 31.13.72.12:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 366x206, components 3\012- data
Hash e00f21a6a349a715f3f5c55446de4b53
df54e6145308a97e58adbbc7d5eba33b9951072a
fa8154acf52532af9b0caf152395ada0a588048414253ee6ebe0d805354a72e6
GET /v/t15.5256-10/273364214_2951936198430581_6087646855157194478_n.jpg?stp=dst-jpg_p206x206&_nc_cat=107&ccb=1-7&_nc_sid=08861d&_nc_ohc=cmrPIaF0XaoAX9HbmNU&_nc_ht=scontent-arn2-1.xx&oh=00_AfDHSnof8-ymmnF0ZGlTUW5iOwQrV-nUOfP6Dk2j4JJC_Q&oe=6383EAEB HTTP/1.1
Host: scontent-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Sun, 06 Feb 2022 16:58:23 GMT
accept-ranges: bytes
x-haystack-needlechecksum: 2100486999
x-needle-checksum: 3516127797
content-type: image/jpeg
content-length: 23513
content-digest: adler32=2719584079
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
x-fb-trip-id: 1904183273
date: Thu, 24 Nov 2022 13:46:03 GMT
x-fb-edge-debug: EB1iAJ7Ru_4nZEEH8JW5PQL1o4A_LE6UJHMWKezrFcJgFWM9Qdql7qB4-hHCWCxX4Sx8F2umYDChKgPur6jXrZmdPsBvbKwiZfQkrRF6hOc
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3i59j4/yV/l/en_US/i8ghwFiMKf9.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 74 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3i59j4/yV/l/en_US/i8ghwFiMKf9.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (6633)
Hash 52d5a8b7ff17c92dbfecc321e47906c5
8f9457dc3404d8569ce47e2855ee8257992d59c4
dc85bfb54b75a1dfc30b93483aa87cae7859076bcc4aaf3569dd2a9c0df425ff
GET /rsrc.php/v3i59j4/yV/l/en_US/i8ghwFiMKf9.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 22 Nov 2023 07:31:04 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: oSWTHNnTl4YtS/5FGAeAYA==
x-fb-debug: 8dy8ZChkrwilJXRMn9JwIF/LpwL81KyQ5cJadXJbnlpIq8GnF4/EGMj7gMuNFimXCkny9z2rYrIfTAZo/sf8RA==
priority: u=3,i
content-length: 42629
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yM/r/W9GP3L2dY5D.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 8.5 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yM/r/W9GP3L2dY5D.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type Java source, ASCII text, with very long lines (13341)
Hash 5670d3129a361a3f15183dfa76c514eb
9e55216a68540dc3119470e87bc2df76bcdcf63f
8332fb0b8441ccf8369eaeb8332a27cf2cc4ccba9584df22341346c4c37cb569
GET /rsrc.php/v3/yM/r/W9GP3L2dY5D.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 21 Nov 2023 17:05:05 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: VnDTEpo2Gj8VGD36dsUU6w==
x-fb-debug: yFbS1kYm01FQr3f+WBMOfN0IVqAF5pqoof/JhAvfJn7u46RJGQpRefc2xWOoKP38ecMNgFlqmGWBvazaa5eaYQ==
content-length: 8511
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:03 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yv/l/0,cross/DG7U0M2cyIn.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 711 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yv/l/0,cross/DG7U0M2cyIn.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (967)
Hash ad02c7c15cbd2a0d1f8c23237321648e
9d551ad3749b64e23e304d70662adaaf4b15c394
e01ca7596c7ee939b33d03b84633dfe01e81620e1e0ddabf36a6f3bbb19c568d
GET /rsrc.php/v3/yv/l/0,cross/DG7U0M2cyIn.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 13 Nov 2023 06:34:44 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: rQLHwVy9Kg0fjCMjcyFkjg==
x-fb-debug: RwRF261E7nU3xqEeHGLCMvapJewsU+12NxZ0UFjmQhLcfnnSYKWY6G+TW0kYGluEjKZsYJ4+8mjkqX1tDdvERA==
content-length: 711
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:03 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iuWr4/yb/l/en_US/Lfq00GjIqJK.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 4.2 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iuWr4/yb/l/en_US/Lfq00GjIqJK.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type C source, ASCII text, with very long lines (8214)
Hash 7ffce3044ebd773a1a80c22d5cd2640e
620e9857a8f9a906ee60f6965e0db9fb66aa9fa1
e6591c33dc1b251e84cd2f6a738a89fe1cb9c6b4d376345d23944f17a2b65b18
GET /rsrc.php/v3iuWr4/yb/l/en_US/Lfq00GjIqJK.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 16 Nov 2023 21:50:46 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: f/zjBE69dzoagMItXNJkDg==
x-fb-debug: ENOWQDqXPrKeF20+RsO78lpdbtC1hila5tRpKCaYm2oZlVC1f8uvzAb0HDepEmsCMNtYJuFW9FiJT2CuxBY7uQ==
content-length: 4216
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:03 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yH/r/zpy5_vscige.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 11 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yH/r/zpy5_vscige.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (16965)
Hash 4ac004396e6cf74103b5198fb59480a9
1176289ef76b219518107c73a88b361f658c5d8a
6bd94c7b64877f237d06ac4a2f1dff9d30a6da34bd4fa01e74034b69ca8ac986
GET /rsrc.php/v3/yH/r/zpy5_vscige.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 22 Nov 2023 18:05:39 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: SsAEOW5s90EDtRmPtZSAqQ==
x-fb-debug: TEvhj1QHakhtWU0xt8TXS3ydA3YBVEgMPAtps0Wji/wVoePSL3AaQaQWdg+FuYXMsb7p2qm9l/+kgkjIa2ZXVQ==
priority: u=3,i
content-length: 11000
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:03 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yM/l/0,cross/u01NUXSZpE2.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 633 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yM/l/0,cross/u01NUXSZpE2.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (2094)
Hash a7089b895b40c82d84d1ed25d8012e82
a7354ae5d5610eca4a5c2083302a0e382daf8fec
57a89af2ee42d96acea305f650f33fdf1ea5b29f1b64f022bc9f08aecd6a8f4b
GET /rsrc.php/v3/yM/l/0,cross/u01NUXSZpE2.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 19 Nov 2023 18:45:55 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: pwibiVtAyC2E0e0l2AEugg==
x-fb-debug: B0MjfE4FO5bQWjph3SEOLday/1dU9vevwwe6oFDNdnBN/tdNlYzt6IA+9Neswxe+S7xtFoTB1rJHsqnGUIZbVQ==
content-length: 633
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:03 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yu/l/0,cross/qtuZ1qtqVEv.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 4.2 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yu/l/0,cross/qtuZ1qtqVEv.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (6018)
Hash 3685b81762d1f79becfefad62a2202f2
586c431ecc6f9318358869209d4c3d9de6ff4b04
4bb70f3a4c71c54532d6cb6ef310c617138af7f3963d71e73d2c7e74453690ed
GET /rsrc.php/v3/yu/l/0,cross/qtuZ1qtqVEv.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 22 Nov 2023 18:30:33 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: NoW4F2LR95vs/vrWKiIC8g==
x-fb-debug: l38Dqd8y8rOUwYRcQ5mtrPrOSoNDFv7xi6BbeCRQm3rM6Vnwie6sg+wEBz1RKbnfzDNfHdayfkfEKekreTP8Nw==
priority: u=2
content-length: 4241
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:03 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-1.xx.fbcdn.net/v/t42.1790-29/10000000_410314407451022_7287048339142262695_n.mp4?_nc_cat=104&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9oZF9mcmFnXzJfdmlkZW8ifQ%3D%3D&_nc_ohc=RRJdtH5vkkQAX-U5Cj3&_nc_ht=video-arn2-1.xx&oh=00_AfDn3cQYnqFHPM5vjz9f_vHFvLGaSqS3IDHLvewCoOZRUQ&oe=637F9235&bytestart=0&byteend=733
31.13.72.14200 OK 734 B URL HTTP/2 video-arn2-1.xx.fbcdn.net/v/t42.1790-29/10000000_410314407451022_7287048339142262695_n.mp4?_nc_cat=104&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9oZF9mcmFnXzJfdmlkZW8ifQ%3D%3D&_nc_ohc=RRJdtH5vkkQAX-U5Cj3&_nc_ht=video-arn2-1.xx&oh=00_AfDn3cQYnqFHPM5vjz9f_vHFvLGaSqS3IDHLvewCoOZRUQ&oe=637F9235&bytestart=0&byteend=733
IP 31.13.72.14:0
File type ISO Media, MP4 Base Media v5 \012- data
Hash 23569e964f25c90bc31a3227cbffc5d6
33ed6cdccf3fe5ef46be057bec8e0d9c7d387869
850ca315c778d5d2dcb1ecc059f1ab42c74740743a7aaa20b028f7f38ead4203
GET /v/t42.1790-29/10000000_410314407451022_7287048339142262695_n.mp4?_nc_cat=104&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9oZF9mcmFnXzJfdmlkZW8ifQ%3D%3D&_nc_ohc=RRJdtH5vkkQAX-U5Cj3&_nc_ht=video-arn2-1.xx&oh=00_AfDn3cQYnqFHPM5vjz9f_vHFvLGaSqS3IDHLvewCoOZRUQ&oe=637F9235&bytestart=0&byteend=733 HTTP/1.1
Host: video-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:206:HS_ERANGE_SUCCESS
last-modified: Sun, 23 Jan 2022 02:26:00 GMT
content-type: video/mp4
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-length: 734
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 24 Nov 2022 13:46:03 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
x-fb-edge-debug: 6yFk_Tv8TikJwmUy8zJVaE6smTdfTTqxUJ1pioAemyLnYw69LLXnRLrr7FfMWymNRpuZI0WN5QL7kOh5Ub3PNzeuDjbNFQnd7wxChgFkG6Q
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-1.xx.fbcdn.net/v/t42.1790-29/10000000_410314407451022_7287048339142262695_n.mp4?_nc_cat=104&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9oZF9mcmFnXzJfdmlkZW8ifQ%3D%3D&_nc_ohc=RRJdtH5vkkQAX-U5Cj3&_nc_ht=video-arn2-1.xx&oh=00_AfDn3cQYnqFHPM5vjz9f_vHFvLGaSqS3IDHLvewCoOZRUQ&oe=637F9235&bytestart=20194&byteend=39274
31.13.72.14200 OK 19 kB URL HTTP/2 video-arn2-1.xx.fbcdn.net/v/t42.1790-29/10000000_410314407451022_7287048339142262695_n.mp4?_nc_cat=104&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9oZF9mcmFnXzJfdmlkZW8ifQ%3D%3D&_nc_ohc=RRJdtH5vkkQAX-U5Cj3&_nc_ht=video-arn2-1.xx&oh=00_AfDn3cQYnqFHPM5vjz9f_vHFvLGaSqS3IDHLvewCoOZRUQ&oe=637F9235&bytestart=20194&byteend=39274
IP 31.13.72.14:0
Hash 22fdfe12bc9eab9fbebbf82601a2a192
333011ea1a7360c7e026236477ac8038ebdaf7cc
256d3b2968bec8aebf882e26e740b78c9dfd910d36e736e8cd58df7952972cae
GET /v/t42.1790-29/10000000_410314407451022_7287048339142262695_n.mp4?_nc_cat=104&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9oZF9mcmFnXzJfdmlkZW8ifQ%3D%3D&_nc_ohc=RRJdtH5vkkQAX-U5Cj3&_nc_ht=video-arn2-1.xx&oh=00_AfDn3cQYnqFHPM5vjz9f_vHFvLGaSqS3IDHLvewCoOZRUQ&oe=637F9235&bytestart=20194&byteend=39274 HTTP/1.1
Host: video-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:206:HS_ERANGE_SUCCESS
last-modified: Sun, 23 Jan 2022 02:26:00 GMT
content-type: video/mp4
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-length: 19081
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 24 Nov 2022 13:46:03 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yt/r/ag-Kz-WMvnK.png
157.240.200.14200 OK 330 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yt/r/ag-Kz-WMvnK.png
IP 157.240.200.14:0
File type PNG image data, 2 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 78015dd21035d3df926aad822b1c038b
a41bd785fd1c0c320d82c02e758acac5fc95a41c
45445cdb742ba713feadbb749a2328f90698cc052372bb736682afcb5e7c6345
GET /rsrc.php/v3/yt/r/ag-Kz-WMvnK.png HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.xx.fbcdn.net/rsrc.php/v3/yP/l/0,cross/Lc30SJd8cg0.css?_nc_x=Ij3Wp8lg5Kz
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: eAFd0hA109+Saq2CKxwDiw==
expires: Tue, 14 Nov 2023 06:22:01 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
x-fb-debug: FHTkJXPDzxOTn56gw8FoiYuwHTblHOm+NigTSD9TwDObj8emyYz0Pc6mvsmfqHyKvrYwrzXlTN6jixiZ1N9J2w==
content-length: 330
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:03 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3ihMy4/yn/l/en_US/zBf3dlrZupx.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 17 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3ihMy4/yn/l/en_US/zBf3dlrZupx.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
Hash 14772b13b0b7e7b4906f782861d9f59d
33527aeeef006a787f88ac299dc1e5d8c8a342c8
4598e542af21a4851e6d529a0441077c56e1edbcb2d4e05f2b33eb40f89c6b9d
GET /rsrc.php/v3ihMy4/yn/l/en_US/zBf3dlrZupx.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 22 Nov 2023 01:31:42 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: OZi1TDEpi2+rZ7DNelO0RQ==
x-fb-debug: b/WmQJsAEeNFBAWc7DONZl5reLIkRmOtJ3EIx3QgMbsCz71hJjNJ/ISCiNruSde2DF8hVdhQPvd7IbhuQ74sgA==
content-length: 347868
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:03 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-1.xx.fbcdn.net/v/t42.1790-29/10000000_410314407451022_7287048339142262695_n.mp4?_nc_cat=104&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9oZF9mcmFnXzJfdmlkZW8ifQ%3D%3D&_nc_ohc=RRJdtH5vkkQAX-U5Cj3&_nc_ht=video-arn2-1.xx&oh=00_AfDn3cQYnqFHPM5vjz9f_vHFvLGaSqS3IDHLvewCoOZRUQ&oe=637F9235&bytestart=734&byteend=20193
31.13.72.14200 OK 20 kB URL HTTP/2 video-arn2-1.xx.fbcdn.net/v/t42.1790-29/10000000_410314407451022_7287048339142262695_n.mp4?_nc_cat=104&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9oZF9mcmFnXzJfdmlkZW8ifQ%3D%3D&_nc_ohc=RRJdtH5vkkQAX-U5Cj3&_nc_ht=video-arn2-1.xx&oh=00_AfDn3cQYnqFHPM5vjz9f_vHFvLGaSqS3IDHLvewCoOZRUQ&oe=637F9235&bytestart=734&byteend=20193
IP 31.13.72.14:0
Hash 849474359b71912ea68d308f3e799680
590e3cab5fccea518422a73f896573cc3747deae
f301be23b8da6c9db6a5dd5cb5ef28899608e06c216ce651858fdd6bdf102df7
GET /v/t42.1790-29/10000000_410314407451022_7287048339142262695_n.mp4?_nc_cat=104&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9oZF9mcmFnXzJfdmlkZW8ifQ%3D%3D&_nc_ohc=RRJdtH5vkkQAX-U5Cj3&_nc_ht=video-arn2-1.xx&oh=00_AfDn3cQYnqFHPM5vjz9f_vHFvLGaSqS3IDHLvewCoOZRUQ&oe=637F9235&bytestart=734&byteend=20193 HTTP/1.1
Host: video-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:206:HS_ERANGE_SUCCESS
last-modified: Sun, 23 Jan 2022 02:26:00 GMT
content-type: video/mp4
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-length: 19460
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 24 Nov 2022 13:46:03 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-1.xx.fbcdn.net/v/t42.1790-29/10000000_680832143101337_4272487654408203913_n.mp4?_nc_cat=101&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=XGV4XqinkUAAX-6ADlR&_nc_ht=video-arn2-1.xx&oh=00_AfCfqLorD3r4T1AhB3aPYCRh7M3RYvTku2Z-rZ0WwoexBQ&oe=637F9D06&bytestart=0&byteend=693
31.13.72.14200 OK 694 B URL HTTP/2 video-arn2-1.xx.fbcdn.net/v/t42.1790-29/10000000_680832143101337_4272487654408203913_n.mp4?_nc_cat=101&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=XGV4XqinkUAAX-6ADlR&_nc_ht=video-arn2-1.xx&oh=00_AfCfqLorD3r4T1AhB3aPYCRh7M3RYvTku2Z-rZ0WwoexBQ&oe=637F9D06&bytestart=0&byteend=693
IP 31.13.72.14:0
File type ISO Media, MP4 Base Media v5 \012- data
Hash 655c719ef2974054a25284f4b1129329
907f75f4cd31960ec6632a5ffc8529bb44bf7fa8
05e739071298881af047e33e12b03cc2facafd38047d3c9ecbf2cb8e0dee3368
GET /v/t42.1790-29/10000000_680832143101337_4272487654408203913_n.mp4?_nc_cat=101&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=XGV4XqinkUAAX-6ADlR&_nc_ht=video-arn2-1.xx&oh=00_AfCfqLorD3r4T1AhB3aPYCRh7M3RYvTku2Z-rZ0WwoexBQ&oe=637F9D06&bytestart=0&byteend=693 HTTP/1.1
Host: video-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:206:HS_ERANGE_SUCCESS
last-modified: Sun, 06 Feb 2022 19:50:39 GMT
content-type: video/mp4
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-length: 694
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 24 Nov 2022 13:46:03 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-2.xx.fbcdn.net/v/t42.1790-29/10000000_1285958978581561_7207212170623681443_n.mp4?_nc_cat=108&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=BR7rviaM_4QAX_AaX4h&_nc_ht=video-arn2-2.xx&oh=00_AfBpo91eM6dGc2QIPxHUnknwNUGjp6Kp2fpck6AAC4wxfQ&oe=637F99D3&bytestart=14922&byteend=31252
157.240.194.21200 OK 16 kB URL HTTP/2 video-arn2-2.xx.fbcdn.net/v/t42.1790-29/10000000_1285958978581561_7207212170623681443_n.mp4?_nc_cat=108&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=BR7rviaM_4QAX_AaX4h&_nc_ht=video-arn2-2.xx&oh=00_AfBpo91eM6dGc2QIPxHUnknwNUGjp6Kp2fpck6AAC4wxfQ&oe=637F99D3&bytestart=14922&byteend=31252
IP 157.240.194.21:0
Hash 9e947645761ef2a00c974d0d7ad63f3f
51fbda6562ac3a293387c976522d1ba7a668306d
cbf8e664d68aebed489887bcdb916e131582338897c53a3ded481dae977c8979
GET /v/t42.1790-29/10000000_1285958978581561_7207212170623681443_n.mp4?_nc_cat=108&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=BR7rviaM_4QAX_AaX4h&_nc_ht=video-arn2-2.xx&oh=00_AfBpo91eM6dGc2QIPxHUnknwNUGjp6Kp2fpck6AAC4wxfQ&oe=637F99D3&bytestart=14922&byteend=31252 HTTP/1.1
Host: video-arn2-2.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:206:HS_ERANGE_SUCCESS
last-modified: Sun, 23 Jan 2022 01:30:42 GMT
content-type: video/mp4
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-length: 16331
accept-ranges: bytes
x-fb-trip-id: 2074150462
date: Thu, 24 Nov 2022 13:46:03 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
x-fb-edge-debug: UAWiA9XutULcr4yckAnRpMJE_ioz4v0up2gCpB_8lRi1QmjKF_IY5mG0taNG9mP9NuhYxp7HNs50axXshlUeqhV2iOLLfy9L7a_460l3_DE
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-1.xx.fbcdn.net/v/t42.1790-29/10000000_481479240546438_7442173326675493595_n.mp4?_nc_cat=104&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbXV0ZWRfc2hhcmVkX2F1ZGlvIn0%3D&_nc_ohc=IHHgdRNgGYsAX8P0USn&_nc_ht=video-arn2-1.xx&oh=00_AfCjbjuxrXQcsePnQSoxufccIn5ASMOdHublCzv0XQ_NHg&oe=637F94A1&bytestart=0&byteend=865
31.13.72.14200 OK 866 B URL HTTP/2 video-arn2-1.xx.fbcdn.net/v/t42.1790-29/10000000_481479240546438_7442173326675493595_n.mp4?_nc_cat=104&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbXV0ZWRfc2hhcmVkX2F1ZGlvIn0%3D&_nc_ohc=IHHgdRNgGYsAX8P0USn&_nc_ht=video-arn2-1.xx&oh=00_AfCjbjuxrXQcsePnQSoxufccIn5ASMOdHublCzv0XQ_NHg&oe=637F94A1&bytestart=0&byteend=865
IP 31.13.72.14:0
File type ISO Media, MP4 Base Media v5 \012- data
Hash d8da4ff10c09adbdba3ae948c23e4993
d0546c6c336c3c4a76690068977f13d08f215938
25641c02c13d6f5764b26dbcd63c171a09f0731bcdd51f51f97f907645ffd77a
GET /v/t42.1790-29/10000000_481479240546438_7442173326675493595_n.mp4?_nc_cat=104&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbXV0ZWRfc2hhcmVkX2F1ZGlvIn0%3D&_nc_ohc=IHHgdRNgGYsAX8P0USn&_nc_ht=video-arn2-1.xx&oh=00_AfCjbjuxrXQcsePnQSoxufccIn5ASMOdHublCzv0XQ_NHg&oe=637F94A1&bytestart=0&byteend=865 HTTP/1.1
Host: video-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:206:HS_ERANGE_SUCCESS
last-modified: Thu, 22 Sep 2022 19:55:49 GMT
content-type: video/mp4
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-length: 866
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 24 Nov 2022 13:46:03 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
x-fb-edge-debug: S-hxOUONMFT7ErMEBZZZuw1EclBP9iXbFw7Vo1sr6UybeylsmrG_M6Uac_TFR6VE8G2beNiDxLVK-LQbLCQFPPdOIGag67e7WHePA0iLL84
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-2.xx.fbcdn.net/v/t42.1790-29/10000000_1285958978581561_7207212170623681443_n.mp4?_nc_cat=108&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=BR7rviaM_4QAX_AaX4h&_nc_ht=video-arn2-2.xx&oh=00_AfBpo91eM6dGc2QIPxHUnknwNUGjp6Kp2fpck6AAC4wxfQ&oe=637F99D3&bytestart=0&byteend=693
157.240.194.21200 OK 694 B URL HTTP/2 video-arn2-2.xx.fbcdn.net/v/t42.1790-29/10000000_1285958978581561_7207212170623681443_n.mp4?_nc_cat=108&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=BR7rviaM_4QAX_AaX4h&_nc_ht=video-arn2-2.xx&oh=00_AfBpo91eM6dGc2QIPxHUnknwNUGjp6Kp2fpck6AAC4wxfQ&oe=637F99D3&bytestart=0&byteend=693
IP 157.240.194.21:0
File type ISO Media, MP4 Base Media v5 \012- data
Hash 8b45435543ca97eb7d8a06d02e288fe7
b1275adacb622fdcfeb0324838dad57a2c9ef380
faa2bb69d056587a745b0fdc646858f4b4eba415fd52e28c1913d42d9fbf576f
GET /v/t42.1790-29/10000000_1285958978581561_7207212170623681443_n.mp4?_nc_cat=108&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=BR7rviaM_4QAX_AaX4h&_nc_ht=video-arn2-2.xx&oh=00_AfBpo91eM6dGc2QIPxHUnknwNUGjp6Kp2fpck6AAC4wxfQ&oe=637F99D3&bytestart=0&byteend=693 HTTP/1.1
Host: video-arn2-2.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:206:HS_ERANGE_SUCCESS
last-modified: Sun, 23 Jan 2022 01:30:42 GMT
content-type: video/mp4
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-length: 694
accept-ranges: bytes
x-fb-trip-id: 2074150462
date: Thu, 24 Nov 2022 13:46:03 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-2.xx.fbcdn.net/v/t42.1790-29/10000000_1285958978581561_7207212170623681443_n.mp4?_nc_cat=108&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=BR7rviaM_4QAX_AaX4h&_nc_ht=video-arn2-2.xx&oh=00_AfBpo91eM6dGc2QIPxHUnknwNUGjp6Kp2fpck6AAC4wxfQ&oe=637F99D3&bytestart=694&byteend=14921
157.240.194.21200 OK 14 kB URL HTTP/2 video-arn2-2.xx.fbcdn.net/v/t42.1790-29/10000000_1285958978581561_7207212170623681443_n.mp4?_nc_cat=108&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=BR7rviaM_4QAX_AaX4h&_nc_ht=video-arn2-2.xx&oh=00_AfBpo91eM6dGc2QIPxHUnknwNUGjp6Kp2fpck6AAC4wxfQ&oe=637F99D3&bytestart=694&byteend=14921
IP 157.240.194.21:0
Hash 961804e73ab4a8ad79129f4ef1b06b0d
ebc3e69e04408f9beee7ffd065669cd175f5c1ea
5aa6b4f5843282ae70a65093f855eea6234b8009c3d1cdfa97d0e670725e3413
GET /v/t42.1790-29/10000000_1285958978581561_7207212170623681443_n.mp4?_nc_cat=108&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=BR7rviaM_4QAX_AaX4h&_nc_ht=video-arn2-2.xx&oh=00_AfBpo91eM6dGc2QIPxHUnknwNUGjp6Kp2fpck6AAC4wxfQ&oe=637F99D3&bytestart=694&byteend=14921 HTTP/1.1
Host: video-arn2-2.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:206:HS_ERANGE_SUCCESS
last-modified: Sun, 23 Jan 2022 01:30:42 GMT
content-type: video/mp4
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-length: 14228
accept-ranges: bytes
x-fb-trip-id: 2074150462
date: Thu, 24 Nov 2022 13:46:03 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-1.xx.fbcdn.net/v/t42.1790-29/10000000_229591452711603_4769296497429367773_n.mp4?_nc_cat=103&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=uV_xlko2H54AX_7An5m&_nc_ht=video-arn2-1.xx&oh=00_AfBX8BvML6k2m1g4yGqRS_XyT3dCVTa4rCjhv5L1VHJFFw&oe=637F9D49&bytestart=0&byteend=693
31.13.72.14200 OK 694 B URL HTTP/2 video-arn2-1.xx.fbcdn.net/v/t42.1790-29/10000000_229591452711603_4769296497429367773_n.mp4?_nc_cat=103&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=uV_xlko2H54AX_7An5m&_nc_ht=video-arn2-1.xx&oh=00_AfBX8BvML6k2m1g4yGqRS_XyT3dCVTa4rCjhv5L1VHJFFw&oe=637F9D49&bytestart=0&byteend=693
IP 31.13.72.14:0
File type ISO Media, MP4 Base Media v5 \012- data
Hash a9f54de0b11db8f66737e4680a4d6e9b
de0dbfe799b197ed9c86b4f2dda6bc62ccc0cd93
49665b5313a0da749a62d7995a406815572b862dbc6437d1119124ffb34e38eb
GET /v/t42.1790-29/10000000_229591452711603_4769296497429367773_n.mp4?_nc_cat=103&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=uV_xlko2H54AX_7An5m&_nc_ht=video-arn2-1.xx&oh=00_AfBX8BvML6k2m1g4yGqRS_XyT3dCVTa4rCjhv5L1VHJFFw&oe=637F9D49&bytestart=0&byteend=693 HTTP/1.1
Host: video-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:206:HS_ERANGE_SUCCESS
last-modified: Sun, 23 Jan 2022 02:25:48 GMT
content-type: video/mp4
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-length: 694
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 24 Nov 2022 13:46:03 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
x-fb-edge-debug: P_ry2_WxNOQINh9KCWAwiUdrQeYm-rvia3Zxb8IDuS30bgCEzr6Yv_f9mzZklV0kjWxylagbUkLLc1uvyyvbURHpTqb2-64D1mH8dLPhxXg
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-1.xx.fbcdn.net/v/t42.1790-29/10000000_229591452711603_4769296497429367773_n.mp4?_nc_cat=103&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=uV_xlko2H54AX_7An5m&_nc_ht=video-arn2-1.xx&oh=00_AfBX8BvML6k2m1g4yGqRS_XyT3dCVTa4rCjhv5L1VHJFFw&oe=637F9D49&bytestart=694&byteend=20105
31.13.72.14200 OK 19 kB URL HTTP/2 video-arn2-1.xx.fbcdn.net/v/t42.1790-29/10000000_229591452711603_4769296497429367773_n.mp4?_nc_cat=103&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=uV_xlko2H54AX_7An5m&_nc_ht=video-arn2-1.xx&oh=00_AfBX8BvML6k2m1g4yGqRS_XyT3dCVTa4rCjhv5L1VHJFFw&oe=637F9D49&bytestart=694&byteend=20105
IP 31.13.72.14:0
Hash 45ad57c1bede22e3a90a98ca498befff
082456d88904ba936f7ca5df3b793f9c3d0391a7
4530226140a83e77e2b6d08300aad583e17ab0343d89a03d67c1bf58eddea5e7
GET /v/t42.1790-29/10000000_229591452711603_4769296497429367773_n.mp4?_nc_cat=103&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=uV_xlko2H54AX_7An5m&_nc_ht=video-arn2-1.xx&oh=00_AfBX8BvML6k2m1g4yGqRS_XyT3dCVTa4rCjhv5L1VHJFFw&oe=637F9D49&bytestart=694&byteend=20105 HTTP/1.1
Host: video-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:206:HS_ERANGE_SUCCESS
last-modified: Sun, 23 Jan 2022 02:25:48 GMT
content-type: video/mp4
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-length: 19412
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 24 Nov 2022 13:46:03 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-1.xx.fbcdn.net/v/t42.1790-29/10000000_481479240546438_7442173326675493595_n.mp4?_nc_cat=104&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbXV0ZWRfc2hhcmVkX2F1ZGlvIn0%3D&_nc_ohc=IHHgdRNgGYsAX8P0USn&_nc_ht=video-arn2-1.xx&oh=00_AfCjbjuxrXQcsePnQSoxufccIn5ASMOdHublCzv0XQ_NHg&oe=637F94A1&bytestart=866&byteend=11169
31.13.72.14200 OK 10 kB URL HTTP/2 video-arn2-1.xx.fbcdn.net/v/t42.1790-29/10000000_481479240546438_7442173326675493595_n.mp4?_nc_cat=104&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbXV0ZWRfc2hhcmVkX2F1ZGlvIn0%3D&_nc_ohc=IHHgdRNgGYsAX8P0USn&_nc_ht=video-arn2-1.xx&oh=00_AfCjbjuxrXQcsePnQSoxufccIn5ASMOdHublCzv0XQ_NHg&oe=637F94A1&bytestart=866&byteend=11169
IP 31.13.72.14:0
Hash 79169efe74010ff1258723e55b1e892f
68abb8898d22b78b722541e8d6c8f072beaa2a7b
2e1d567db65e1639404731329a1c557b55d991d50b17cb4d356e8fea1e6e9e9d
GET /v/t42.1790-29/10000000_481479240546438_7442173326675493595_n.mp4?_nc_cat=104&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbXV0ZWRfc2hhcmVkX2F1ZGlvIn0%3D&_nc_ohc=IHHgdRNgGYsAX8P0USn&_nc_ht=video-arn2-1.xx&oh=00_AfCjbjuxrXQcsePnQSoxufccIn5ASMOdHublCzv0XQ_NHg&oe=637F94A1&bytestart=866&byteend=11169 HTTP/1.1
Host: video-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:206:HS_ERANGE_SUCCESS
last-modified: Thu, 22 Sep 2022 19:55:49 GMT
content-type: video/mp4
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-length: 10304
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 24 Nov 2022 13:46:03 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-1.xx.fbcdn.net/v/t42.1790-29/10000000_680832143101337_4272487654408203913_n.mp4?_nc_cat=101&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=XGV4XqinkUAAX-6ADlR&_nc_ht=video-arn2-1.xx&oh=00_AfCfqLorD3r4T1AhB3aPYCRh7M3RYvTku2Z-rZ0WwoexBQ&oe=637F9D06&bytestart=62370&byteend=78700
31.13.72.14200 OK 16 kB URL HTTP/2 video-arn2-1.xx.fbcdn.net/v/t42.1790-29/10000000_680832143101337_4272487654408203913_n.mp4?_nc_cat=101&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=XGV4XqinkUAAX-6ADlR&_nc_ht=video-arn2-1.xx&oh=00_AfCfqLorD3r4T1AhB3aPYCRh7M3RYvTku2Z-rZ0WwoexBQ&oe=637F9D06&bytestart=62370&byteend=78700
IP 31.13.72.14:0
Hash 433ed953bc39d7916c1966d216122c0f
677fa8b451e8ac949c2ffb26098e1e1a642e3d54
399f743f39f87e98f504b000397c98e2ccf629e2d3fdfb60aa28ff31836de546
GET /v/t42.1790-29/10000000_680832143101337_4272487654408203913_n.mp4?_nc_cat=101&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=XGV4XqinkUAAX-6ADlR&_nc_ht=video-arn2-1.xx&oh=00_AfCfqLorD3r4T1AhB3aPYCRh7M3RYvTku2Z-rZ0WwoexBQ&oe=637F9D06&bytestart=62370&byteend=78700 HTTP/1.1
Host: video-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:206:HS_ERANGE_SUCCESS
last-modified: Sun, 06 Feb 2022 19:50:39 GMT
content-type: video/mp4
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-length: 16331
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 24 Nov 2022 13:46:03 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-1.xx.fbcdn.net/v/t42.1790-29/10000000_481479240546438_7442173326675493595_n.mp4?_nc_cat=104&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbXV0ZWRfc2hhcmVkX2F1ZGlvIn0%3D&_nc_ohc=IHHgdRNgGYsAX8P0USn&_nc_ht=video-arn2-1.xx&oh=00_AfCjbjuxrXQcsePnQSoxufccIn5ASMOdHublCzv0XQ_NHg&oe=637F94A1&bytestart=11170&byteend=24253
31.13.72.14200 OK 13 kB URL HTTP/2 video-arn2-1.xx.fbcdn.net/v/t42.1790-29/10000000_481479240546438_7442173326675493595_n.mp4?_nc_cat=104&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbXV0ZWRfc2hhcmVkX2F1ZGlvIn0%3D&_nc_ohc=IHHgdRNgGYsAX8P0USn&_nc_ht=video-arn2-1.xx&oh=00_AfCjbjuxrXQcsePnQSoxufccIn5ASMOdHublCzv0XQ_NHg&oe=637F94A1&bytestart=11170&byteend=24253
IP 31.13.72.14:0
Hash b02d85e098b77b83ea0544cbd455838f
8a356a3d68158937b8db12445917fe374e444c68
3cd326d3a43e2ab12da332721df5f5d9e85f3e813b1779919dc05425f54e1799
GET /v/t42.1790-29/10000000_481479240546438_7442173326675493595_n.mp4?_nc_cat=104&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbXV0ZWRfc2hhcmVkX2F1ZGlvIn0%3D&_nc_ohc=IHHgdRNgGYsAX8P0USn&_nc_ht=video-arn2-1.xx&oh=00_AfCjbjuxrXQcsePnQSoxufccIn5ASMOdHublCzv0XQ_NHg&oe=637F94A1&bytestart=11170&byteend=24253 HTTP/1.1
Host: video-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:206:HS_ERANGE_SUCCESS
last-modified: Thu, 22 Sep 2022 19:55:49 GMT
content-type: video/mp4
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-length: 13084
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 24 Nov 2022 13:46:03 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
x-fb-edge-debug: kRy3kyzVeUoh9Irsojb5EQKyg1NZZfz-ZkGKqBZ8aTfNougOD0agrTqtM6xRY6FBAuVqXVEZfJZrXOu2kWwprJ3eu5fYE8KvQyf7ulH_eBk
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-1.xx.fbcdn.net/o1/v/t29/f1/m49/1331647893975901.mp4?efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfdmlkZW8ifQ&_nc_ht=video-arn2-1.xx.fbcdn.net&_nc_cat=101&strext=1&ccb=9-4&oh=00_AfC6Fz2HRB8XT0y7AYMPwHL84vgBx-QLoMS_e-URWp-vFg&oe=6380ECA2&_nc_sid=57d5c5&bytestart=0&byteend=733
31.13.72.14200 OK 734 B URL HTTP/2 video-arn2-1.xx.fbcdn.net/o1/v/t29/f1/m49/1331647893975901.mp4?efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfdmlkZW8ifQ&_nc_ht=video-arn2-1.xx.fbcdn.net&_nc_cat=101&strext=1&ccb=9-4&oh=00_AfC6Fz2HRB8XT0y7AYMPwHL84vgBx-QLoMS_e-URWp-vFg&oe=6380ECA2&_nc_sid=57d5c5&bytestart=0&byteend=733
IP 31.13.72.14:0
File type ISO Media, MP4 Base Media v5 \012- data
Hash 072fa1c1c91c836e5f670a2a60337a93
771b6f0c3193419abd8d9d55380e467b93dbad19
381a15387be8faf742fc94ee8512a45ea3a6e68ef32c9710e2429429b09e50bf
GET /o1/v/t29/f1/m49/1331647893975901.mp4?efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfdmlkZW8ifQ&_nc_ht=video-arn2-1.xx.fbcdn.net&_nc_cat=101&strext=1&ccb=9-4&oh=00_AfC6Fz2HRB8XT0y7AYMPwHL84vgBx-QLoMS_e-URWp-vFg&oe=6380ECA2&_nc_sid=57d5c5&bytestart=0&byteend=733 HTTP/1.1
Host: video-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: video/mp4
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-digest: adler32=2799295471
content-length: 734
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 24 Nov 2022 13:46:03 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-1.xx.fbcdn.net/o1/v/t29/f1/m49/1331647893975901.mp4?efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfdmlkZW8ifQ&_nc_ht=video-arn2-1.xx.fbcdn.net&_nc_cat=101&strext=1&ccb=9-4&oh=00_AfC6Fz2HRB8XT0y7AYMPwHL84vgBx-QLoMS_e-URWp-vFg&oe=6380ECA2&_nc_sid=57d5c5&bytestart=734&byteend=62565
31.13.72.14200 OK 62 kB URL HTTP/2 video-arn2-1.xx.fbcdn.net/o1/v/t29/f1/m49/1331647893975901.mp4?efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfdmlkZW8ifQ&_nc_ht=video-arn2-1.xx.fbcdn.net&_nc_cat=101&strext=1&ccb=9-4&oh=00_AfC6Fz2HRB8XT0y7AYMPwHL84vgBx-QLoMS_e-URWp-vFg&oe=6380ECA2&_nc_sid=57d5c5&bytestart=734&byteend=62565
IP 31.13.72.14:0
Hash 768ee54c2899d221241614ea3f36b275
62123d47db20c27fb3012c9fcaa664644e46f577
fd93fc38194209fd74107b51558069019f1fcef3304271ad3a1c9dcfa937dfd8
GET /o1/v/t29/f1/m49/1331647893975901.mp4?efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfdmlkZW8ifQ&_nc_ht=video-arn2-1.xx.fbcdn.net&_nc_cat=101&strext=1&ccb=9-4&oh=00_AfC6Fz2HRB8XT0y7AYMPwHL84vgBx-QLoMS_e-URWp-vFg&oe=6380ECA2&_nc_sid=57d5c5&bytestart=734&byteend=62565 HTTP/1.1
Host: video-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: video/mp4
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-length: 61832
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 24 Nov 2022 13:46:03 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-1.xx.fbcdn.net/o1/v/t29/f1/m49/643571653579278.mp4?efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfdmlkZW8ifQ&_nc_ht=video-arn2-1.xx.fbcdn.net&_nc_cat=105&strext=1&ccb=9-4&oh=00_AfAXKDoJYLT7bFg8L56oxqSYz21UL1nLvA_dWtz5d8tb5A&oe=6380D7C9&_nc_sid=57d5c5&bytestart=0&byteend=733
31.13.72.14200 OK 734 B URL HTTP/2 video-arn2-1.xx.fbcdn.net/o1/v/t29/f1/m49/643571653579278.mp4?efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfdmlkZW8ifQ&_nc_ht=video-arn2-1.xx.fbcdn.net&_nc_cat=105&strext=1&ccb=9-4&oh=00_AfAXKDoJYLT7bFg8L56oxqSYz21UL1nLvA_dWtz5d8tb5A&oe=6380D7C9&_nc_sid=57d5c5&bytestart=0&byteend=733
IP 31.13.72.14:0
File type ISO Media, MP4 Base Media v5 \012- data
Hash 199dcc07785b7817e7ad78b9ded2f213
125b0a8de660494da8f784d50138c1c04f3d06a1
af930ed827cfe717b542b61b2f5994186bf88e593f042cc058445769b2a56bea
GET /o1/v/t29/f1/m49/643571653579278.mp4?efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfdmlkZW8ifQ&_nc_ht=video-arn2-1.xx.fbcdn.net&_nc_cat=105&strext=1&ccb=9-4&oh=00_AfAXKDoJYLT7bFg8L56oxqSYz21UL1nLvA_dWtz5d8tb5A&oe=6380D7C9&_nc_sid=57d5c5&bytestart=0&byteend=733 HTTP/1.1
Host: video-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: video/mp4
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-digest: adler32=2517466482
content-length: 734
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 24 Nov 2022 13:46:03 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-1.xx.fbcdn.net/o1/v/t29/f1/m49/643571653579278.mp4?efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfdmlkZW8ifQ&_nc_ht=video-arn2-1.xx.fbcdn.net&_nc_cat=105&strext=1&ccb=9-4&oh=00_AfAXKDoJYLT7bFg8L56oxqSYz21UL1nLvA_dWtz5d8tb5A&oe=6380D7C9&_nc_sid=57d5c5&bytestart=734&byteend=14997
31.13.72.14200 OK 14 kB URL HTTP/2 video-arn2-1.xx.fbcdn.net/o1/v/t29/f1/m49/643571653579278.mp4?efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfdmlkZW8ifQ&_nc_ht=video-arn2-1.xx.fbcdn.net&_nc_cat=105&strext=1&ccb=9-4&oh=00_AfAXKDoJYLT7bFg8L56oxqSYz21UL1nLvA_dWtz5d8tb5A&oe=6380D7C9&_nc_sid=57d5c5&bytestart=734&byteend=14997
IP 31.13.72.14:0
Hash 7897a3bda8b30ae282de294c21262741
dca9febe9b0dd50f7e64fc732d4c21ca2c4f1797
c37f86acb4bd6a7d8c0eb5865b37354cd6f50fc0bcab3fa1d4bbed3e14e59254
GET /o1/v/t29/f1/m49/643571653579278.mp4?efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfdmlkZW8ifQ&_nc_ht=video-arn2-1.xx.fbcdn.net&_nc_cat=105&strext=1&ccb=9-4&oh=00_AfAXKDoJYLT7bFg8L56oxqSYz21UL1nLvA_dWtz5d8tb5A&oe=6380D7C9&_nc_sid=57d5c5&bytestart=734&byteend=14997 HTTP/1.1
Host: video-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: video/mp4
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-length: 14264
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 24 Nov 2022 13:46:03 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yj/r/PkV8_5hF_8w.png
157.240.200.14200 OK 1.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yj/r/PkV8_5hF_8w.png
IP 157.240.200.14:0
File type PNG image data, 21 x 131, 8-bit/color RGBA, non-interlaced\012- data
Hash 5de0f70bf3dcdc1fd7bab13739da5fcc
2764b75ee66ec1db3c9a930c77adbcea36b6d6e1
e3260cf1bffdd623bbcca489370b3e8ecfa08aca876bb6d8fa5379bb9543686b
GET /rsrc.php/v3/yj/r/PkV8_5hF_8w.png HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.xx.fbcdn.net/rsrc.php/v3/yv/l/0,cross/DG7U0M2cyIn.css?_nc_x=Ij3Wp8lg5Kz
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: XeD3C/Pc3B/XurE3OdpfzA==
expires: Tue, 14 Nov 2023 03:54:57 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
x-fb-debug: 29B8/cxm+rOOOJcTILYZR0LJ2xHGOw5Y/VKeTxwd3eWMSQd2k/SM11xH+xttMmX1ODfTEQjiSga1JedMLWzQ4w==
priority: u=3,i
content-length: 1706
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:04 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-1.xx.fbcdn.net/o1/v/t29/f1/m49/3106550309557168.mp4?efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfdmlkZW8ifQ&_nc_ht=video-arn2-1.xx.fbcdn.net&_nc_cat=107&strext=1&ccb=9-4&oh=00_AfC40pbhgn-1Baf0Zx0EOTNywDBcOwoPtjEnSLZyaRKVrg&oe=638107E8&_nc_sid=57d5c5&bytestart=0&byteend=733
31.13.72.14200 OK 734 B URL HTTP/2 video-arn2-1.xx.fbcdn.net/o1/v/t29/f1/m49/3106550309557168.mp4?efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfdmlkZW8ifQ&_nc_ht=video-arn2-1.xx.fbcdn.net&_nc_cat=107&strext=1&ccb=9-4&oh=00_AfC40pbhgn-1Baf0Zx0EOTNywDBcOwoPtjEnSLZyaRKVrg&oe=638107E8&_nc_sid=57d5c5&bytestart=0&byteend=733
IP 31.13.72.14:0
File type ISO Media, MP4 Base Media v5 \012- data
Hash 4b3e10feef11e9dafd7fc90d0ba55364
d76d3b1bfd5d2bdcb36da063307a872a45697603
11620b0754d2a7f8e8d1ac562a36709ca6f366671804f7836722c2481261f6aa
GET /o1/v/t29/f1/m49/3106550309557168.mp4?efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfdmlkZW8ifQ&_nc_ht=video-arn2-1.xx.fbcdn.net&_nc_cat=107&strext=1&ccb=9-4&oh=00_AfC40pbhgn-1Baf0Zx0EOTNywDBcOwoPtjEnSLZyaRKVrg&oe=638107E8&_nc_sid=57d5c5&bytestart=0&byteend=733 HTTP/1.1
Host: video-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: video/mp4
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-digest: adler32=1797377186
content-length: 734
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 24 Nov 2022 13:46:04 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-1.xx.fbcdn.net/o1/v/t29/f1/m49/3106550309557168.mp4?efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfdmlkZW8ifQ&_nc_ht=video-arn2-1.xx.fbcdn.net&_nc_cat=107&strext=1&ccb=9-4&oh=00_AfC40pbhgn-1Baf0Zx0EOTNywDBcOwoPtjEnSLZyaRKVrg&oe=638107E8&_nc_sid=57d5c5&bytestart=734&byteend=11037
31.13.72.14200 OK 10 kB URL HTTP/2 video-arn2-1.xx.fbcdn.net/o1/v/t29/f1/m49/3106550309557168.mp4?efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfdmlkZW8ifQ&_nc_ht=video-arn2-1.xx.fbcdn.net&_nc_cat=107&strext=1&ccb=9-4&oh=00_AfC40pbhgn-1Baf0Zx0EOTNywDBcOwoPtjEnSLZyaRKVrg&oe=638107E8&_nc_sid=57d5c5&bytestart=734&byteend=11037
IP 31.13.72.14:0
Hash 56643c2553cbb4d66577918d90f3513a
81b78210e4efaf927a79f61c7eaf1eff595fcdef
8ec7417d6f8131e44ac2f4b2cbb744ea341da5e170379cb2562bc43e4cedfd7f
GET /o1/v/t29/f1/m49/3106550309557168.mp4?efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfdmlkZW8ifQ&_nc_ht=video-arn2-1.xx.fbcdn.net&_nc_cat=107&strext=1&ccb=9-4&oh=00_AfC40pbhgn-1Baf0Zx0EOTNywDBcOwoPtjEnSLZyaRKVrg&oe=638107E8&_nc_sid=57d5c5&bytestart=734&byteend=11037 HTTP/1.1
Host: video-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: video/mp4
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-length: 10304
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 24 Nov 2022 13:46:04 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-1.xx.fbcdn.net/o1/v/t29/f1/m49/3106550309557168.mp4?efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfdmlkZW8ifQ&_nc_ht=video-arn2-1.xx.fbcdn.net&_nc_cat=107&strext=1&ccb=9-4&oh=00_AfC40pbhgn-1Baf0Zx0EOTNywDBcOwoPtjEnSLZyaRKVrg&oe=638107E8&_nc_sid=57d5c5&bytestart=11038&byteend=24875
31.13.72.14200 OK 14 kB URL HTTP/2 video-arn2-1.xx.fbcdn.net/o1/v/t29/f1/m49/3106550309557168.mp4?efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfdmlkZW8ifQ&_nc_ht=video-arn2-1.xx.fbcdn.net&_nc_cat=107&strext=1&ccb=9-4&oh=00_AfC40pbhgn-1Baf0Zx0EOTNywDBcOwoPtjEnSLZyaRKVrg&oe=638107E8&_nc_sid=57d5c5&bytestart=11038&byteend=24875
IP 31.13.72.14:0
Hash 6d8452713b6154ab60911b60f8b6b8cc
864704800a2924f2362157a0b89c54d7964085a9
a31234be6f6b50ae8752d96818a32e0db1af571d733967ab87c03960006b260a
GET /o1/v/t29/f1/m49/3106550309557168.mp4?efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfdmlkZW8ifQ&_nc_ht=video-arn2-1.xx.fbcdn.net&_nc_cat=107&strext=1&ccb=9-4&oh=00_AfC40pbhgn-1Baf0Zx0EOTNywDBcOwoPtjEnSLZyaRKVrg&oe=638107E8&_nc_sid=57d5c5&bytestart=11038&byteend=24875 HTTP/1.1
Host: video-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: video/mp4
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-digest: adler32=1797377186
content-length: 13838
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 24 Nov 2022 13:46:04 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-1.xx.fbcdn.net/o1/v/t29/f1/m49/643571653579278.mp4?efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfdmlkZW8ifQ&_nc_ht=video-arn2-1.xx.fbcdn.net&_nc_cat=105&strext=1&ccb=9-4&oh=00_AfAXKDoJYLT7bFg8L56oxqSYz21UL1nLvA_dWtz5d8tb5A&oe=6380D7C9&_nc_sid=57d5c5&bytestart=14998&byteend=54121
31.13.72.14200 OK 39 kB URL HTTP/2 video-arn2-1.xx.fbcdn.net/o1/v/t29/f1/m49/643571653579278.mp4?efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfdmlkZW8ifQ&_nc_ht=video-arn2-1.xx.fbcdn.net&_nc_cat=105&strext=1&ccb=9-4&oh=00_AfAXKDoJYLT7bFg8L56oxqSYz21UL1nLvA_dWtz5d8tb5A&oe=6380D7C9&_nc_sid=57d5c5&bytestart=14998&byteend=54121
IP 31.13.72.14:0
Hash 60aa9a7d4f02627e6081f0ce632718aa
a79bfd35250ae70be975efd0ec3aa53c8ba9aced
adb2f6bb26d656677e058a3bd8d1d75dace1f120984f7d6a05322f95de463959
GET /o1/v/t29/f1/m49/643571653579278.mp4?efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfdmlkZW8ifQ&_nc_ht=video-arn2-1.xx.fbcdn.net&_nc_cat=105&strext=1&ccb=9-4&oh=00_AfAXKDoJYLT7bFg8L56oxqSYz21UL1nLvA_dWtz5d8tb5A&oe=6380D7C9&_nc_sid=57d5c5&bytestart=14998&byteend=54121 HTTP/1.1
Host: video-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: video/mp4
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-digest: adler32=2517466482
content-length: 39124
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 24 Nov 2022 13:46:04 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
secure.quantserve.com/quant.js
91.228.74.206200 OK 0 B URL HTTP/2 secure.quantserve.com/quant.js
IP 91.228.74.206:0
GET /quant.js HTTP/1.1
Host: secure.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tunein.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 13:45:57 GMT
content-type: application/javascript
accept-ranges: bytes
cache-control: private, max-age=604800
content-encoding: gzip
etag: "nAbmxtqHqaYrwBiADJAeFg=="
expires: Thu, 01 Dec 2022 13:45:57 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3ivrH4/yL/l/en_US/A20WKj-I0um.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 0 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3ivrH4/yL/l/en_US/A20WKj-I0um.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
GET /rsrc.php/v3ivrH4/yL/l/en_US/A20WKj-I0um.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 17 Nov 2023 21:08:41 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Htjv1wYoonZJuz/NTw03fA==
x-fb-debug: bzF9BqaBsj2Omywi0XxMoQLxgSMONnYUtMS9WLpILZ+1ct0+Mxnv2uua1Tfdlu0o/UUGOq1H/1bmsEgBz1YlcA==
priority: u=3,i
content-length: 79543
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 13:46:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-1.xx.fbcdn.net/v/t42.1790-29/10000000_229591452711603_4769296497429367773_n.mp4?_nc_cat=103&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=uV_xlko2H54AX_7An5m&_nc_ht=video-arn2-1.xx&oh=00_AfBX8BvML6k2m1g4yGqRS_XyT3dCVTa4rCjhv5L1VHJFFw&oe=637F9D49&bytestart=20106&byteend=36970
31.13.72.14200 OK 0 B URL HTTP/2 video-arn2-1.xx.fbcdn.net/v/t42.1790-29/10000000_229591452711603_4769296497429367773_n.mp4?_nc_cat=103&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=uV_xlko2H54AX_7An5m&_nc_ht=video-arn2-1.xx&oh=00_AfBX8BvML6k2m1g4yGqRS_XyT3dCVTa4rCjhv5L1VHJFFw&oe=637F9D49&bytestart=20106&byteend=36970
IP 31.13.72.14:0
GET /v/t42.1790-29/10000000_229591452711603_4769296497429367773_n.mp4?_nc_cat=103&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=uV_xlko2H54AX_7An5m&_nc_ht=video-arn2-1.xx&oh=00_AfBX8BvML6k2m1g4yGqRS_XyT3dCVTa4rCjhv5L1VHJFFw&oe=637F9D49&bytestart=20106&byteend=36970 HTTP/1.1
Host: video-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:206:HS_ERANGE_SUCCESS
last-modified: Sun, 23 Jan 2022 02:25:48 GMT
content-type: video/mp4
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-length: 16865
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 24 Nov 2022 13:46:04 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
x-fb-edge-debug: iNpEUtWtW3JFP2-_ybhHl55CB9f4_jns6HqFTwBUvkN-ToVT_9VEfNJFtSV5U04m3G4qCov2OoF1Tgoq76nJ0hU70Xz2kmq8TNTGw6CSkNo
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn-embed.tunein.com/resources/img/tunein-ink-logo-v2.svg
104.18.40.188200 OK 0 B URL HTTP/2 cdn-embed.tunein.com/resources/img/tunein-ink-logo-v2.svg
IP 104.18.40.188:0
GET /resources/img/tunein-ink-logo-v2.svg HTTP/1.1
Host: cdn-embed.tunein.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-embed.tunein.com/resources/styles/bundle.486f07d8.css
Cookie: __cf_bm=6Fvqy_x__RaoZUEw0PrHBB3dE7dUgGPb.KF1NFB94hw-1669297556-0-AXhxbRRCjSFcPZpK8pP2jLy8yVFOZjk7r0ONQy146cQ7XUWdZSVhvOnwZy+bwk3GQg32xEEczma6sJ+C/OO1tG0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 13:45:56 GMT
content-type: image/svg+xml
x-amz-id-2: uchPMyo1FEakzvjCGHRdkCc24iL0PN46PXxzfd3tVzWb3x+tZiN0XRY6syM3I28DpzUqUpTRD0o=
x-amz-request-id: BW8MMQRGGPK6ZJ98
last-modified: Tue, 08 Feb 2022 23:18:22 GMT
etag: W/"dd1750473f76b4c2c552732da9d21550"
cf-cache-status: HIT
age: 1829
expires: Fri, 25 Nov 2022 13:45:56 GMT
cache-control: public, max-age=86400
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f29681e9191c12-OSL
content-encoding: br
X-Firefox-Spdy: h2
api.tunein.com/profiles/s138020/contents/topics?formats=mp3,aac,ogg,flash,hls&serial=5d7fb9b8-7a91-4336-8a37-b37032635bc4&partnerId=qZjjnm85&version=0.65&itemUrlScheme=secure&mode=embed&reqAttempt=1
104.17.106.184200 OK 0 B URL HTTP/2 api.tunein.com/profiles/s138020/contents/topics?formats=mp3,aac,ogg,flash,hls&serial=5d7fb9b8-7a91-4336-8a37-b37032635bc4&partnerId=qZjjnm85&version=0.65&itemUrlScheme=secure&mode=embed&reqAttempt=1
IP 104.17.106.184:0
GET /profiles/s138020/contents/topics?formats=mp3,aac,ogg,flash,hls&serial=5d7fb9b8-7a91-4336-8a37-b37032635bc4&partnerId=qZjjnm85&version=0.65&itemUrlScheme=secure&mode=embed&reqAttempt=1 HTTP/1.1
Host: api.tunein.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tunein.com
Connection: keep-alive
Referer: https://tunein.com/
Cookie: __cf_bm=6Fvqy_x__RaoZUEw0PrHBB3dE7dUgGPb.KF1NFB94hw-1669297556-0-AXhxbRRCjSFcPZpK8pP2jLy8yVFOZjk7r0ONQy146cQ7XUWdZSVhvOnwZy+bwk3GQg32xEEczma6sJ+C/OO1tG0=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 13:45:57 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Accept, Content-Type, Content-Range, Content-Disposition, Content-Description, __RequestVerificationToken, Authorization
access-control-allow-methods: GET, POST, OPTIONS, PUT, PATCH, DELETE
access-control-allow-origin: https://tunein.com
x-tunein-dc: us-west-2
x-correlation-trace-id: 8a839261-da47-4deb-9231-0fb77eda4293
x-envoy-upstream-service-time: 8
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 76f296877b2e0b31-OSL
content-encoding: br
X-Firefox-Spdy: h2
sb.scorecardresearch.com/beacon.js
143.204.55.96200 OK 0 B URL HTTP/2 sb.scorecardresearch.com/beacon.js
IP 143.204.55.96:0
GET /beacon.js HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tunein.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 13:19:23 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Thu, 24 Nov 2022 01:57:22 GMT
cache-control: max-age=86400
etag: W/"eaf85c1c6758e84acfe134efd70e9373"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: T3pXF9Rnkh26_G8eBwlSWjgwdG2FCBE0ggySwu95MKACyW0rOr2r4Q==
age: 42517
X-Firefox-Spdy: h2
api.tunein.com/profiles/s138020?formats=mp3,aac,ogg,flash,hls&serial=5d7fb9b8-7a91-4336-8a37-b37032635bc4&partnerId=qZjjnm85&version=0.65&itemUrlScheme=secure&mode=embed&reqAttempt=1
104.17.106.184200 OK 0 B URL HTTP/2 api.tunein.com/profiles/s138020?formats=mp3,aac,ogg,flash,hls&serial=5d7fb9b8-7a91-4336-8a37-b37032635bc4&partnerId=qZjjnm85&version=0.65&itemUrlScheme=secure&mode=embed&reqAttempt=1
IP 104.17.106.184:0
GET /profiles/s138020?formats=mp3,aac,ogg,flash,hls&serial=5d7fb9b8-7a91-4336-8a37-b37032635bc4&partnerId=qZjjnm85&version=0.65&itemUrlScheme=secure&mode=embed&reqAttempt=1 HTTP/1.1
Host: api.tunein.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tunein.com
Connection: keep-alive
Referer: https://tunein.com/
Cookie: __cf_bm=6Fvqy_x__RaoZUEw0PrHBB3dE7dUgGPb.KF1NFB94hw-1669297556-0-AXhxbRRCjSFcPZpK8pP2jLy8yVFOZjk7r0ONQy146cQ7XUWdZSVhvOnwZy+bwk3GQg32xEEczma6sJ+C/OO1tG0=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 13:45:57 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Accept, Content-Type, Content-Range, Content-Disposition, Content-Description, __RequestVerificationToken, Authorization
access-control-allow-methods: GET, POST, OPTIONS, PUT, PATCH, DELETE
access-control-allow-origin: https://tunein.com
x-tunein-dc: us-west-2
x-correlation-trace-id: 518372ab-f1fb-49f9-9b98-c26004cb41ba
x-envoy-upstream-service-time: 19
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 76f2968559a00b31-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn-embed.tunein.com/resources/img/close-button-ink.svg
104.18.40.188200 OK 0 B URL HTTP/2 cdn-embed.tunein.com/resources/img/close-button-ink.svg
IP 104.18.40.188:0
GET /resources/img/close-button-ink.svg HTTP/1.1
Host: cdn-embed.tunein.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-embed.tunein.com/resources/styles/bundle.486f07d8.css
Cookie: __cf_bm=6Fvqy_x__RaoZUEw0PrHBB3dE7dUgGPb.KF1NFB94hw-1669297556-0-AXhxbRRCjSFcPZpK8pP2jLy8yVFOZjk7r0ONQy146cQ7XUWdZSVhvOnwZy+bwk3GQg32xEEczma6sJ+C/OO1tG0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 13:45:57 GMT
content-type: image/svg+xml
x-amz-id-2: TqCe/otkNTLJYy6yJlib7zWa6SosFgDCILihMzCtJkxzFy2FoFK9O16nW6YNJY1WAw1dYasiXJIqEpxfK6uGDQ==
x-amz-request-id: 8H17RR6H3CANVG66
last-modified: Wed, 28 Sep 2022 21:04:24 GMT
etag: W/"8bf9c101c513ff668ffcd12563b74583"
cf-cache-status: HIT
age: 1276
expires: Fri, 25 Nov 2022 13:45:57 GMT
cache-control: public, max-age=86400
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f296873eec1c12-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn-embed.tunein.com/resources/js/vendor.1cd6b82a.js
104.18.40.188200 OK 0 B URL HTTP/2 cdn-embed.tunein.com/resources/js/vendor.1cd6b82a.js
IP 104.18.40.188:0
GET /resources/js/vendor.1cd6b82a.js HTTP/1.1
Host: cdn-embed.tunein.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tunein.com
Connection: keep-alive
Referer: https://tunein.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 13:45:56 GMT
content-type: application/javascript
x-amz-id-2: S/j/BEC5sB07p5ioBj/L6WHce6zhlwPJtxOXqquKL2Zu+SbsgWA4E6sbwvP5DNWEk3eRyt7XeC8=
x-amz-request-id: Z128PFHR90YM0475
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 28 Sep 2022 21:04:24 GMT
etag: W/"f00a40a36323314d81fa3de8d1e5cbdb"
cf-cache-status: HIT
age: 6174
expires: Fri, 25 Nov 2022 13:45:56 GMT
cache-control: public, max-age=86400
set-cookie: __cf_bm=FF_0hAbwf6jJKI95QJK4rTcWcA0oeHu4Xe9W6VYr41o-1669297556-0-AdlKlqqVSm0c5Kc5+GsPpQtFe1vJHfkdNZfN9t1uBw6egZtQwjPNNNWfNINaoQj1GK5Yi7N71nTD2KNMIOhDfPU=; path=/; expires=Thu, 24-Nov-22 14:15:56 GMT; domain=.tunein.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 76f296815fef1bfe-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn-embed.tunein.com/resources/js/main.29276af3.js
104.18.40.188200 OK 0 B URL HTTP/2 cdn-embed.tunein.com/resources/js/main.29276af3.js
IP 104.18.40.188:0
GET /resources/js/main.29276af3.js HTTP/1.1
Host: cdn-embed.tunein.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tunein.com/
Cookie: __cf_bm=6Fvqy_x__RaoZUEw0PrHBB3dE7dUgGPb.KF1NFB94hw-1669297556-0-AXhxbRRCjSFcPZpK8pP2jLy8yVFOZjk7r0ONQy146cQ7XUWdZSVhvOnwZy+bwk3GQg32xEEczma6sJ+C/OO1tG0=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 13:45:56 GMT
content-type: application/javascript
x-amz-id-2: /KE3N+vyCG4h88K4T4VEOmSWeSoi44HfKhU0qh81Qb3AItUzwTZvCwQj9Kt0wiYkhybFTAft9eI=
x-amz-request-id: 2VCDWGBYF6083V8V
last-modified: Thu, 10 Nov 2022 17:09:15 GMT
etag: W/"ed0e441e5c824b0d33734026585a75df"
x-amz-server-side-encryption: AES256
cf-cache-status: HIT
expires: Fri, 25 Nov 2022 13:45:56 GMT
cache-control: public, max-age=86400
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f2968148631c12-OSL
content-encoding: br
X-Firefox-Spdy: h2
video-arn2-1.xx.fbcdn.net/v/t42.1790-29/10000000_680832143101337_4272487654408203913_n.mp4?_nc_cat=101&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=XGV4XqinkUAAX-6ADlR&_nc_ht=video-arn2-1.xx&oh=00_AfCfqLorD3r4T1AhB3aPYCRh7M3RYvTku2Z-rZ0WwoexBQ&oe=637F9D06&bytestart=694&byteend=62369
31.13.72.14200 OK 0 B URL HTTP/2 video-arn2-1.xx.fbcdn.net/v/t42.1790-29/10000000_680832143101337_4272487654408203913_n.mp4?_nc_cat=101&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=XGV4XqinkUAAX-6ADlR&_nc_ht=video-arn2-1.xx&oh=00_AfCfqLorD3r4T1AhB3aPYCRh7M3RYvTku2Z-rZ0WwoexBQ&oe=637F9D06&bytestart=694&byteend=62369
IP 31.13.72.14:0
GET /v/t42.1790-29/10000000_680832143101337_4272487654408203913_n.mp4?_nc_cat=101&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbGl2ZV9tZF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=XGV4XqinkUAAX-6ADlR&_nc_ht=video-arn2-1.xx&oh=00_AfCfqLorD3r4T1AhB3aPYCRh7M3RYvTku2Z-rZ0WwoexBQ&oe=637F9D06&bytestart=694&byteend=62369 HTTP/1.1
Host: video-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:206:HS_ERANGE_SUCCESS
last-modified: Sun, 06 Feb 2022 19:50:39 GMT
content-type: video/mp4
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-length: 61676
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 24 Nov 2022 13:46:03 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
x-fb-edge-debug: OEQs86_nHtPARlg-diROLIrRzyrRA-FrNeAjR8PhmGohO_DZRl92uLNTHSzrIAnpmnugpt3glifhggr89eISt_7O1TFbZLZpEECujSNeu6Q
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
tunein.com/embed/player/s138020/
104.18.40.188200 OK 0 B URL HTTP/2 tunein.com/embed/player/s138020/
IP 104.18.40.188:0
GET /embed/player/s138020/ HTTP/1.1
Host: tunein.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ttrlive.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 13:45:56 GMT
content-type: text/html; charset=utf-8
cf-ray: 76f2967f5d671c12-OSL
etag: W/"3b7a-5RHGGx9yTwsKUrf08UrMiQ"
cf-cache-status: DYNAMIC
x-envoy-upstream-service-time: 70
set-cookie: rtid=5d7fb9b8-7a91-4336-8a37-b37032635bc4; Max-Age=476619243; Domain=tunein.com; Path=/; Expires=Fri, 01 Jan 2038 00:00:00 GMT; HttpOnly
__cf_bm=6Fvqy_x__RaoZUEw0PrHBB3dE7dUgGPb.KF1NFB94hw-1669297556-0-AXhxbRRCjSFcPZpK8pP2jLy8yVFOZjk7r0ONQy146cQ7XUWdZSVhvOnwZy+bwk3GQg32xEEczma6sJ+C/OO1tG0=; path=/; expires=Thu, 24-Nov-22 14:15:56 GMT; domain=.tunein.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
radio.massstream.net/8010/stream
51.15.2.143200 OK 0 B URL HTTP/1.1 radio.massstream.net/8010/stream
IP 51.15.2.143:0
GET /8010/stream HTTP/1.1
Host: radio.massstream.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://radio.massstream.net/cp/widgets/player/single/?p=8010
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: SonicPanel
Date: Thu, 24 Nov 2022 13:45:57 GMT
Content-Type: audio/mpeg
Transfer-Encoding: chunked
Connection: keep-alive
icy-notice1: <BR>This stream requires <a href="http://www.winamp.com">Winamp</a><BR>
icy-notice2: Shoutcast DNAS/posix(linux x64) v2.6.1.777<BR>
Accept-Ranges: none
Access-Control-Allow-Origin: *
icy-name: TAMILTHAI RADIO
icy-genre: various
icy-br: 64
icy-sr: 44100
icy-url: ttrlive.com
icy-pub: 1
X-Clacks-Overhead: GNU Terry Pratchett
Cache-Control: no-cache,no-store,must-revalidate,max-age=0, no-cache