leafy-youtiao-35d5eb.netlify.app/
35.246.229.114301 Moved Permanently 56 B URL HTTP/1.1 leafy-youtiao-35d5eb.netlify.app/
IP 35.246.229.114:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with no line terminators
Hash 9ccd61f5ebae83318f301292aa627e0d
e316494ec0967a1701f4dfa88078be60ab4cff57
253e957d157f83fcb359ef6d914a9e60f4c9fb5ed50ea167032ba288c6b0656a
GET / HTTP/1.1
Host: leafy-youtiao-35d5eb.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://leafy-youtiao-35d5eb.netlify.app/
Server: Netlify
X-Nf-Request-Id: 01GG34DK5DQAB4BSJ1WKASCSBJ
Date: Sun, 23 Oct 2022 19:16:54 GMT
Content-Length: 56
Content-Type: text/plain; charset=utf-8
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 73c4166ca864f777db2cc1cd8658a7c2
c56b66b0b7c8516d4d5bfafe0c166711c78f3d25
310c633350812c064e159275b6dbbdba6d6a5991a54ccfcc23459320c6513572
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "310C633350812C064E159275B6DBBDBA6D6A5991A54CCFCC23459320C6513572"
Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12695
Expires: Sun, 23 Oct 2022 22:48:29 GMT
Date: Sun, 23 Oct 2022 19:16:54 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bdb8b66c705a7b996496d780f50c00b5
403ae92039fcc933870f51f913f78ccaf9652256
c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Content-Length, Retry-After, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 23 Oct 2022 18:26:53 GMT
Expires: Sun, 23 Oct 2022 18:57:47 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 28pg5ewayhvE1UpD6r-ZZE68L2quVjyf0XX730VmpXezTwknGBldeQ==
Age: 3001
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cecd3b2e0cd07173ee1fb63b0a744119
774e0935fffd5bb39799c040098e32c3dc88702f
78c2c60f2d752f572f1711e23aa3f82d5e5bce1940064405f6f989886f6315df
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "78C2C60F2D752F572F1711E23AA3F82D5E5BCE1940064405F6F989886F6315DF"
Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16062
Expires: Sun, 23 Oct 2022 23:44:36 GMT
Date: Sun, 23 Oct 2022 19:16:54 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: tDaV+XgQIH88loe7gf2HWHsPm7fdaM/CWOpDZ+3Kh6trlXr0aZxIJmL4jJyXDYjuRg6wHEqzZGg=
x-amz-request-id: 9EGNSEB494YK34JK
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 23 Oct 2022 18:38:05 GMT
age: 2329
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 55d63ad389b9ca35cf6d1cdfcbbaee7b
33baf4de730a3cd2ccb8a88a10390b567745109c
2bb3a694217dfdff329698c86bb09d3a563ebb51ff1f511a5c803b909be7e2a4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 580
Cache-Control: max-age=121653
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:16:54 GMT
Etag: "6354c917-139"
Expires: Tue, 25 Oct 2022 05:04:28 GMT
Last-Modified: Sun, 23 Oct 2022 04:54:47 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 313
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 23 Oct 2022 19:16:54 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
leafy-youtiao-35d5eb.netlify.app/
35.246.229.114200 OK 29 kB URL HTTP/2 leafy-youtiao-35d5eb.netlify.app/
IP 35.246.229.114:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (62475)
Hash a307998e14767828da1170704edc8f53
8ff13b9ba353c7c729da9e847cba01adeda4da54
97e3cf3aab3caa8d4cdaa3c775826d6c785c24a147c0b65123b307e3c8f4db45
GET / HTTP/1.1
Host: leafy-youtiao-35d5eb.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
age: 129
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: text/html; charset=UTF-8
date: Sun, 23 Oct 2022 19:14:45 GMT
etag: "948ced1e303b2297dfa63d9779945f6b-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
x-nf-request-id: 01GG34DKFMPXA0G5N65M0Q8DMZ
content-length: 29355
X-Firefox-Spdy: h2
leafy-youtiao-35d5eb.netlify.app/style.css?v=3
35.246.229.114200 OK 1.4 kB URL HTTP/2 leafy-youtiao-35d5eb.netlify.app/style.css?v=3
IP 35.246.229.114:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 34975653c80b9570aa95c1c071fd15cf
bd9e24c761ca253ce3e960869b4f62843f1d3eca
c5347014169a77db472046c85c1de3b793d659185927bffd9e963557b8df57cc
GET /style.css?v=3 HTTP/1.1
Host: leafy-youtiao-35d5eb.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 258
cache-control: public, max-age=0, must-revalidate
content-encoding: gzip
content-type: text/css; charset=UTF-8
date: Sun, 23 Oct 2022 19:12:36 GMT
etag: "a4ac4fc7aaa3d690bcb31a4a2d74871a-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
x-nf-request-id: 01GG34DKKZNYPDWQPY1X0XPNB2
content-length: 1409
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 36c89de87243fc3c7420fa7c523a1f35
c25930e1240d57c3ecdbb0efed067dde177bca0e
0c64ebd07d4ced1a6eb06bdfe2972d67a0deeb9c02432d591595107c49aad45c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3914
Cache-Control: max-age=157400
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:16:54 GMT
Etag: "635547b4-117"
Expires: Tue, 25 Oct 2022 15:00:14 GMT
Last-Modified: Sun, 23 Oct 2022 13:55:00 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 05ee461624e2ec37f65e859afe6543ba
b99dcb558535d3d35d140e730aeeb41587622b30
576b3bf619d0a152889cc44165a229ad0100ccc319cf4d9044b2f26d4b676658
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:16:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash ea20460028066b7fba2f10b51d883192
a73b8263a4477aceeda349c7beff7050de9df38b
f933a7ff2c6ec9189ba29fdf09da9125ac59d9c03b4a14e14e9f1b5fa5322b1c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:16:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/1.8.2/jquery.min.js
142.250.74.170200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.8.2/jquery.min.js
IP 142.250.74.170:0
File type Unicode text, UTF-8 text, with very long lines (65480)
Hash b582b2eca79a750948dbb3777aeaaadb
bf0ea1c8a7b4a55779cbb3df1f1d75cc19910e9f
04c7f19e1ae294cc641f6c497653b5c13c41b258559f5f05b790032ccca16c82
GET /ajax/libs/jquery/1.8.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33621
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 10:01:26 GMT
expires: Thu, 19 Oct 2023 10:01:26 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 378928
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.imgur.com/jwVCeRU.png
151.101.84.193200 OK 9.0 kB IP 151.101.84.193:0
File type PNG image data, 545 x 88, 8-bit colormap, non-interlaced\012- data
Hash f3ccf71bb3618c1eff23cd72e65fa14c
ebcb20dc773a5c264de009ba26ba08e3f1321db4
4e1adf64dd7c54f54f5d6893d277d25a24a17e3e018c89248c73e56da6c5bb08
GET /jwVCeRU.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 18 Mar 2022 19:05:08 GMT
etag: "f3ccf71bb3618c1eff23cd72e65fa14c"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Sun, 23 Oct 2022 19:16:54 GMT
age: 5296768
x-served-by: cache-iad-kiad7000135-IAD, cache-bma1682-BMA
x-cache: HIT, HIT
x-cache-hits: 2499, 25
x-timer: S1666552615.616669,VS0,VE0
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 9015
X-Firefox-Spdy: h2
i.imgur.com/UWzxCe3.jpeg
151.101.84.193200 OK 702 B IP 151.101.84.193:0
File type JPEG image data, baseline, precision 8, 114x28, components 3\012- data
Hash eb85e6ab5d0b917a292c41e80c595bf2
7caf4a38b13acf0414c6c29de2bbbd61c68b2911
08e5700a8f133f77057cb66978185cd2c1515df3bbc076162153df30059ea353
GET /UWzxCe3.jpeg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 19 Jul 2022 13:44:16 GMT
etag: "eb85e6ab5d0b917a292c41e80c595bf2"
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Sun, 23 Oct 2022 19:16:54 GMT
age: 4021216
x-served-by: cache-iad-kjyo7100084-IAD, cache-bma1682-BMA
x-cache: HIT, HIT
x-cache-hits: 2714, 24
x-timer: S1666552615.617446,VS0,VE0
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 702
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-128182457-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-128182457-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1588)
Hash f300cec5d66283f9ed40cca2db31c085
8dfbfe19fe645b8e9b264acf6126572820928095
d7a83adcfaa2b4f3255c46af80c7de74fd35ab2e1f015d56c7c82920fa07561a
GET /gtag/js?id=UA-128182457-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 23 Oct 2022 19:16:54 GMT
expires: Sun, 23 Oct 2022 19:16:54 GMT
cache-control: private, max-age=900
last-modified: Sun, 23 Oct 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43587
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2d3c7a117c7d108d2cb633b493fa7f6f
5691fee8ff5ede8ab516c8df8a592f883e15c859
7de2b838e59d1cc462b003ec1c3a2b36e4a79772c1afebae89ef09f9cbd163b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7DE2B838E59D1CC462B003EC1C3A2B36E4A79772C1AFEBAE89EF09F9CBD163B4"
Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3532
Expires: Sun, 23 Oct 2022 20:15:46 GMT
Date: Sun, 23 Oct 2022 19:16:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash be6a98f1b00344375b297c5487d8489e
86548b29eb5c1b5334b54dac2be459eb376508ad
d9bf719b77a1f52d7e181c8601bd1b52c9f7b650a970b44cd6102e448161475f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D9BF719B77A1F52D7E181C8601BD1B52C9F7B650A970B44CD6102E448161475F"
Last-Modified: Sat, 22 Oct 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2043
Expires: Sun, 23 Oct 2022 19:50:57 GMT
Date: Sun, 23 Oct 2022 19:16:54 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4c236f4ca13cd8fafc580bceb0995642
b6a7de7a8d994ed2cfb5ac74b6d7703de515ecdb
671228953eba5b2678df03acebb493e411752c6f5f72ff7f1e485032241d4aeb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:16:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 05ee461624e2ec37f65e859afe6543ba
b99dcb558535d3d35d140e730aeeb41587622b30
576b3bf619d0a152889cc44165a229ad0100ccc319cf4d9044b2f26d4b676658
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:16:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
wormypiculs.com/rB7B5SLHizUr5S6NO/31232
23.109.82.63200 OK 25 B URL HTTP/1.1 wormypiculs.com/rB7B5SLHizUr5S6NO/31232
IP 23.109.82.63:0
File type ASCII text, with no line terminators
Hash d488addc5df5fc9b9ff4135bb4e3a823
6ce56f48e851df4d562b43d3bc1269a504ae83fc
d1e90b8aef655ca37932287e04cbda72092eb029fe90de2bac019c10d3431f60
GET /rB7B5SLHizUr5S6NO/31232 HTTP/1.1
Host: wormypiculs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 23 Oct 2022 19:16:54 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://leafy-youtiao-35d5eb.netlify.app
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9jUtOwzAYhPMOVUnESDkAR2gi0rRLNqy4Q%2BTYf4Jp4r9y3Ae3xyDBbh6fZoIgiKoS4TWLEV9Ei%2BejGru9pJrkoW6a%2BuXQyLEdRDfWqunqdoeNXnsnhplcgseJDFkte8mKCjz56i85Gb6ZBOlghVEF0sUTc4F8sHxbyVYxEiMWQv6mLY1894T4ZIvouPdSGy%2FDHSJeq7jcIH3X5nIvt1lQFlmA7XkWbmS79Fp5m05WKEL4igcpHE1sv5ArWk%2BOzwDPqv%2Fnfz%2FT%2BWcNmaKrlt6y%2ByD7DTb9Sx8%3D; expires=Mon, 24-Oct-2022 19:16:54 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJxNjMFqg0AURXXSTCOK5UI%2FID9Qk7R2kW3TZdGFHzBY8xIGzDxxJm0mX181ULK5HA6cGwSBeE4hdIdku8m26yx%2FzTbvOWZHYoiiRNLw2bjeK1OfCLLg%2Frf2kD0dNRuI9RviG6uG94R5Ub7cuSmKS9vycjf%2BeDw0etxRIRr51j0O3eRm2nZIP1p9WVbcnt3wYhEZcsp2RHtEu%2Fq7pdVn9YX0304fMsRCW9X1fPEDPzl9oisbUnw4WHJSIPyR4g8Mt0dW; expires=Mon, 24-Oct-2022 19:16:54 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
prolatecyclus.com/tiSPyKXy8O7aBX/30828
23.109.248.183200 OK 25 B URL HTTP/1.1 prolatecyclus.com/tiSPyKXy8O7aBX/30828
IP 23.109.248.183:0
File type ASCII text, with no line terminators
Hash d488addc5df5fc9b9ff4135bb4e3a823
6ce56f48e851df4d562b43d3bc1269a504ae83fc
d1e90b8aef655ca37932287e04cbda72092eb029fe90de2bac019c10d3431f60
Analyzer Verdict Alert fortinet Phishing
GET /tiSPyKXy8O7aBX/30828 HTTP/1.1
Host: prolatecyclus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 23 Oct 2022 19:16:54 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://leafy-youtiao-35d5eb.netlify.app
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-Frame-Options: SAMEORIGIN
Set-Cookie: GL_UI4=eJw9jUtOwzAYhPMOVUnESDkAR2gi0rRLNqy4Q%2BTYf4Jp4r9y3Ae3xyDBbh6fZoIgiKoS4TWLEV9Ei%2BejGru9pJrkoW6a%2BuXQyLEdRDfWqunqdoeNXnsnhplcgseJDFkte8mKCjz56i85Gb6ZBOlghVEF0sUTc4F8sHxbyVYxEiMWQv6mLY1894T4ZIvouPdSGy%2FDHSJeq7jcIH3X5nIvt1lQFlmA7XkWbmS79Fp5m05WKEL4igcpHE1sv5ArWk%2BOzwDPqv%2Fnfz%2FT%2BWcNmaKrlt6y%2ByD7DTb9Sx8%3D; expires=Mon, 24-Oct-2022 19:16:54 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJxNjMFqg0AURXXSTCOK5UI%2FID9Qk7R2kW3TZdGFHzBY8xIGzDxxJm0mX181ULK5HA6cGwSBeE4hdIdku8m26yx%2FzTbvOWZHYoiiRNLw2bjeK1OfCLLg%2Frf2kD0dNRuI9RviG6uG94R5Ub7cuSmKS9vycjf%2BeDw0etxRIRr51j0O3eRm2nZIP1p9WVbcnt3wYhEZcsp2RHtEu%2Fq7pdVn9YX0304fMsRCW9X1fPEDPzl9oisbUnw4WHJSIPyR4g8Mt0dW; expires=Mon, 24-Oct-2022 19:16:54 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
dba9ytko5p72r.cloudfront.net/?tyabd=795152
143.204.42.187200 OK 116 kB URL HTTP/2 dba9ytko5p72r.cloudfront.net/?tyabd=795152
IP 143.204.42.187:0
File type Unicode text, UTF-8 text, with very long lines (15945)
Size 116 kB (115846 bytes)
Hash 999a910ab2de7d1cd47c2294ef83babc
303117ebecee21e5df979a05aeb38070fb07a55a
0dfb22b8c17913891de807cce7cb959933f48da69f98772117bac1cf3d85c7f5
GET /?tyabd=795152 HTTP/1.1
Host: dba9ytko5p72r.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 115846
date: Sun, 23 Oct 2022 19:16:54 GMT
access-control-allow-origin: *
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Miss from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -j3rAoLVI3u2OI6OvRhPViO37n_NINNSY_KIy2lxNzcyp0Hm2FhLZg==
X-Firefox-Spdy: h2
i.imgur.com/YmtXIFU.png
151.101.84.193200 OK 599 B IP 151.101.84.193:0
File type PNG image data, 15 x 15, 8-bit colormap, non-interlaced\012- data
Hash 312116a831b5f895abffbf1f55a0d7cc
f27ecc4b13e1b554a866813043c609a9d3718876
2ce8cbeaf95666519cd75260a7dcb1ff46d53a937d56608882ddcfd6caa333c9
GET /YmtXIFU.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 02 Dec 2021 00:47:59 GMT
etag: "312116a831b5f895abffbf1f55a0d7cc"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Sun, 23 Oct 2022 19:16:54 GMT
age: 3464740
x-served-by: cache-iad-kcgs7200125-IAD, cache-bma1682-BMA
x-cache: HIT, HIT
x-cache-hits: 609, 27
x-timer: S1666552615.735155,VS0,VE0
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 599
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sun, 23 Oct 2022 18:43:40 GMT
Expires: Sun, 23 Oct 2022 19:41:30 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: BcfdfD9TUOf3eWQ_TIYWcZIZVS-pLMveguKG99xH2QbeMGcslarQBQ==
Age: 1994
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dc31d9e4ce293ed7104bc59ea32e351f
e4e624bffd2d5e3fbb4c1adb17719b005933d9db
a90b3b0df60b91cf047eb3befc1227fcd57fb02febf9807c792b42f91a3c237a
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "A90B3B0DF60B91CF047EB3BEFC1227FCD57FB02FEBF9807C792B42F91A3C237A"
Last-Modified: Sun, 23 Oct 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13946
Expires: Sun, 23 Oct 2022 23:09:20 GMT
Date: Sun, 23 Oct 2022 19:16:54 GMT
Connection: keep-alive
prolatecyclus.com/tiSPyKXy8O7aBX/30828
23.109.248.183200 OK 25 B URL HTTP/1.1 prolatecyclus.com/tiSPyKXy8O7aBX/30828
IP 23.109.248.183:0
File type ASCII text, with no line terminators
Hash d488addc5df5fc9b9ff4135bb4e3a823
6ce56f48e851df4d562b43d3bc1269a504ae83fc
d1e90b8aef655ca37932287e04cbda72092eb029fe90de2bac019c10d3431f60
Analyzer Verdict Alert fortinet Phishing
GET /tiSPyKXy8O7aBX/30828 HTTP/1.1
Host: prolatecyclus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Cookie: GL_UI4=eJw9jUtOwzAYhPMOVUnESDkAR2gi0rRLNqy4Q%2BTYf4Jp4r9y3Ae3xyDBbh6fZoIgiKoS4TWLEV9Ei%2BejGru9pJrkoW6a%2BuXQyLEdRDfWqunqdoeNXnsnhplcgseJDFkte8mKCjz56i85Gb6ZBOlghVEF0sUTc4F8sHxbyVYxEiMWQv6mLY1894T4ZIvouPdSGy%2FDHSJeq7jcIH3X5nIvt1lQFlmA7XkWbmS79Fp5m05WKEL4igcpHE1sv5ArWk%2BOzwDPqv%2Fnfz%2FT%2BWcNmaKrlt6y%2ByD7DTb9Sx8%3D; GL_GI10=eJxNjMFqg0AURXXSTCOK5UI%2FID9Qk7R2kW3TZdGFHzBY8xIGzDxxJm0mX181ULK5HA6cGwSBeE4hdIdku8m26yx%2FzTbvOWZHYoiiRNLw2bjeK1OfCLLg%2Frf2kD0dNRuI9RviG6uG94R5Ub7cuSmKS9vycjf%2BeDw0etxRIRr51j0O3eRm2nZIP1p9WVbcnt3wYhEZcsp2RHtEu%2Fq7pdVn9YX0304fMsRCW9X1fPEDPzl9oisbUnw4WHJSIPyR4g8Mt0dW
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 23 Oct 2022 19:16:54 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://leafy-youtiao-35d5eb.netlify.app
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dc31d9e4ce293ed7104bc59ea32e351f
e4e624bffd2d5e3fbb4c1adb17719b005933d9db
a90b3b0df60b91cf047eb3befc1227fcd57fb02febf9807c792b42f91a3c237a
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "A90B3B0DF60B91CF047EB3BEFC1227FCD57FB02FEBF9807C792B42F91A3C237A"
Last-Modified: Sun, 23 Oct 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13946
Expires: Sun, 23 Oct 2022 23:09:20 GMT
Date: Sun, 23 Oct 2022 19:16:54 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dc31d9e4ce293ed7104bc59ea32e351f
e4e624bffd2d5e3fbb4c1adb17719b005933d9db
a90b3b0df60b91cf047eb3befc1227fcd57fb02febf9807c792b42f91a3c237a
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "A90B3B0DF60B91CF047EB3BEFC1227FCD57FB02FEBF9807C792B42F91A3C237A"
Last-Modified: Sun, 23 Oct 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13946
Expires: Sun, 23 Oct 2022 23:09:20 GMT
Date: Sun, 23 Oct 2022 19:16:54 GMT
Connection: keep-alive
leafy-youtiao-35d5eb.netlify.app/start.html
35.246.229.114200 OK 613 B URL HTTP/2 leafy-youtiao-35d5eb.netlify.app/start.html
IP 35.246.229.114:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document, Unicode text, UTF-8 text
Hash 7f190a0e1e5fd4d2f3d38a3490fe6da9
3065603c8e2f5cbd3d9e489f946e3a488c5d6788
09fa97da4f4a6b7ddf9a37146c6ce3059821719f926a49fd02f3c51490a146ba
GET /start.html HTTP/1.1
Host: leafy-youtiao-35d5eb.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
age: 257
cache-control: public, max-age=0, must-revalidate
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Sun, 23 Oct 2022 19:12:37 GMT
etag: "af55417fb493bb24a28d9842a232f471-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
x-nf-request-id: 01GG34DM12H370GV4TD8TCRZFP
content-length: 613
X-Firefox-Spdy: h2
leafy-youtiao-35d5eb.netlify.app/chat.html
35.246.229.114200 OK 827 B URL HTTP/2 leafy-youtiao-35d5eb.netlify.app/chat.html
IP 35.246.229.114:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document, Unicode text, UTF-8 text
Hash 3379793963ee13a6ea6ad563a389ac66
8a1d81901db4f928ea48d57818ab3604b865ea79
2729315c3005e4324fcbe0ccc409c55eeb732fbd52e9c7b9dc555856da76dab9
GET /chat.html HTTP/1.1
Host: leafy-youtiao-35d5eb.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
age: 257
cache-control: public, max-age=0, must-revalidate
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Sun, 23 Oct 2022 19:12:37 GMT
etag: "7b6c0aff4512cfc255e0461a200ecc2c-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
x-nf-request-id: 01GG34DM146SGQYB0HW1C1DBAA
content-length: 827
X-Firefox-Spdy: h2
ofthecathedral.xyz/elJHU08bMCQ+cBtvJXU6CD56dn08d3UVKxgzfio7ET1yI3hIIGkwIxUnIzU9FTwzfSEfJmJhCQ4LExI2KQcSEBdLJTE2JywIET0dQwUWAg4cPAEbGBEXKhg3PxwkEAYJHXcZfDE6CQUWKAN+AzgvHAY+dwoTAWYZHhUKFhcWFHc3Ch4AETo7TgQVCQcxGiAeF0o1IBgeSwABYDw+BAVnDBgaIwEIPyJzNworFiQUN0kHESstMCgGCQkrEHIDGREVJQt2AgAGHTgYGiMBHhEANDcmOxgFFCtLAQUGDh8BDhYaSzkqCgk0YAYbI0oHFhILHwoVFg4dfw4lAzgcEQUMI2sVEgVKMQ8dHzsQFmsqPBNhOTwVPDduDRE7HSEKGQRzAg
143.204.55.22200 OK 1.2 kB URL HTTP/2 ofthecathedral.xyz/elJHU08bMCQ+cBtvJXU6CD56dn08d3UVKxgzfio7ET1yI3hIIGkwIxUnIzU9FTwzfSEfJmJhCQ4LExI2KQcSEBdLJTE2JywIET0dQwUWAg4cPAEbGBEXKhg3PxwkEAYJHXcZfDE6CQUWKAN+AzgvHAY+dwoTAWYZHhUKFhcWFHc3Ch4AETo7TgQVCQcxGiAeF0o1IBgeSwABYDw+BAVnDBgaIwEIPyJzNworFiQUN0kHESstMCgGCQkrEHIDGREVJQt2AgAGHTgYGiMBHhEANDcmOxgFFCtLAQUGDh8BDhYaSzkqCgk0YAYbI0oHFhILHwoVFg4dfw4lAzgcEQUMI2sVEgVKMQ8dHzsQFmsqPBNhOTwVPDduDRE7HSEKGQRzAg
IP 143.204.55.22:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2991), with no line terminators
Hash aa0d873ab483529ecb3468f64d0f2dff
34685fac073af68da20bc45e4ed16c5178062b60
6825c036069bde93d1e901fd034a3c37dd2d9f0640ee9792ce92d3e3eb279bc7
GET /elJHU08bMCQ+cBtvJXU6CD56dn08d3UVKxgzfio7ET1yI3hIIGkwIxUnIzU9FTwzfSEfJmJhCQ4LExI2KQcSEBdLJTE2JywIET0dQwUWAg4cPAEbGBEXKhg3PxwkEAYJHXcZfDE6CQUWKAN+AzgvHAY+dwoTAWYZHhUKFhcWFHc3Ch4AETo7TgQVCQcxGiAeF0o1IBgeSwABYDw+BAVnDBgaIwEIPyJzNworFiQUN0kHESstMCgGCQkrEHIDGREVJQt2AgAGHTgYGiMBHhEANDcmOxgFFCtLAQUGDh8BDhYaSzkqCgk0YAYbI0oHFhILHwoVFg4dfw4lAzgcEQUMI2sVEgVKMQ8dHzsQFmsqPBNhOTwVPDduDRE7HSEKGQRzAg HTTP/1.1
Host: ofthecathedral.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 1151
date: Sun, 23 Oct 2022 19:16:54 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
x-cache: Miss from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6wy-Eanj39JHfYEzMdbtgbe89hWyEH8zU6t834aSx_PseQVOkBv-tw==
X-Firefox-Spdy: h2
ofthecathedral.xyz/YldQdngDNTMbRwNqMlANEDttU0okcmIwHAA2aQ8MCThlBk9QJX4VFA0iNBAKDTkkWBYHI3VEPiw2YDAyNwBgPzQLNGMjEFo4HCEAAwI+JEw4EWk4Mxg4dUQ6Iy8kTjQFAhsmLBE4MTUTVR0+TxEmLyRCGhsCCDJLGmI0AT0pGylDCzEgZAAzDy8zIisjIx1HOgQNKkYQIzASTjUYbxEyEVY8ADchNhs9ThMmEQkFMgskFTQBUjg0MEAWMxcSEDERPA4hMTszIRUwYRVGEDg0AyNMIy9kQxolGTQzSw5yYjA8DiM2LDANAwMwFBoYKRIxNRYSASJSGTIXP08vOi4pFTwbHBchAz47KDtmYRcbOjs3Li4SPDVEPS4WOjsLLCAZIiIqJAggPlMhNS4bOwE+N14IJD8YCF8wBBEuGDZpMigFYWMUCFs
143.204.55.22200 OK 1.2 kB URL HTTP/2 ofthecathedral.xyz/YldQdngDNTMbRwNqMlANEDttU0okcmIwHAA2aQ8MCThlBk9QJX4VFA0iNBAKDTkkWBYHI3VEPiw2YDAyNwBgPzQLNGMjEFo4HCEAAwI+JEw4EWk4Mxg4dUQ6Iy8kTjQFAhsmLBE4MTUTVR0+TxEmLyRCGhsCCDJLGmI0AT0pGylDCzEgZAAzDy8zIisjIx1HOgQNKkYQIzASTjUYbxEyEVY8ADchNhs9ThMmEQkFMgskFTQBUjg0MEAWMxcSEDERPA4hMTszIRUwYRVGEDg0AyNMIy9kQxolGTQzSw5yYjA8DiM2LDANAwMwFBoYKRIxNRYSASJSGTIXP08vOi4pFTwbHBchAz47KDtmYRcbOjs3Li4SPDVEPS4WOjsLLCAZIiIqJAggPlMhNS4bOwE+N14IJD8YCF8wBBEuGDZpMigFYWMUCFs
IP 143.204.55.22:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3024), with no line terminators
Hash 14476e7abb1ff536e1e92878623e1d55
665caf64f914cac3e7a48dcbc0df5f11ca84ad29
8291bace9dc88a1771861e868163c6e2f0b4e0b31faf340e3ec063bd1a35fc23
GET /YldQdngDNTMbRwNqMlANEDttU0okcmIwHAA2aQ8MCThlBk9QJX4VFA0iNBAKDTkkWBYHI3VEPiw2YDAyNwBgPzQLNGMjEFo4HCEAAwI+JEw4EWk4Mxg4dUQ6Iy8kTjQFAhsmLBE4MTUTVR0+TxEmLyRCGhsCCDJLGmI0AT0pGylDCzEgZAAzDy8zIisjIx1HOgQNKkYQIzASTjUYbxEyEVY8ADchNhs9ThMmEQkFMgskFTQBUjg0MEAWMxcSEDERPA4hMTszIRUwYRVGEDg0AyNMIy9kQxolGTQzSw5yYjA8DiM2LDANAwMwFBoYKRIxNRYSASJSGTIXP08vOi4pFTwbHBchAz47KDtmYRcbOjs3Li4SPDVEPS4WOjsLLCAZIiIqJAggPlMhNS4bOwE+N14IJD8YCF8wBBEuGDZpMigFYWMUCFs HTTP/1.1
Host: ofthecathedral.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1179
date: Sun, 23 Oct 2022 19:16:54 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
x-cache: Miss from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mzuLTyAK3V2oosWfWSSk3WAN6vqMoVoqrmsqjD8nkOP1iVr-u6q8Aw==
X-Firefox-Spdy: h2
ofthecathedral.xyz/cU4xelUQLFIXahBzU1wgAyIMX2c3awM8MRMvCAMhGiEECmJDPB8ZOR47VRwnHiBFVDsUOhRIEwQUAx49E3xSPxYwdnstFzwBcywfFBhnMAMmIlU4ESMHcDkHFS96Oxg1CkhCGjkdAQITNxR7Py1BCmk8bDMNRiMFMghBOBQWdnwtOSsMcDsmNxldNB02NlIzETc5ZzkEHg11HRw6CnNCGiIceD0CFjlwMgRFAnUrYDIYYjwAIBhVOQMnCHkyZCsZYzwiHR9dLAcwOQUwEBkieiwDEihmLD5FG2c0ECkNZzkDJwtVPwA7G3g8DyMdZx4cIiJnIhQwY2A3ETAmci8sHRhnSw8jFgAgDSclYx4DBgt+PyIeDHI4bDQWYjwwJBsIHAQjBFAvFFckQhU7AXN4FjEZBl4IHyc9Bg
143.204.55.22200 OK 1.2 kB URL HTTP/2 ofthecathedral.xyz/cU4xelUQLFIXahBzU1wgAyIMX2c3awM8MRMvCAMhGiEECmJDPB8ZOR47VRwnHiBFVDsUOhRIEwQUAx49E3xSPxYwdnstFzwBcywfFBhnMAMmIlU4ESMHcDkHFS96Oxg1CkhCGjkdAQITNxR7Py1BCmk8bDMNRiMFMghBOBQWdnwtOSsMcDsmNxldNB02NlIzETc5ZzkEHg11HRw6CnNCGiIceD0CFjlwMgRFAnUrYDIYYjwAIBhVOQMnCHkyZCsZYzwiHR9dLAcwOQUwEBkieiwDEihmLD5FG2c0ECkNZzkDJwtVPwA7G3g8DyMdZx4cIiJnIhQwY2A3ETAmci8sHRhnSw8jFgAgDSclYx4DBgt+PyIeDHI4bDQWYjwwJBsIHAQjBFAvFFckQhU7AXN4FjEZBl4IHyc9Bg
IP 143.204.55.22:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3015), with no line terminators
Hash 9311f6f88ee9ef1230db6b38d2c12ada
197d8c9a6e676728151b396ea358417ba402cf0f
00e55d7a7d591573dd036a286dcd91a5da14f4063cdc5646255725cfe19c5eb1
GET /cU4xelUQLFIXahBzU1wgAyIMX2c3awM8MRMvCAMhGiEECmJDPB8ZOR47VRwnHiBFVDsUOhRIEwQUAx49E3xSPxYwdnstFzwBcywfFBhnMAMmIlU4ESMHcDkHFS96Oxg1CkhCGjkdAQITNxR7Py1BCmk8bDMNRiMFMghBOBQWdnwtOSsMcDsmNxldNB02NlIzETc5ZzkEHg11HRw6CnNCGiIceD0CFjlwMgRFAnUrYDIYYjwAIBhVOQMnCHkyZCsZYzwiHR9dLAcwOQUwEBkieiwDEihmLD5FG2c0ECkNZzkDJwtVPwA7G3g8DyMdZx4cIiJnIhQwY2A3ETAmci8sHRhnSw8jFgAgDSclYx4DBgt+PyIeDHI4bDQWYjwwJBsIHAQjBFAvFFckQhU7AXN4FjEZBl4IHyc9Bg HTTP/1.1
Host: ofthecathedral.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1172
date: Sun, 23 Oct 2022 19:16:54 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
x-cache: Miss from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: oRpGX9CDpn6XDEiBqHWqYU535snRgKFIT0o8_CkgZbumrPpdMBHuLQ==
X-Firefox-Spdy: h2
leafy-youtiao-35d5eb.netlify.app/chatOgolny.html
35.246.229.114301 Moved Permanently 411 B URL HTTP/2 leafy-youtiao-35d5eb.netlify.app/chatOgolny.html
IP 35.246.229.114:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document, ASCII text, with very long lines (411), with no line terminators
Hash ca981e3ea4da8da924eebb756f833bd3
c2dc052378c25c1092a80efdfabfa9b8b94af20c
9819316e138b983b930f6813605d302594d931be9875fcb693ed9fcbcd090f7f
GET /chatOgolny.html HTTP/1.1
Host: leafy-youtiao-35d5eb.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leafy-youtiao-35d5eb.netlify.app/chat.html
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 301 Moved Permanently
age: 261
cache-control: public, max-age=0, must-revalidate
content-type: text/html; charset=UTF-8
date: Sun, 23 Oct 2022 19:12:35 GMT
etag: "f72d066d02ad073720fd9684ce917247-ssl"
location: /chatogolny
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01GG34DM37Y8NCCW2R6P81ABEE
content-length: 411
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 60d5d7cce6c32a6bdaf0d4c92ec93a1a
cd29edee660366b41749cfd206bdc08fb421449c
fb90c4cc44b32e4ca4a7d1533bbf4a2fd5c482dda5d232f1be2334f3cefbbb0e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3620
Cache-Control: max-age=136208
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:16:55 GMT
Etag: "6354f613-1d7"
Expires: Tue, 25 Oct 2022 09:07:03 GMT
Last-Modified: Sun, 23 Oct 2022 08:06:43 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
loddingtoto.one/RXRUTTRqSzc+CRRHOCJhLjIuHGItGjEVRAgjOSkAIR9lKG0rOXI5XSFJY3QBdEFma0QsEGl8EjYANTlBNklla10rEjtwEjNJZWMHcVpmdBp1UiFwBWMAJCxTeEVyPUAxGGl8AnNCYXgGc0Vgeg11
172.67.139.248204 No Content 0 B URL HTTP/2 loddingtoto.one/RXRUTTRqSzc+CRRHOCJhLjIuHGItGjEVRAgjOSkAIR9lKG0rOXI5XSFJY3QBdEFma0QsEGl8EjYANTlBNklla10rEjtwEjNJZWMHcVpmdBp1UiFwBWMAJCxTeEVyPUAxGGl8AnNCYXgGc0Vgeg11
IP 172.67.139.248:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /RXRUTTRqSzc+CRRHOCJhLjIuHGItGjEVRAgjOSkAIR9lKG0rOXI5XSFJY3QBdEFma0QsEGl8EjYANTlBNklla10rEjtwEjNJZWMHcVpmdBp1UiFwBWMAJCxTeEVyPUAxGGl8AnNCYXgGc0Vgeg11 HTTP/1.1
Host: loddingtoto.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 23 Oct 2022 19:16:55 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iZqGkz8V8kI%2BQI5ZBZ0S%2BZ5jkqfAzQCAP0d%2F1yKBO5f%2FLNeGXXPqg5huD%2FaYrPbJ4IfpDlHK9T5Z81VNuxrhOeBuOpKN6zrY3nwCLoWep5kSPXPh%2FMuN8j62IVoA%2BCM128Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75eccf53380c0b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
loddingtoto.one/UThoZEl+BwsXdBxSPiIEFnUpJnoAej01EBJbDyocE08QVgs9cU4QIDUFUVZ8ZQ1YQjk4XFVVbyJMCRA8IgVZQiA/XgdZbycFWUp6ZRZaXWdhHh1ZeHdMGAUubAlOFD0lVFVVf2cOXVF7ZwlcXHlj
172.67.139.248204 No Content 0 B URL HTTP/2 loddingtoto.one/UThoZEl+BwsXdBxSPiIEFnUpJnoAej01EBJbDyocE08QVgs9cU4QIDUFUVZ8ZQ1YQjk4XFVVbyJMCRA8IgVZQiA/XgdZbycFWUp6ZRZaXWdhHh1ZeHdMGAUubAlOFD0lVFVVf2cOXVF7ZwlcXHlj
IP 172.67.139.248:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /UThoZEl+BwsXdBxSPiIEFnUpJnoAej01EBJbDyocE08QVgs9cU4QIDUFUVZ8ZQ1YQjk4XFVVbyJMCRA8IgVZQiA/XgdZbycFWUp6ZRZaXWdhHh1ZeHdMGAUubAlOFD0lVFVVf2cOXVF7ZwlcXHlj HTTP/1.1
Host: loddingtoto.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 23 Oct 2022 19:16:55 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X8ZYWYK9jjopavhmwF8PC80JqBzzkiBehoH8gt7N3CoGK3a7TRRFUUUzwAvdx7CA7D228ibAf%2F8U7IT4L1cO3hgVxFUbBN8s%2FvG0QVQ67K0mjGZd0DFgjCLW58xOjN47s60%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75eccf5348170b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
loddingtoto.one/UVJESUh+bSc6dQc5CgwfBiIoLRBgIRx7AmIxE3ASM2E0MSpgG2I9ITVvfHF8Y2Vwbzg4Nnl4cHchMCg8JCF5eG44PCImdXckeXhmYXx2Z3h3J3l4biUiJS51YHQ0PTw9b3V/fmdncXt+YGZ8eHg
172.67.139.248204 No Content 0 B URL HTTP/2 loddingtoto.one/UVJESUh+bSc6dQc5CgwfBiIoLRBgIRx7AmIxE3ASM2E0MSpgG2I9ITVvfHF8Y2Vwbzg4Nnl4cHchMCg8JCF5eG44PCImdXckeXhmYXx2Z3h3J3l4biUiJS51YHQ0PTw9b3V/fmdncXt+YGZ8eHg
IP 172.67.139.248:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /UVJESUh+bSc6dQc5CgwfBiIoLRBgIRx7AmIxE3ASM2E0MSpgG2I9ITVvfHF8Y2Vwbzg4Nnl4cHchMCg8JCF5eG44PCImdXckeXhmYXx2Z3h3J3l4biUiJS51YHQ0PTw9b3V/fmdncXt+YGZ8eHg HTTP/1.1
Host: loddingtoto.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 23 Oct 2022 19:16:55 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d9BfAIzc0FVqIaxVSLiqCECKw9tJ6YLEpHpsVvMOnylGvcJVmER1Y8JlXQ2OTJ9P99ooSfx%2FEKuu%2FvMitXY1QUCNs9Deq9foKF0AI%2Fv%2F9etUE9o6hPFtj9l6DBf0WPRG7b4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75eccf5358210b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
leafy-youtiao-35d5eb.netlify.app/chatogolny
35.246.229.114200 OK 411 B URL HTTP/2 leafy-youtiao-35d5eb.netlify.app/chatogolny
IP 35.246.229.114:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document, ASCII text, with very long lines (411), with no line terminators
Hash ca981e3ea4da8da924eebb756f833bd3
c2dc052378c25c1092a80efdfabfa9b8b94af20c
9819316e138b983b930f6813605d302594d931be9875fcb693ed9fcbcd090f7f
GET /chatogolny HTTP/1.1
Host: leafy-youtiao-35d5eb.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://leafy-youtiao-35d5eb.netlify.app/chat.html
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
age: 260
cache-control: public, max-age=0, must-revalidate
content-type: text/html; charset=UTF-8
date: Sun, 23 Oct 2022 19:12:35 GMT
etag: "f72d066d02ad073720fd9684ce917247-ssl"
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01GG34DM4NAHT5W5GKACZQKB5P
content-length: 411
X-Firefox-Spdy: h2
unpkg.com/ionicons@5.5.2/dist/ionicons/svg/chevron-forward-outline.svg
104.16.125.175200 OK 512 B URL HTTP/2 unpkg.com/ionicons@5.5.2/dist/ionicons/svg/chevron-forward-outline.svg
IP 104.16.125.175:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with no line terminators
Hash 2d71687cc9f629f445a59f8426e8d173
9c2a85122cf004497d52b657644d9aac12b428f1
ccec2906d4324328a4539f2ebfc3b8f631996a68cc01732e05a3a9bfc65ec0a0
GET /ionicons@5.5.2/dist/ionicons/svg/chevron-forward-outline.svg HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Origin: https://leafy-youtiao-35d5eb.netlify.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:16:55 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"f1-h9+tSXpNpuxOgA8dW44M4kqrGW0"
via: 1.1 fly.io
fly-request-id: 01G4XHW4PDKGXAH2KKM40962VN-fra
cf-cache-status: HIT
age: 11998386
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75eccf53e8bf0b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash da84fc26ca098586112be27770c613f4
be991e13740e32a1215dce2c11eb502db246ca27
97aded9adac8774c1d863797c324a2a2ea33dfefdf6ec3d21daf36c395a93849
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "97ADED9ADAC8774C1D863797C324A2A2EA33DFEFDF6EC3D21DAF36C395A93849"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4042
Expires: Sun, 23 Oct 2022 20:24:17 GMT
Date: Sun, 23 Oct 2022 19:16:55 GMT
Connection: keep-alive
i.imgur.com/dLdD9Qg.png
151.101.84.193200 OK 106 kB IP 151.101.84.193:0
File type PNG image data, 357 x 357, 8-bit/color RGBA, non-interlaced\012- data
Size 106 kB (105938 bytes)
Hash f1a6cc7bcf2d3251436fd6cdbd9d16ea
2123612990821f76b0944dd814d25d5d3d0cb1f0
26acd8214a74a7cda38beb9b7e6a7e413f3ef083b8db8de3182581e1e92dea3a
GET /dLdD9Qg.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 31 Jan 2021 19:53:42 GMT
etag: "f1a6cc7bcf2d3251436fd6cdbd9d16ea"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Sun, 23 Oct 2022 19:16:55 GMT
age: 2277539
x-served-by: cache-iad-kiad7000054-IAD, cache-bma1682-BMA
x-cache: HIT, HIT
x-cache-hits: 646, 11
x-timer: S1666552615.064785,VS0,VE0
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 105938
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash da84fc26ca098586112be27770c613f4
be991e13740e32a1215dce2c11eb502db246ca27
97aded9adac8774c1d863797c324a2a2ea33dfefdf6ec3d21daf36c395a93849
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "97ADED9ADAC8774C1D863797C324A2A2EA33DFEFDF6EC3D21DAF36C395A93849"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4042
Expires: Sun, 23 Oct 2022 20:24:17 GMT
Date: Sun, 23 Oct 2022 19:16:55 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9df9c34575c03ec530ea084651414b91
a2a6e155555b2b2239226cc8993bfbcc307a4f9e
c78f3bf432378384fa6666fd8840bd7f44bdd944893976e24fb03b5b99c89e31
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5812
Cache-Control: max-age=111396
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:16:55 GMT
Etag: "63548c97-1d7"
Expires: Tue, 25 Oct 2022 02:13:31 GMT
Last-Modified: Sun, 23 Oct 2022 00:36:39 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 23 Oct 2022 18:41:09 GMT
expires: Sun, 23 Oct 2022 20:41:09 GMT
cache-control: public, max-age=7200
age: 2146
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4472f11753642d42ee0b48acaa21f595
98b892ab10c08dc3ef46c4d38e9df07fffb51489
495d9a65e08bf39b76803df8091db038087c9c0cc6fab7c0d6e4396024292ba2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:16:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4472f11753642d42ee0b48acaa21f595
98b892ab10c08dc3ef46c4d38e9df07fffb51489
495d9a65e08bf39b76803df8091db038087c9c0cc6fab7c0d6e4396024292ba2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:16:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ofthecathedral.xyz/utx?cb=6xrYAEUw7PM5&top=leafy-youtiao-35d5eb.netlify.app&tid=795152
143.204.55.22204 No Content 0 B URL HTTP/2 ofthecathedral.xyz/utx?cb=6xrYAEUw7PM5&top=leafy-youtiao-35d5eb.netlify.app&tid=795152
IP 143.204.55.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utx?cb=6xrYAEUw7PM5&top=leafy-youtiao-35d5eb.netlify.app&tid=795152 HTTP/1.1
Host: ofthecathedral.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://leafy-youtiao-35d5eb.netlify.app
Connection: keep-alive
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 23 Oct 2022 19:16:55 GMT
server: openresty/1.17.8.2
access-control-allow-credentials: true
access-control-allow-origin: https://leafy-youtiao-35d5eb.netlify.app
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: ut=x; Expires=Sun, 23 Oct 2022 19:17:55 GMT; Max-Age=60
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
x-cache: Miss from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vOwRwLu-pJT-nZ-z0n41LtZHQookpJyRj4tA0wnNG23vxXVmypgIQw==
X-Firefox-Spdy: h2
unpkg.com/ionicons@5.5.2/dist/ionicons/svg/chevron-back-outline.svg
104.16.125.175200 OK 165 B URL HTTP/2 unpkg.com/ionicons@5.5.2/dist/ionicons/svg/chevron-back-outline.svg
IP 104.16.125.175:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with no line terminators
Hash c50604c70b05a6ee30d2241aa55c151d
f3cbaef3513ee5ffa75384263da1546e87729f1d
99bd3605631dde3299780c0b41e7995d988d8e745afa27e531b34b8d44a1ad48
GET /ionicons@5.5.2/dist/ionicons/svg/chevron-back-outline.svg HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Origin: https://leafy-youtiao-35d5eb.netlify.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:16:55 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"ee-VK5VCXDIgHvVYA9867YAYNdfJgA"
via: 1.1 fly.io
fly-request-id: 01G4XHVT8KC575WMMN5W3CPQCW-fra
cf-cache-status: HIT
age: 11998386
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75eccf53d89e0b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
dba9ytko5p72r.cloudfront.net/uZ2dhb2cECA8JWBMOBVJeVVJVWldBDRIACRdaKAMDDy8OHS0xFFZJEx0DXF9BCwYPCFpBAg8MWlZBAAsFWlNHGxcIDFwVCQoCDgIKDB8OSRIGWgwAHQ4LDQ5CVSFUQVdCVVFHH1ZWRFwlQlVRAw4JEhlKVVcfWVk4UVNEXCVCVVEdEUJUIFZRSVdISlVXAA-QMDAhCUylVV1ZRX1ZXVkRdVwEOEwoBCB9EXSFeUU9fQRJaUA
143.204.42.187200 OK 593 B URL HTTP/2 dba9ytko5p72r.cloudfront.net/uZ2dhb2cECA8JWBMOBVJeVVJVWldBDRIACRdaKAMDDy8OHS0xFFZJEx0DXF9BCwYPCFpBAg8MWlZBAAsFWlNHGxcIDFwVCQoCDgIKDB8OSRIGWgwAHQ4LDQ5CVSFUQVdCVVFHH1ZWRFwlQlVRAw4JEhlKVVcfWVk4UVNEXCVCVVEdEUJUIFZRSVdISlVXAA-QMDAhCUylVV1ZRX1ZXVkRdVwEOEwoBCB9EXSFeUU9fQRJaUA
IP 143.204.42.187:0
File type ASCII text, with very long lines (835), with no line terminators
Hash 3433ebc0c32ac3e88d837bb015551a86
f7d33196d6c3a5132a666e1894c7a288323994a3
ceb21ddfbb5f1b9715884ba1001e953c1a5a617d769f14928f4a33ba1a6aa1e5
GET /uZ2dhb2cECA8JWBMOBVJeVVJVWldBDRIACRdaKAMDDy8OHS0xFFZJEx0DXF9BCwYPCFpBAg8MWlZBAAsFWlNHGxcIDFwVCQoCDgIKDB8OSRIGWgwAHQ4LDQ5CVSFUQVdCVVFHH1ZWRFwlQlVRAw4JEhlKVVcfWVk4UVNEXCVCVVEdEUJUIFZRSVdISlVXAA-QMDAhCUylVV1ZRX1ZXVkRdVwEOEwoBCB9EXSFeUU9fQRJaUA HTTP/1.1
Host: dba9ytko5p72r.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofthecathedral.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 593
date: Sun, 23 Oct 2022 19:16:55 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Nox6GPqYD4zhHlJmk0jSi1VPk6580VLgz7S0AbiqmfxDs3UGctAE8Q==
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash da84fc26ca098586112be27770c613f4
be991e13740e32a1215dce2c11eb502db246ca27
97aded9adac8774c1d863797c324a2a2ea33dfefdf6ec3d21daf36c395a93849
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "97ADED9ADAC8774C1D863797C324A2A2EA33DFEFDF6EC3D21DAF36C395A93849"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4042
Expires: Sun, 23 Oct 2022 20:24:17 GMT
Date: Sun, 23 Oct 2022 19:16:55 GMT
Connection: keep-alive
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
216.58.207.237302 Found 397 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
IP 216.58.207.237:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (382)
Hash f6a2e04f655cecc934409bfa7dcd786c
e4fff5fcde71ab11d68d3324d9f94f15a44f993a
cf8140ff198284614e81c23c8077a45fd0da4aafdbef20d4726c04dc8e08caaa
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 23 Oct 2022 19:16:55 GMT
location: https://accounts.google.com/v3/signin/identifier?dsh=S2063942177%3A1666552615218277&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AQDHYWphTbWGU3dUel-2DwCJN3VN-tA0IhjL4by27niKJKzdR3gryRwWPIs5QErcU7BEMC0Ie7lb
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-vxV12uVUMzoikrqmBMKR3g' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 397
server: GSE
set-cookie: __Host-GAPS=1:KWowV1eN0x-ik9O8XduBxe7qgi2klA:VJfHjxZsXbNai3xV;Path=/;Expires=Tue, 22-Oct-2024 19:16:55 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pogothere.xyz/asd100.bin
104.21.86.231200 OK 102 kB IP 104.21.86.231:0
Size 102 kB (102402 bytes)
Hash d0d86828ef4b4417759ae4717c334d36
e3a54a7be187f4d22761b64b9a595f506eb7396c
53abb020b93f189717b7f94ba3529024ca11a9366fbb1150b3924ba0a968fb71
GET /asd100.bin HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Origin: https://leafy-youtiao-35d5eb.netlify.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:16:55 GMT
content-type: binary/octet-stream
access-control-allow-origin: https://leafy-youtiao-35d5eb.netlify.app
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cache-control: max-age=14400
cf-cache-status: HIT
age: 255
last-modified: Sun, 23 Oct 2022 19:12:40 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IW4uwYGhfhbiCJXck7S5wUoTo9TM5NOIgsnYXsc%2Fn9C3UDn62ngCUVBNrcKsTleIkSDDuY3hrr7bcx7SIvYijyVg9boFFkLRIWh59WUDqlcDff59KO7E4jGZ84hfZddT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75eccf54afc8b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dba9ytko5p72r.cloudfront.net/?tyabd=795152
143.204.42.187200 OK 116 kB URL HTTP/2 dba9ytko5p72r.cloudfront.net/?tyabd=795152
IP 143.204.42.187:0
File type Unicode text, UTF-8 text, with very long lines (15945)
Size 116 kB (115843 bytes)
Hash 315e02a8e240c6ee0cfdcb40d69465b9
9632e7ee5c0db6dd2b9579ca4f252f68e8f193ca
16bc13d46b507c7bd2905aabafe9dad3be42965bd8abeadfc961643d87486b2d
GET /?tyabd=795152 HTTP/1.1
Host: dba9ytko5p72r.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Origin: https://leafy-youtiao-35d5eb.netlify.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 115843
date: Sun, 23 Oct 2022 19:16:55 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://leafy-youtiao-35d5eb.netlify.app
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Miss from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JbQ3Trw3y6T5sfO8XyEKCJvtV8jzhbunJsFYNJidMRzl2vAVxdfj5A==
X-Firefox-Spdy: h2
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
216.58.207.237302 Found 391 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
IP 216.58.207.237:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (378)
Hash 91d28ef3b4dd07b294b5da47a6b16345
b9cff5ef7a57fe744ef3ca51256706d99fec0d34
95ea63e2730d5f3582d96d6f280b13383efe0dddec41267f239f705d02ccc5a0
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 23 Oct 2022 19:16:55 GMT
location: https://accounts.google.com/v3/signin/identifier?dsh=S1459799964%3A1666552615230005&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AQDHYWoIa01Li3i18i-JZjuYWFj04sDAmI4Gu3pumcCudM_K11rFEZsaJyXFz9ouvYyEKCo4oCRC
strict-transport-security: max-age=31536000; includeSubDomains
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-T0RU8iQbwJpnb4L-SA4Nfg' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 391
server: GSE
set-cookie: __Host-GAPS=1:xYEbbU0psEUD0lzD4ieFl4OIbe19BQ:opOm-m82witFf5WQ;Path=/;Expires=Tue, 22-Oct-2024 19:16:55 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dba9ytko5p72r.cloudfront.net/tYTAySUUCX1wvehVZVnR9WQQAfnFHWkEmKxENcCIsO0J3KhNVYRQ9PwUNAm8pAF5VdGMEXlF0dEdRVit4VRZHKHgMX0ggKQ1RF3sDVB4CbHdRGEp4dEQDcGx3UVxbJzAZFQB5PVkGbX9xRANwbHdRQkRsdiAJBGd1SBUAeSIEU1kmYFN2AHl0UQADeXREAg-IvLBNVVCY9RAJ0cHNPABQ8eFA
143.204.42.187200 OK 185 B URL HTTP/2 dba9ytko5p72r.cloudfront.net/tYTAySUUCX1wvehVZVnR9WQQAfnFHWkEmKxENcCIsO0J3KhNVYRQ9PwUNAm8pAF5VdGMEXlF0dEdRVit4VRZHKHgMX0ggKQ1RF3sDVB4CbHdRGEp4dEQDcGx3UVxbJzAZFQB5PVkGbX9xRANwbHdRQkRsdiAJBGd1SBUAeSIEU1kmYFN2AHl0UQADeXREAg-IvLBNVVCY9RAJ0cHNPABQ8eFA
IP 143.204.42.187:0
File type ASCII text, with no line terminators
Hash dbc323009e6d166e98fe7bb191638da8
e3251162c26e5a21f4de2a734543827e93934bb6
e03a07397815c3602d933f7349a072a6ca32c382c21bf7658c6a63e4a007c60f
GET /tYTAySUUCX1wvehVZVnR9WQQAfnFHWkEmKxENcCIsO0J3KhNVYRQ9PwUNAm8pAF5VdGMEXlF0dEdRVit4VRZHKHgMX0ggKQ1RF3sDVB4CbHdRGEp4dEQDcGx3UVxbJzAZFQB5PVkGbX9xRANwbHdRQkRsdiAJBGd1SBUAeSIEU1kmYFN2AHl0UQADeXREAg-IvLBNVVCY9RAJ0cHNPABQ8eFA HTTP/1.1
Host: dba9ytko5p72r.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofthecathedral.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 185
date: Sun, 23 Oct 2022 19:16:55 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: l1vZ7jmKRxG9-16o4Uv4DT0GdvAhlqDBq9cPmJn1oSRuW2FMuO74BA==
X-Firefox-Spdy: h2
dba9ytko5p72r.cloudfront.net/Na0FJUW0ILic3Uh8oLWxaUnR4ZF9NKzo+Axt8LgUKPTsoaCk7Jn9iDxt4byUXD3x5dwEKLy5sSw4vKmxcTSAtM1BfZz0hAgB8Mz8ADi4kPAYTLm8kDFYsJisEBy0odF8tdGdhSFlxYSlcWmR6E0hZcSU4Ax45bGNdE3l/DltfZHoTSFlxOydIWABwZ0NbaG-xjXQwkKjoCTnMPY11acXlgXVpke2ELAjMsNwITZHsXVF1veXcYVnA
143.204.42.187200 OK 582 B URL HTTP/2 dba9ytko5p72r.cloudfront.net/Na0FJUW0ILic3Uh8oLWxaUnR4ZF9NKzo+Axt8LgUKPTsoaCk7Jn9iDxt4byUXD3x5dwEKLy5sSw4vKmxcTSAtM1BfZz0hAgB8Mz8ADi4kPAYTLm8kDFYsJisEBy0odF8tdGdhSFlxYSlcWmR6E0hZcSU4Ax45bGNdE3l/DltfZHoTSFlxOydIWABwZ0NbaG-xjXQwkKjoCTnMPY11acXlgXVpke2ELAjMsNwITZHsXVF1veXcYVnA
IP 143.204.42.187:0
File type ASCII text, with very long lines (803), with no line terminators
Hash f653c1f654a215b201dc36a2b8136293
d69fa1a72edd91098c2556bbe0a33c142acc1ce7
d4803c85477286205d8455a949fcc17206654a390b63412204ef7a8ea94d2019
GET /Na0FJUW0ILic3Uh8oLWxaUnR4ZF9NKzo+Axt8LgUKPTsoaCk7Jn9iDxt4byUXD3x5dwEKLy5sSw4vKmxcTSAtM1BfZz0hAgB8Mz8ADi4kPAYTLm8kDFYsJisEBy0odF8tdGdhSFlxYSlcWmR6E0hZcSU4Ax45bGNdE3l/DltfZHoTSFlxOydIWABwZ0NbaG-xjXQwkKjoCTnMPY11acXlgXVpke2ELAjMsNwITZHsXVF1veXcYVnA HTTP/1.1
Host: dba9ytko5p72r.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ofthecathedral.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 582
date: Sun, 23 Oct 2022 19:16:55 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: KoFHn70kqbuy7lU0ujsYSq0oM-5ocxBiWSoJ8hMcHIIydM3059Hyxg==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 924935dfe678e1cafb56906ef15defec
063dc4e38a869415d29ff059c0e173966c0c96dd
12045f462e3aa1fa3d2c97f1c3c67951dedc6410db5ce75c1907de5beff81bf4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:16:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9df9c34575c03ec530ea084651414b91
a2a6e155555b2b2239226cc8993bfbcc307a4f9e
c78f3bf432378384fa6666fd8840bd7f44bdd944893976e24fb03b5b99c89e31
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5812
Cache-Control: max-age=111396
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:16:55 GMT
Etag: "63548c97-1d7"
Expires: Tue, 25 Oct 2022 02:13:31 GMT
Last-Modified: Sun, 23 Oct 2022 00:36:39 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.39.126.109101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.126.109:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 9gGs1eD5PGome415mfXDgg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 5aowAvD6R7NZjOgS8FxHnHl2RFY=
accounts.google.com/v3/signin/identifier?dsh=S1459799964%3A1666552615230005&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AQDHYWoIa01Li3i18i-JZjuYWFj04sDAmI4Gu3pumcCudM_K11rFEZsaJyXFz9ouvYyEKCo4oCRC
216.58.207.237403 Forbidden 806 B URL HTTP/2 accounts.google.com/v3/signin/identifier?dsh=S1459799964%3A1666552615230005&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AQDHYWoIa01Li3i18i-JZjuYWFj04sDAmI4Gu3pumcCudM_K11rFEZsaJyXFz9ouvYyEKCo4oCRC
IP 216.58.207.237:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (1644), with no line terminators
Hash 82d70f6a63a8faa3b615b9e755227714
0684dbbdabd525fb7ef290d7d919a791ce58740a
04ffeb9c19d5be209075e8b7eb60af658957739ba9a4e3d777c59e3b5fd7c580
GET /v3/signin/identifier?dsh=S1459799964%3A1666552615230005&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AQDHYWoIa01Li3i18i-JZjuYWFj04sDAmI4Gu3pumcCudM_K11rFEZsaJyXFz9ouvYyEKCo4oCRC HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 23 Oct 2022 19:16:55 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin
content-security-policy: script-src 'nonce-FaRRQFkNKGB3OslqUqAJmw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e082919080a1a229ac3eec9b7b857933
a5847abc620bd00e87afda17746b0a590e0c9464
ca7fa279357206e9e419d5b80281cc14bc5666b20ef262560dea86d31132c729
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:16:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-128182457-1&cid=623030695.1666552615&jid=213347069&gjid=1704308213&_gid=1733071206.1666552615&_u=YEBAAUAAAAAAACAAI~&z=1589095327
173.194.222.156200 OK 64 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-128182457-1&cid=623030695.1666552615&jid=213347069&gjid=1704308213&_gid=1733071206.1666552615&_u=YEBAAUAAAAAAACAAI~&z=1589095327
IP 173.194.222.156:0
Hash 19564fef5330ea4baaf9e43637154cbf
124ba4c156d5d3b79b3de2d49b7f091a61ab05b4
d55421b9afdc00771d0fef0b5bc00e998b647dd3a022f27603ac10b62d4ee6eb
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-128182457-1&cid=623030695.1666552615&jid=213347069&gjid=1704308213&_gid=1733071206.1666552615&_u=YEBAAUAAAAAAACAAI~&z=1589095327 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://leafy-youtiao-35d5eb.netlify.app
Connection: keep-alive
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://leafy-youtiao-35d5eb.netlify.app
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 23 Oct 2022 19:16:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e082919080a1a229ac3eec9b7b857933
a5847abc620bd00e87afda17746b0a590e0c9464
ca7fa279357206e9e419d5b80281cc14bc5666b20ef262560dea86d31132c729
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:16:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash a6550eb9d952c10cb392c8f7ff305df3
a45ba8e7092d185ba8f323cfa6a226b1aa000362
cbd80ad8e92dac11e8ae9d99881bc01d460ef7eb66e8cdec94759053f8dd4a72
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 23 Oct 2022 19:16:56 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 22 Oct 2022 06:12:20 GMT
Expires: Sat, 29 Oct 2022 06:12:19 GMT
Etag: "a45ba8e7092d185ba8f323cfa6a226b1aa000362"
Cache-Control: max-age=470722,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75eccf5af8ab0b55-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash a6550eb9d952c10cb392c8f7ff305df3
a45ba8e7092d185ba8f323cfa6a226b1aa000362
cbd80ad8e92dac11e8ae9d99881bc01d460ef7eb66e8cdec94759053f8dd4a72
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 23 Oct 2022 19:16:56 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 22 Oct 2022 06:12:20 GMT
Expires: Sat, 29 Oct 2022 06:12:19 GMT
Etag: "a45ba8e7092d185ba8f323cfa6a226b1aa000362"
Cache-Control: max-age=470722,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75eccf5a6b731c06-OSL
st.chatango.com/js/gz/emb.js
208.93.230.26200 OK 24 kB URL HTTP/1.1 st.chatango.com/js/gz/emb.js
IP 208.93.230.26:0
File type ASCII text, with very long lines (1651)
Hash 43a6e3a24c5f6d710f01cd9ea166bedf
2b172372c84de07111687133d38ecaee8a15c99e
65878e1003da0b2d589980ebda0a59206831ff7e8be7747532c4080e35c600d7
GET /js/gz/emb.js HTTP/1.1
Host: st.chatango.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 23 Oct 2022 19:16:56 GMT
Content-Type: application/x-javascript
Content-Length: 23804
Last-Modified: Wed, 17 Aug 2022 23:45:11 GMT
Connection: keep-alive
Expires: Sun, 23 Oct 2022 19:16:56 GMT
Cache-Control: max-age=0
Content-Encoding: gzip
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f1b833a135e4d839859e4994f349bb6c
399b607015c4d9200df20084c7396591007dc995
28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2288
Expires: Sun, 23 Oct 2022 19:55:04 GMT
Date: Sun, 23 Oct 2022 19:16:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f1b833a135e4d839859e4994f349bb6c
399b607015c4d9200df20084c7396591007dc995
28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2288
Expires: Sun, 23 Oct 2022 19:55:04 GMT
Date: Sun, 23 Oct 2022 19:16:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f1b833a135e4d839859e4994f349bb6c
399b607015c4d9200df20084c7396591007dc995
28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2288
Expires: Sun, 23 Oct 2022 19:55:04 GMT
Date: Sun, 23 Oct 2022 19:16:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f1b833a135e4d839859e4994f349bb6c
399b607015c4d9200df20084c7396591007dc995
28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2288
Expires: Sun, 23 Oct 2022 19:55:04 GMT
Date: Sun, 23 Oct 2022 19:16:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f1b833a135e4d839859e4994f349bb6c
399b607015c4d9200df20084c7396591007dc995
28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2288
Expires: Sun, 23 Oct 2022 19:55:04 GMT
Date: Sun, 23 Oct 2022 19:16:56 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7a675ac-f55a-4071-867b-fffb2f9fabed.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7a675ac-f55a-4071-867b-fffb2f9fabed.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4df9a6ab2e2874f46f9a26da129ae848
c4c9898711e33fb02374657dd18df8a41c78b4cb
e287d1b63e7644767f573e248f28ee610b2625691e5d42006c0595f7281a07d7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7a675ac-f55a-4071-867b-fffb2f9fabed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7762
x-amzn-requestid: 5c275a39-95dc-4329-9483-44ca93719be2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aO1dKGS5oAMFR3g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634f6920-2b700b217832bcd257e0f619;Sampled=0
x-amzn-remapped-date: Wed, 19 Oct 2022 03:04:00 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ShsGMLBfS7cs-LpXBQPQHWvf2ppuoPPIEVMDmaEjrGgoSHbz2z03Mg==
via: 1.1 d2575afea3774df33dcf5e5ff475025e.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 06:27:20 GMT
age: 46176
etag: "c4c9898711e33fb02374657dd18df8a41c78b4cb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0856e94c-65e7-489a-95b5-cc37407bf90f.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0856e94c-65e7-489a-95b5-cc37407bf90f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 208445a6f07a7259b8a420c062a81998
50d9f1642c3c47504fb2d4086a40ae8fb9479b50
607a81c5d0210faaa103d09fba1e0b9dde333c5142969272b0b5351a779acfa4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0856e94c-65e7-489a-95b5-cc37407bf90f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12031
x-amzn-requestid: b15d6e4e-4880-4686-80c1-ba49f705631c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aFgJtHZHoAMFsMA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634bad71-3ef572702125f3b32ceece12;Sampled=0
x-amzn-remapped-date: Sun, 16 Oct 2022 07:06:25 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lH9TBIbvcDBvZlMi2a8yZ2iRcGCwJ7P0QoVvLVAjkCsVExNMi_UlRw==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 10:35:08 GMT
age: 31308
etag: "50d9f1642c3c47504fb2d4086a40ae8fb9479b50"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f0cea17-2f8e-4f01-bdfc-54051ca7d7dd.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f0cea17-2f8e-4f01-bdfc-54051ca7d7dd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b3a1ed5537b0d648ce6e0ecb427a3230
2f85566b25b22ee703ba5348bce25434c83c69de
d35b1e39b8c6f1adc029eea8f3ffc911426aa49a87261fdb33a770e21ced69ec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f0cea17-2f8e-4f01-bdfc-54051ca7d7dd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9549
x-amzn-requestid: e1054150-7691-4446-bc6e-91a4fdccbdc2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aIvfRH0oIAMFkJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634cf92e-41bd300b1693ad1b18368e22;Sampled=0
x-amzn-remapped-date: Mon, 17 Oct 2022 06:41:50 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: K6VXPlJ0Qt62p1uo0MMuDyOG6x6PwGx7nOYNZUTPXF-4cFoHm1ZhLw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 09:13:57 GMT
age: 36179
etag: "2f85566b25b22ee703ba5348bce25434c83c69de"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47c95e4a-b411-4326-8723-bceab59b6d74.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47c95e4a-b411-4326-8723-bceab59b6d74.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7fa30ef7eff515cfddf2f3b7ee67eb85
b488761c8ce781a44dcaf2e515ef548480dcd1bc
47c0e8ea9ef52c5d45dca54eb251d89983fba9937b7cf7872b065de04786f6ef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47c95e4a-b411-4326-8723-bceab59b6d74.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8109
x-amzn-requestid: 39c9edcc-ea64-443e-82b3-230e41edbcb4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aFhHBG_HoAMF7Ug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634baef9-7d6e66cd2012a3e8607f0d28;Sampled=0
x-amzn-remapped-date: Sun, 16 Oct 2022 07:12:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BqGXfTDNR6-sNzqh1nIScjC2v2TCyOp0wY8AIXaKY3FdT4VH3ckBdw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 00:13:12 GMT
age: 68624
etag: "b488761c8ce781a44dcaf2e515ef548480dcd1bc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F412682e9-14c9-40e4-bfec-f73f656f5e10.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F412682e9-14c9-40e4-bfec-f73f656f5e10.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 37143b9d51a289f11607b6b0f9ba534a
4b5e283e4397985f837ab28d94c167ddfdb26c7c
d664702a83cac4eaee1710fd03ca41e35d62ae699224490367e605b529e45566
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F412682e9-14c9-40e4-bfec-f73f656f5e10.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5348
x-amzn-requestid: d44ded7c-15b6-4c30-a810-4af1edbb9bc3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aPYYZEnboAMFcMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634fa102-6bdd3c1a2fa437b106f8ea79;Sampled=0
x-amzn-remapped-date: Wed, 19 Oct 2022 07:02:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: dx2yJ8T_lM1OMR3h0DUtiV359392U2UyReU6hi4tOxxbvFR0iZ_kAg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 10:33:33 GMT
age: 31403
etag: "4b5e283e4397985f837ab28d94c167ddfdb26c7c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd337e0f9-4135-4fa1-9843-c609356020a9.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd337e0f9-4135-4fa1-9843-c609356020a9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bcadefe69587d4ab5bf5ff9e71eb5cab
066fb94a6ae38e57d67001cc319eea17f837d511
45b175a2cecee90b2d0efc16c4139686ffcf34bfac9084fe9e5e1c926dc1330c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd337e0f9-4135-4fa1-9843-c609356020a9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10036
x-amzn-requestid: b1f0e0b9-6fc6-4b7c-a9b0-55845cdfd2d9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: abR9aEvjIAMF22Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63546388-72742b3a1279d76e2e842930;Sampled=0
x-amzn-remapped-date: Sat, 22 Oct 2022 21:41:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 90q23XmFTygl90mCmT8p2Qi7BY2K2gjg3apZpTreMxYFpgT-716CDg==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sat, 22 Oct 2022 21:50:45 GMT
age: 77171
etag: "066fb94a6ae38e57d67001cc319eea17f837d511"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
st.chatango.com/h5/gz/r0817221641/id.html
208.93.230.26200 OK 224 kB URL HTTP/1.1 st.chatango.com/h5/gz/r0817221641/id.html
IP 208.93.230.26:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (54430), with CRLF, LF line terminators
Size 224 kB (224127 bytes)
Hash fc3ae4d65fdfcf6587ee0fd2e6341ca1
29b97c7cfc4081d173d28c84c774bc3ce891724d
b0a40dcfdea8674321e505dac154350a1bb1ef6067670208b02b6e4bd874f3a9
GET /h5/gz/r0817221641/id.html HTTP/1.1
Host: st.chatango.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 23 Oct 2022 19:16:56 GMT
Content-Type: text/html
Content-Length: 224127
Last-Modified: Wed, 17 Aug 2022 23:45:11 GMT
Connection: keep-alive
Expires: Mon, 23 Oct 2023 19:16:56 GMT
Cache-Control: max-age=31536000
Content-Encoding: gzip
P3P: CP="Chatango does not have a P3P policy. Please see our privacy policy: http://chatango.com/page?full_privacy"
Accept-Ranges: bytes
cdn.taboola.com/libtrc/chatango-network/loader.js
151.101.85.44200 OK 21 kB URL HTTP/2 cdn.taboola.com/libtrc/chatango-network/loader.js
IP 151.101.85.44:0
File type ASCII text, with very long lines (65509)
Hash bd8d53a05c99ccfcf7f261ce74e58be5
ee3ce78ec4239690d9f3e77cdb58e73c7ac31886
50b63384b7893238034f3dc9cc7b454f68ee95b70464f3c6ddc534d8c54db4a6
GET /libtrc/chatango-network/loader.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: t5b3u9D0Wo8dHGoxhc7WscerZ+G7nltLtP8CIl5jTunXZn2a2lQlI5YlNxINupu0m9QmoJUss3I=
x-amz-request-id: ZND78YQJPMVBNNFW
last-modified: Sun, 23 Oct 2022 09:42:28 GMT
etag: "406ed629ceae19bf9445defc8de795b5"
x-amz-version-id: gXPJYl108fpoF3YIXMFBpUaPvKpz2DPA
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Sun, 23 Oct 2022 19:16:57 GMT
via: 1.1 varnish
age: 101
x-served-by: cache-bma1663-BMA
x-cache: HIT
x-cache-hits: 6
x-timer: S1666552618.743877,VS0,VE0
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 48
content-length: 21229
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/impl.20221023-7-RELEASE.js
151.101.85.44200 OK 146 kB URL HTTP/2 cdn.taboola.com/libtrc/impl.20221023-7-RELEASE.js
IP 151.101.85.44:0
File type ASCII text, with very long lines (65509)
Size 146 kB (145803 bytes)
Hash e60de5b136f58ab0a60690b60faddfa8
764afa0d1580a74f16e22a795955d7924f9fa1fd
ce33c6297873ba48831bcc69aa213b437ed24ec361f7d6aa33cefb47e21dce30
GET /libtrc/impl.20221023-7-RELEASE.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: Xvqe8AUD61ZCGpWu74XUO7PyN1QJXTNgTeUP8/t8M2WWCgzSecE1pP3cos7RRq2tsucS+iopq/I=
x-amz-request-id: HXRVNVGTDWATCQJ5
last-modified: Sun, 23 Oct 2022 09:05:26 GMT
etag: "e60de5b136f58ab0a60690b60faddfa8"
content-encoding: br
x-amz-version-id: HcRdioL37RdyD1nzIMYb96HfXQofd2Ti
content-type: application/javascript
accept-ranges: bytes
date: Sun, 23 Oct 2022 19:16:57 GMT
via: 1.1 varnish
age: 7526
x-served-by: cache-bma1663-BMA
x-cache: HIT
x-cache-hits: 5198
x-timer: S1666552618.894139,VS0,VE0
cache-control: private,max-age=31536000
vary: Accept-Encoding
abp: 91
server: AmazonS3-br
content-length: 145803
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash ad989f1caf2f7b9a5b17b800bf97c0cd
45413ae8154042954eee18d5ec6c9a30457c1ae2
7684954b0289f7e1d3a4400c4cd57d81cd0c5b0179698ddd5c26e30d317269d2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6112
Cache-Control: max-age=117449
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:16:58 GMT
Etag: "6354a313-13a"
Expires: Tue, 25 Oct 2022 03:54:27 GMT
Last-Modified: Sun, 23 Oct 2022 02:12:35 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 314
sb.scorecardresearch.com/beacon.js
54.230.111.7200 OK 1.9 kB URL HTTP/2 sb.scorecardresearch.com/beacon.js
IP 54.230.111.7:0
File type ASCII text, with very long lines (3936)
Hash ccbe1595614949962ea0f4c9ec84e783
65525e8918223db782724d28fce74efb513a0fb0
f422f26d9197a10abf1a13a13a87a5fcc4b98ad57aae11fadfddf2df02b591f5
GET /beacon.js HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 13:19:23 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Sun, 23 Oct 2022 01:06:15 GMT
cache-control: max-age=86400
etag: W/"eaf85c1c6758e84acfe134efd70e9373"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qjwhaeHP5HhbUsPUdZMONz5LkOw4rCXHcheDWJDkHQeBN2krHDXWrQ==
age: 65673
X-Firefox-Spdy: h2
ust.chatango.com/groupinfo/s/t/strimiworld/gprofile.xml
208.93.230.24200 OK 57 B URL HTTP/1.1 ust.chatango.com/groupinfo/s/t/strimiworld/gprofile.xml
IP 208.93.230.24:0
File type XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with no line terminators
Hash 75cd495a20073e6036616edbe0732990
54f9fc13ca1d7cbbf7c75b8ebd4e3e1ba6ba8e68
fc866559091221e234b06cf006060f827e92a25be843f97cc85e6f422fb21903
GET /groupinfo/s/t/strimiworld/gprofile.xml HTTP/1.1
Host: ust.chatango.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://st.chatango.com
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 23 Oct 2022 19:16:58 GMT
Content-Type: text/xml
Content-Length: 57
Last-Modified: Tue, 26 Oct 2021 22:16:54 GMT
Connection: keep-alive
ETag: "61787e56-39"
Expires: Sun, 23 Oct 2022 19:16:58 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 293aef73ed556f6b68b055473832cae2
946a41f06a31e4ca37f81d900616be13ef43a749
1d788765b519775588fc59b82a19b3d1d689f9a8a21b7551573d4f7d31108bd9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2363
Cache-Control: max-age=116949
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:16:58 GMT
Etag: "6354afc4-138"
Expires: Tue, 25 Oct 2022 03:46:07 GMT
Last-Modified: Sun, 23 Oct 2022 03:06:44 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash c13213af96fc5bafa37593a161bd96d4
2a292020f5a4fcd04444d1ce6a1b393bafff82c9
d5cb2d8846a89b70e0d87a7eb516efdcd739ea12b243b0bca12acf4eeb7cd2a2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4453
Cache-Control: max-age=140285
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:16:58 GMT
Etag: "635502c2-139"
Expires: Tue, 25 Oct 2022 10:15:03 GMT
Last-Modified: Sun, 23 Oct 2022 09:00:50 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash c13213af96fc5bafa37593a161bd96d4
2a292020f5a4fcd04444d1ce6a1b393bafff82c9
d5cb2d8846a89b70e0d87a7eb516efdcd739ea12b243b0bca12acf4eeb7cd2a2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4453
Cache-Control: max-age=140285
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:16:58 GMT
Etag: "635502c2-139"
Expires: Tue, 25 Oct 2022 10:15:03 GMT
Last-Modified: Sun, 23 Oct 2022 09:00:50 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 313
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:16:58 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=rlfDPl80M0RITmhlJTJCZkMwOUJGQlhaMUN2czBHcWlMYTdWJTJCNTBWcGlpUzR2NE1MdGt3aVVTOXpOekwlMkJiUmV2aGpWdHNG; expires=Fri, 17 Nov 2023 19:16:58 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 194237
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.2.146200 OK 462 B IP 178.250.2.146:0
File type JSON data\012- , ASCII text, with very long lines (528), with no line terminators
Hash efd7991a3e56c36134a716d82eb3caa7
aaf7ceae26d2b8324d2afc8697d7cbcea01cd1d5
bb9d685f9fe3fe22e3450c40c5d8fa1a7a2ef8243e0e54bae24c3ce0db956d31
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=rlfDPl80M0RITmhlJTJCZkMwOUJGQlhaMUN2czBHcWlMYTdWJTJCNTBWcGlpUzR2NE1MdGt3aVVTOXpOekwlMkJiUmV2aGpWdHNG
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:16:58 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=r8WYC180M0RITmhlJTJCZkMwOUJGQlhaMUN2czBHcWlMYTdWJTJCNTBWcGlpUzR2NE1MdXdwdiUyRlF0MGpuUVVIOFMlMkZsSGUlMkZQNg; expires=Fri, 17 Nov 2023 19:16:58 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 303871
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash de9b2efecc6fe0f5e4574de1d6b37a37
69e73205c9f86f5b991d2edb568e7244a1b9ac90
a32f53381cf6a0573ab52408034302dc5b0f01b16b7626eda5e5ba0f4bed38b5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4235
Cache-Control: max-age=130348
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:16:59 GMT
Etag: "6354dccd-13a"
Expires: Tue, 25 Oct 2022 07:29:27 GMT
Last-Modified: Sun, 23 Oct 2022 06:18:53 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 314
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.2.146200 OK 8.8 kB URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.2.146:0
Hash fb25dc1b5178b048faf36c9e368b1f32
772f1e61171fa9f0c99de9f713b664de6feef360
c1b442ac9e4deff3cb298af5bdbedb1f2a0a805626d851a484b993e74920e621
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://st.chatango.com/
x-crto-bundle: FBJnFl9lejd3NG5BTFVLRjcwa0ltZjlkQWZXNk9MSDlpJTJGeXloQ1B1eWZmMFBkQWoyZU1mYks5dTdYMXNVZWlMSGF0cjdQaWRJUTRwJTJCbGlYaDJpeFlvQkV5MkNmcERqbk1oRXclMkY2d0NLblVnODBqWDZOZUY1WDlqMlhKS0lWTEFYZ28wTW9qWDIlMkJmZ2FCOXp3bDVmJTJCb09qMkNSZVVjNzY3VkZ2N3h5TEV4bkk3RGo0JTNE
Origin: https://st.chatango.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:16:58 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-origin: https://st.chatango.com
server-processing-duration-in-ticks: 16960660
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
unpkg.com/ionicons@5.5.2/dist/ionicons/ionicons.esm.js
104.16.125.175200 OK 0 B URL HTTP/2 unpkg.com/ionicons@5.5.2/dist/ionicons/ionicons.esm.js
IP 104.16.125.175:0
GET /ionicons@5.5.2/dist/ionicons/ionicons.esm.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://leafy-youtiao-35d5eb.netlify.app
Connection: keep-alive
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:16:54 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"18f-B+zGUTbQ1uVsG8y1uf+53Qdwne0"
via: 1.1 fly.io
fly-request-id: 01FXH4FHW243J1MMBDP14ETSHV-ams
cf-cache-status: HIT
age: 19931269
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75eccf512dc20b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
pogothere.xyz/asd100.bin
104.21.86.231200 OK 0 B IP 104.21.86.231:0
GET /asd100.bin HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Origin: https://leafy-youtiao-35d5eb.netlify.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:16:55 GMT
content-type: binary/octet-stream
access-control-allow-origin: https://leafy-youtiao-35d5eb.netlify.app
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cache-control: max-age=14400
cf-cache-status: HIT
age: 255
last-modified: Sun, 23 Oct 2022 19:12:40 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cK3lx%2Bz8%2B63UQkbd%2FrxfpV1xblXbCkFvXpAsqKlKo4eby5b%2Bh4ixMnMOSbhNM0yqPyApwcLwdboHhm8w74UdGrPD4l%2FTHBJPeCvSp1IGGFQ79kvFUHzwIiiHystthFsy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75eccf54bfd7b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
unpkg.com/ionicons@5.5.2/dist/ionicons/svg/refresh-outline.svg
104.16.125.175200 OK 0 B URL HTTP/2 unpkg.com/ionicons@5.5.2/dist/ionicons/svg/refresh-outline.svg
IP 104.16.125.175:0
GET /ionicons@5.5.2/dist/ionicons/svg/refresh-outline.svg HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Origin: https://leafy-youtiao-35d5eb.netlify.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:16:55 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"17b-Q0rQV86yo2aggIZJdXXHJ/VExec"
via: 1.1 fly.io
fly-request-id: 01G91J09N4JBB3B98XR34NK85G-ams
cf-cache-status: HIT
age: 7569058
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75eccf53e8c40b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
pogothere.xyz/
104.21.86.231200 OK 0 B IP 104.21.86.231:0
GET / HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Origin: https://leafy-youtiao-35d5eb.netlify.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:16:55 GMT
content-type: text/plain
set-cookie: csu=1823514900211107@1@1666552615; Max-Age=31104000; Secure; SameSite=None
access-control-allow-origin: https://leafy-youtiao-35d5eb.netlify.app
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YlZsqeOLmkB8l5S1T2zdZ%2FKIlgEVw1UOIHA7LetdJtlwZKymxN7C5CieQ5yKYmLRGhbvS%2FSXcyWizz5qAhhF2IJk7UIJmF5yAhZLf6f%2B8HXO97iCrqo6NHKa%2BQpvPDx%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75eccf54cfeab529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.2.146200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.2.146:0
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:16:57 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
server-processing-duration-in-ticks: 377476
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
185.235.84.108200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 185.235.84.108:0
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:16:58 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 83693
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
178.250.6.130200 OK 0 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 178.250.6.130:0
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:16:58 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 110360
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
unpkg.com/ionicons@5.5.2/dist/ionicons/p-5c60b45e.entry.js
104.16.125.175200 OK 0 B URL HTTP/2 unpkg.com/ionicons@5.5.2/dist/ionicons/p-5c60b45e.entry.js
IP 104.16.125.175:0
GET /ionicons@5.5.2/dist/ionicons/p-5c60b45e.entry.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://leafy-youtiao-35d5eb.netlify.app
Connection: keep-alive
Referer: https://unpkg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:16:54 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"f0c-XGC0Xo+O3L3bEnfKma9bLpz3l0o"
via: 1.1 fly.io
fly-request-id: 01F91M7BVWYD3K3MJPCSRQ97C2
cf-cache-status: HIT
age: 10390391
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75eccf5358290b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
unpkg.com/ionicons@5.5.2/dist/ionicons/p-e26ac56f.js
104.16.125.175200 OK 0 B URL HTTP/2 unpkg.com/ionicons@5.5.2/dist/ionicons/p-e26ac56f.js
IP 104.16.125.175:0
GET /ionicons@5.5.2/dist/ionicons/p-e26ac56f.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://leafy-youtiao-35d5eb.netlify.app
Connection: keep-alive
Referer: https://unpkg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:16:54 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"1d56-gDHdPSZYuc2h8Mf9Yj/8nfSlS9o"
via: 1.1 fly.io
fly-request-id: 01G4XHGE3G7D1FXF4K58S0X9Y8-fra
cf-cache-status: HIT
age: 11998865
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75eccf516e140b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
unpkg.com/ionicons@5.5.2/dist/ionicons/p-3f680f7e.js
104.16.125.175200 OK 0 B URL HTTP/2 unpkg.com/ionicons@5.5.2/dist/ionicons/p-3f680f7e.js
IP 104.16.125.175:0
GET /ionicons@5.5.2/dist/ionicons/p-3f680f7e.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://leafy-youtiao-35d5eb.netlify.app
Connection: keep-alive
Referer: https://unpkg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:16:54 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"329-ka9laISJtweBFGezhbjKpn5aTrg"
via: 1.1 fly.io
fly-request-id: 01FBMWZ4M60K7WAFVXRBS0WQ21
cf-cache-status: HIT
age: 7596261
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75eccf53a8690b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
unpkg.com/ionicons@5.5.2/dist/ionicons/svg/code-working-outline.svg
104.16.125.175200 OK 0 B URL HTTP/2 unpkg.com/ionicons@5.5.2/dist/ionicons/svg/code-working-outline.svg
IP 104.16.125.175:0
GET /ionicons@5.5.2/dist/ionicons/svg/code-working-outline.svg HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Origin: https://leafy-youtiao-35d5eb.netlify.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:16:55 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"16e-aX2AOzeGPHo4YZw3nNvb9l200pU"
via: 1.1 fly.io
fly-request-id: 01G4XFWERS0YK3CY0ED3SVDJYZ-fra
cf-cache-status: HIT
age: 12000567
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75eccf53e8c10b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
accounts.google.com/v3/signin/identifier?dsh=S2063942177%3A1666552615218277&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AQDHYWphTbWGU3dUel-2DwCJN3VN-tA0IhjL4by27niKJKzdR3gryRwWPIs5QErcU7BEMC0Ie7lb
216.58.207.237403 Forbidden 0 B URL HTTP/2 accounts.google.com/v3/signin/identifier?dsh=S2063942177%3A1666552615218277&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AQDHYWphTbWGU3dUel-2DwCJN3VN-tA0IhjL4by27niKJKzdR3gryRwWPIs5QErcU7BEMC0Ie7lb
IP 216.58.207.237:0
GET /v3/signin/identifier?dsh=S2063942177%3A1666552615218277&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AQDHYWphTbWGU3dUel-2DwCJN3VN-tA0IhjL4by27niKJKzdR3gryRwWPIs5QErcU7BEMC0Ie7lb HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 23 Oct 2022 19:16:55 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy-report-only: same-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: script-src 'nonce-hO_ON6BLu0Xss4WKikosbQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.facebook.com/login.php?next=https%3A%2F%2Fwww.facebook.com%2Ffavicon.ico%3F_rdr%3Dp
157.240.221.35200 OK 0 B URL HTTP/2 www.facebook.com/login.php?next=https%3A%2F%2Fwww.facebook.com%2Ffavicon.ico%3F_rdr%3Dp
IP 157.240.221.35:0
GET /login.php?next=https%3A%2F%2Fwww.facebook.com%2Ffavicon.ico%3F_rdr%3Dp HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leafy-youtiao-35d5eb.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 0
cross-origin-opener-policy: same-origin-allow-popups
vary: Sec-Fetch-Site, Sec-Fetch-Mode, Accept-Encoding
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: pvTKOjyI8e0mBbZ4yfcrSoy8eaQpMWvKRdaavdRIMaxHT1BzQN6mogbF8YHXLHw1NIn3YMY0MWOWpy77FX2NuA==
date: Sun, 23 Oct 2022 19:16:55 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?origin=rtus&topUrl=leafy-youtiao-35d5eb.netlify.app
178.250.2.146200 OK 0 B URL HTTP/2 gum.criteo.com/syncframe?origin=rtus&topUrl=leafy-youtiao-35d5eb.netlify.app
IP 178.250.2.146:0
GET /syncframe?origin=rtus&topUrl=leafy-youtiao-35d5eb.netlify.app HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:16:58 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=11f10c85-d6e6-48c2-aa8b-347e8a5f24b9; expires=Fri, 17 Nov 2023 19:16:57 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 435719
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2