r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aea93551fa9deb76ae49a3b4019d64fe
e3b8862057ebe839959228e42246d7b1807fc90c
7e210f03b140418085e94ec20c1d27d6ecf7a404cbd323e16476ae5ae95d6dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3195
Expires: Fri, 09 Dec 2022 01:25:47 GMT
Date: Fri, 09 Dec 2022 00:32:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2acd891dc6eb1f09f57a2b086791781
1e2088306501a61edcca1ade62c4d54f23b3b083
51148fed95cc00d60dc3640350f135b1b2763ff0e3cfbffc40f0948317894be9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5121
Expires: Fri, 09 Dec 2022 01:57:53 GMT
Date: Fri, 09 Dec 2022 00:32:32 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 00:08:16 GMT
content-type: application/json
age: 1456
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16952
Expires: Fri, 09 Dec 2022 05:15:04 GMT
Date: Fri, 09 Dec 2022 00:32:32 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: jRbad7tkRu37j8mEvJHEqsYbbOtd/ZWiW7SbiYvgJNUfac63JeUFs4j8/iDAzJvicyMNqT58aKb+OOY22AGkoA==
x-amz-request-id: NVJYAJKG08DWFPTW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 08 Dec 2022 23:48:06 GMT
age: 2666
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 00:32:32 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Last-Modified, ETag, Cache-Control, Alert, Content-Length, Pragma, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 00:07:55 GMT
age: 1477
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd55f4aaaab6ec40bc7dc10252cd819a
a72523f60be265a391fa9edc43e0a93418ad1fd0
bae354b3db14f4fd115311a0c412c9b5e436dd9e0a151afd8b9c18831dd8c2dd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4809
Cache-Control: max-age=122069
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 00:32:32 GMT
Etag: "6391a92c-1d7"
Expires: Sat, 10 Dec 2022 10:27:01 GMT
Last-Modified: Thu, 08 Dec 2022 09:06:52 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.149.156.115101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.156.115:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: t5yyzui+Q0AkoPwx85G1dw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: kYcqpeGy6rWAh6E5a4iYe843TI8=
jaipurjointreplacement.com/iico/index.php?QBOT.zip
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/index.php?QBOT.zip
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/index.php?QBOT.zip HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:33 GMT
server: LiteSpeed
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a0905812e8498e6c5c0a9b4b584b972f
039b784fd1e0152ec7f49a54ba027f0b2bd1e833
ee3531ef0f334dcd73a86b1e4365a020d5db69ff7b82bad136eaf1a8e9d3b47f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 00:32:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a0905812e8498e6c5c0a9b4b584b972f
039b784fd1e0152ec7f49a54ba027f0b2bd1e833
ee3531ef0f334dcd73a86b1e4365a020d5db69ff7b82bad136eaf1a8e9d3b47f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 00:32:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a0905812e8498e6c5c0a9b4b584b972f
039b784fd1e0152ec7f49a54ba027f0b2bd1e833
ee3531ef0f334dcd73a86b1e4365a020d5db69ff7b82bad136eaf1a8e9d3b47f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 00:32:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
youtube.com/embed/Y5oWwW526Lc
142.250.74.142301 Moved Permanently 0 B URL HTTP/2 youtube.com/embed/Y5oWwW526Lc
IP 142.250.74.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/Y5oWwW526Lc HTTP/1.1
Host: youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
content-type: application/binary
x-content-type-options: nosniff
expires: Fri, 09 Dec 2022 00:32:34 GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
cache-control: private, max-age=31536000
location: https://www.youtube.com/embed/Y5oWwW526Lc
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
server: ESF
content-length: 0
x-xss-protection: 0
set-cookie: CONSENT=PENDING+650; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a0905812e8498e6c5c0a9b4b584b972f
039b784fd1e0152ec7f49a54ba027f0b2bd1e833
ee3531ef0f334dcd73a86b1e4365a020d5db69ff7b82bad136eaf1a8e9d3b47f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 00:32:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
youtube.com/embed/fzJJrTnP1Qs
142.250.74.142301 Moved Permanently 0 B URL HTTP/2 youtube.com/embed/fzJJrTnP1Qs
IP 142.250.74.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/fzJJrTnP1Qs HTTP/1.1
Host: youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
content-type: application/binary
x-content-type-options: nosniff
expires: Fri, 09 Dec 2022 00:32:34 GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
cache-control: private, max-age=31536000
location: https://www.youtube.com/embed/fzJJrTnP1Qs
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
set-cookie: CONSENT=PENDING+438; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
youtube.com/embed/MfK_zrPYJyI
142.250.74.142301 Moved Permanently 0 B URL HTTP/2 youtube.com/embed/MfK_zrPYJyI
IP 142.250.74.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/MfK_zrPYJyI HTTP/1.1
Host: youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
content-type: application/binary
x-content-type-options: nosniff
expires: Fri, 09 Dec 2022 00:32:34 GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
cache-control: private, max-age=31536000
location: https://www.youtube.com/embed/MfK_zrPYJyI
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
set-cookie: CONSENT=PENDING+892; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
youtube.com/embed/Yepguj9ttY0
142.250.74.142301 Moved Permanently 0 B URL HTTP/2 youtube.com/embed/Yepguj9ttY0
IP 142.250.74.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/Yepguj9ttY0 HTTP/1.1
Host: youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
content-type: application/binary
x-content-type-options: nosniff
expires: Fri, 09 Dec 2022 00:32:34 GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
cache-control: private, max-age=31536000
location: https://www.youtube.com/embed/Yepguj9ttY0
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
server: ESF
content-length: 0
x-xss-protection: 0
set-cookie: CONSENT=PENDING+527; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
youtube.com/embed/6Zq-REH0I64
142.250.74.142301 Moved Permanently 0 B URL HTTP/2 youtube.com/embed/6Zq-REH0I64
IP 142.250.74.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/6Zq-REH0I64 HTTP/1.1
Host: youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
content-type: application/binary
x-content-type-options: nosniff
expires: Fri, 09 Dec 2022 00:32:34 GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
cache-control: private, max-age=31536000
location: https://www.youtube.com/embed/6Zq-REH0I64
strict-transport-security: max-age=31536000; includeSubDomains; preload
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
set-cookie: CONSENT=PENDING+961; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
youtube.com/embed/VL9Tzm1-Mg8
142.250.74.142301 Moved Permanently 0 B URL HTTP/2 youtube.com/embed/VL9Tzm1-Mg8
IP 142.250.74.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/VL9Tzm1-Mg8 HTTP/1.1
Host: youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
content-type: application/binary
x-content-type-options: nosniff
expires: Fri, 09 Dec 2022 00:32:34 GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
cache-control: private, max-age=31536000
location: https://www.youtube.com/embed/VL9Tzm1-Mg8
strict-transport-security: max-age=31536000; includeSubDomains; preload
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
server: ESF
content-length: 0
x-xss-protection: 0
set-cookie: CONSENT=PENDING+464; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
youtube.com/embed/6d3Bh-sYaSs
142.250.74.142301 Moved Permanently 0 B URL HTTP/2 youtube.com/embed/6d3Bh-sYaSs
IP 142.250.74.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/6d3Bh-sYaSs HTTP/1.1
Host: youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
content-type: application/binary
x-content-type-options: nosniff
expires: Fri, 09 Dec 2022 00:32:34 GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
cache-control: private, max-age=31536000
location: https://www.youtube.com/embed/6d3Bh-sYaSs
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
set-cookie: CONSENT=PENDING+956; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
youtube.com/embed/MeCSKhbvg-A
142.250.74.142301 Moved Permanently 0 B URL HTTP/2 youtube.com/embed/MeCSKhbvg-A
IP 142.250.74.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/MeCSKhbvg-A HTTP/1.1
Host: youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
content-type: application/binary
x-content-type-options: nosniff
expires: Fri, 09 Dec 2022 00:32:34 GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
cache-control: private, max-age=31536000
location: https://www.youtube.com/embed/MeCSKhbvg-A
strict-transport-security: max-age=31536000; includeSubDomains; preload
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
server: ESF
content-length: 0
x-xss-protection: 0
set-cookie: CONSENT=PENDING+803; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a0905812e8498e6c5c0a9b4b584b972f
039b784fd1e0152ec7f49a54ba027f0b2bd1e833
ee3531ef0f334dcd73a86b1e4365a020d5db69ff7b82bad136eaf1a8e9d3b47f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 00:32:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
youtube.com/embed/Z1L2S-Mgwrg
142.250.74.142301 Moved Permanently 0 B URL HTTP/2 youtube.com/embed/Z1L2S-Mgwrg
IP 142.250.74.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/Z1L2S-Mgwrg HTTP/1.1
Host: youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
content-type: application/binary
x-content-type-options: nosniff
expires: Fri, 09 Dec 2022 00:32:34 GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
cache-control: private, max-age=31536000
location: https://www.youtube.com/embed/Z1L2S-Mgwrg
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
set-cookie: CONSENT=PENDING+404; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
youtube.com/embed/tl1pd7hF9jA
142.250.74.142301 Moved Permanently 0 B URL HTTP/2 youtube.com/embed/tl1pd7hF9jA
IP 142.250.74.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/tl1pd7hF9jA HTTP/1.1
Host: youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
content-type: application/binary
x-content-type-options: nosniff
expires: Fri, 09 Dec 2022 00:32:34 GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
cache-control: private, max-age=31536000
location: https://www.youtube.com/embed/tl1pd7hF9jA
strict-transport-security: max-age=31536000; includeSubDomains; preload
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
server: ESF
content-length: 0
x-xss-protection: 0
set-cookie: CONSENT=PENDING+596; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/cp2uxfeErwc
142.250.74.174200 OK 77 kB URL HTTP/2 www.youtube.com/embed/cp2uxfeErwc
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (58646)
Hash 966fd5e64166ab042b0d559baf5593d2
4a861e0ea963b04b73fdae9c3fb369e4fe84635b
2e10313d7382c39219f6c39981d2e2f922f20e6df7f951e211450d74c30b5676
GET /embed/cp2uxfeErwc HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=OsMccrC_MfQ; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=SGuYz9twdho; Domain=.youtube.com; Expires=Wed, 07-Jun-2023 00:32:34 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+553; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/72d3c60a/www-embed-player.vflset/www-embed-player.js
142.250.74.174200 OK 99 kB URL HTTP/2 www.youtube.com/s/player/72d3c60a/www-embed-player.vflset/www-embed-player.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (679)
Hash 6278b7402fc83e24ebf6989d8de59b43
cb4217da0314cbbad9a59cd9a4c5c9791c5cf2c8
ab52b872c1360673bf1bde1a98e1cf7b9c8bc351bd07651d338f444db827b995
GET /s/player/72d3c60a/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/cp2uxfeErwc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 99392
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:37:00 GMT
expires: Thu, 07 Dec 2023 19:37:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 Dec 2022 01:17:24 GMT
content-type: text/javascript
age: 104134
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/jsp45SALV5M
142.250.74.174200 OK 30 kB URL HTTP/2 www.youtube.com/embed/jsp45SALV5M
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (58646)
Hash dd4005509c14ef3961358af933eec6cc
e349b7391f5be70d8ec60a15654e929e4ec5fca3
e6d2214418f9f09be115dda137a70f3de067d9f5cc3fa5294a93574036d5c571
GET /embed/jsp45SALV5M HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=-CIO-7TeyUM; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=Ss_GqPolrHw; Domain=.youtube.com; Expires=Wed, 07-Jun-2023 00:32:34 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+052; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15495
Expires: Fri, 09 Dec 2022 04:50:49 GMT
Date: Fri, 09 Dec 2022 00:32:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15495
Expires: Fri, 09 Dec 2022 04:50:49 GMT
Date: Fri, 09 Dec 2022 00:32:34 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8274b291596906eb3779dccb82ec41cb
b2ec554df1fa55e18a4316b76ac617dc626b7598
69129be0a1c2e3d1dfc602aea4ef004ea01b3bfa6c5863bd225843472f1bb7c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 00:32:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15495
Expires: Fri, 09 Dec 2022 04:50:49 GMT
Date: Fri, 09 Dec 2022 00:32:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15495
Expires: Fri, 09 Dec 2022 04:50:49 GMT
Date: Fri, 09 Dec 2022 00:32:34 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c3214044657f3b876d1f1848bca5684
7558222788f06623ddae6e883413e38e1146281e
e1f9c9c445bba7765f371dbb655cab43c1e12de7cbd015f8034c494118f7f708
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7897
x-amzn-requestid: 032fd8ae-b7e9-4e12-8546-838191a73688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F51IAMFunw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-345ae6cd107d207f5dbe29a8;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oV7bB5Tek01MFi9x2tr_Wix13-UGlQPIt042XM0ALNUvVFYnu5DRcg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 03:38:24 GMT
age: 75250
etag: "7558222788f06623ddae6e883413e38e1146281e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
jaipurjointreplacement.com/iico/images/total-hip-replacement.jpg
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/images/total-hip-replacement.jpg
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/images/total-hip-replacement.jpg HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:34 GMT
server: LiteSpeed
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0e9eef4ed41ef94e9ea175ad243e294e
b6f83e508270413dabe55e2884b5409ca7978e24
0e741ca8d92717128bca7aed937bca43519a8d20a9d3dd8670da656ad51a695e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 00:32:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a0905812e8498e6c5c0a9b4b584b972f
039b784fd1e0152ec7f49a54ba027f0b2bd1e833
ee3531ef0f334dcd73a86b1e4365a020d5db69ff7b82bad136eaf1a8e9d3b47f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 00:32:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18fc6c7c-4552-4358-9e4d-cdf93bc52b43.webp
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18fc6c7c-4552-4358-9e4d-cdf93bc52b43.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 06799a30d9977b0845f525ae82355d23
6ae9a3c17dcbac5912a46ca0c99977ca3adad4ea
d7a7eeb42d36167243b3dea7147a61119cbb5d1dcc2e2304c6ddd4a62e41efd3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18fc6c7c-4552-4358-9e4d-cdf93bc52b43.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4914
x-amzn-requestid: b709d5ff-617b-480b-8fc3-b1408ee358b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZQsoEkSIAMF0ZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6386c7ea-4150ac397b97d1217cece045;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 03:03:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8DqbjuQMX0JOMpduQ1-wy_B1a957NXgsAHrZc1OwUzsmqJRKfkEpoA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 21:49:06 GMT
age: 9808
etag: "6ae9a3c17dcbac5912a46ca0c99977ca3adad4ea"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5de5d319f43d9c9c641419d96655541f
cde4c7fa0145d3645af17e34c83c63c08f76a076
fdb114eb142f035c7a54195d16af51b5b423642c312f4bccc0f407d8fcc245aa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7557
x-amzn-requestid: 09204b5e-8af5-4d4b-8186-628443866e0f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctlz5EISoAMFdWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee9b2-357cd4f921c592e1319098dd;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:05:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3KZwQ5HqXa_-tUyDHA5m-65OprogFpFgbbKpEJ65k-Yy3lwoCg8M5w==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 07:15:07 GMT
age: 62247
etag: "cde4c7fa0145d3645af17e34c83c63c08f76a076"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 06514ce96ae21cb01f526a5febdcbeb4
ebb97e5b97f394e8c67098f55581d5329ce819a2
4099a2fb6ddc4feaa30f357a180d64aeb7c9fc73f115fc762d5fe5c221d2e89e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5169
x-amzn-requestid: 277a1b04-4e19-4313-8aac-5f9ab9076305
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctEdkFGrIAMFvHg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb456-5b21edd57297665012d536cc;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:17:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: swNGUcNy2i0w9UGe-EJhwslE01TzTC3rrDhLhVVxHyhWMGSC1uq0mA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 07:01:14 GMT
age: 63080
etag: "ebb97e5b97f394e8c67098f55581d5329ce819a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a0905812e8498e6c5c0a9b4b584b972f
039b784fd1e0152ec7f49a54ba027f0b2bd1e833
ee3531ef0f334dcd73a86b1e4365a020d5db69ff7b82bad136eaf1a8e9d3b47f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 00:32:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0e9eef4ed41ef94e9ea175ad243e294e
b6f83e508270413dabe55e2884b5409ca7978e24
0e741ca8d92717128bca7aed937bca43519a8d20a9d3dd8670da656ad51a695e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 00:32:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Dec 2022 16:40:43 GMT
expires: Fri, 08 Dec 2023 16:40:43 GMT
cache-control: public, max-age=31536000
age: 28311
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Dec 2022 21:48:03 GMT
expires: Fri, 08 Dec 2023 21:48:03 GMT
cache-control: public, max-age=31536000
age: 9871
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0e9eef4ed41ef94e9ea175ad243e294e
b6f83e508270413dabe55e2884b5409ca7978e24
0e741ca8d92717128bca7aed937bca43519a8d20a9d3dd8670da656ad51a695e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 00:32:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/embed/Y5oWwW526Lc
142.250.74.174302 Found 381 B URL HTTP/2 www.youtube.com/embed/Y5oWwW526Lc
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 9095432870a88452f22451cad5f85625
fd7e8d9f0ac0cb8fbedd797a05dcff79ed2e743f
d2f222b8e94504f2f6889d33438edbfa0349dc58f36e434e955de1ad4604c48b
GET /embed/Y5oWwW526Lc HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jaipurjointreplacement.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://www.google.com/sorry/index?continue=https://www.youtube.com/embed/Y5oWwW526Lc&q=EgRbWiqaGKKEypwGIjAhMyigZiI8OPfraJ9QJ8oORPRCMEkYEAdHNgtKa1gZGJ9nmeTbtAijsdrYLbEedWEyBT5jbmRy
date: Fri, 09 Dec 2022 00:32:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 381
x-xss-protection: 0
set-cookie: CONSENT=PENDING+178; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/MeCSKhbvg-A
142.250.74.174302 Found 381 B URL HTTP/2 www.youtube.com/embed/MeCSKhbvg-A
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash de1240721d7f8ad36492fd1ee0a9b09f
66caf3a189b0bccb39b21c387b0df8773271d71a
60a77496446ae38155248c375adc196539b5c3fa4f397a308f44d323d0ee3105
GET /embed/MeCSKhbvg-A HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jaipurjointreplacement.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://www.google.com/sorry/index?continue=https://www.youtube.com/embed/MeCSKhbvg-A&q=EgRbWiqaGKKEypwGIjDQzSv7FC_buU3vBgagEx0_SkCK0hlb1pyjjCF8TyNBm7dxdIc0yqU7IaEpE-XBrrQyBT5jbmRy
date: Fri, 09 Dec 2022 00:32:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 381
x-xss-protection: 0
set-cookie: CONSENT=PENDING+000; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/bsicspb4uz0
142.250.74.174302 Found 381 B URL HTTP/2 www.youtube.com/embed/bsicspb4uz0
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash e27ffe70cd8482fea7f2114f1aa8718e
6a3cf7a7603972fe91d816d5af746b22da8b33fe
5bd8c725608188d88c71df452d33f1d8a3911369a8f19f8f97574ca4e493a7b8
GET /embed/bsicspb4uz0 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.google.com/sorry/index?continue=https://www.youtube.com/embed/bsicspb4uz0&q=EgRbWiqaGKKEypwGIjCNht95yh-UG5gIUNWk5lv33GReEvWV4YTBgtCy52vFhuBhLOKCC-1ZuG1TIUkg-foyBT5jbmRy
date: Fri, 09 Dec 2022 00:32:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 381
x-xss-protection: 0
set-cookie: CONSENT=PENDING+100; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/sorry/index?continue=https://www.youtube.com/embed/Y5oWwW526Lc&q=EgRbWiqaGKKEypwGIjAhMyigZiI8OPfraJ9QJ8oORPRCMEkYEAdHNgtKa1gZGJ9nmeTbtAijsdrYLbEedWEyBT5jbmRy
216.58.207.228302 Found 446 B URL HTTP/2 www.google.com/sorry/index?continue=https://www.youtube.com/embed/Y5oWwW526Lc&q=EgRbWiqaGKKEypwGIjAhMyigZiI8OPfraJ9QJ8oORPRCMEkYEAdHNgtKa1gZGJ9nmeTbtAijsdrYLbEedWEyBT5jbmRy
IP 216.58.207.228:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash f8fbf9caeb198921082dabe8b2bf1ab1
7f91909e4420c427fa9779caa09bd96b9d08290f
7402974c0ab8f20113acdb33c624216a741b65e0f0ef6f17e787999573b83424
GET /sorry/index?continue=https://www.youtube.com/embed/Y5oWwW526Lc&q=EgRbWiqaGKKEypwGIjAhMyigZiI8OPfraJ9QJ8oORPRCMEkYEAdHNgtKa1gZGJ9nmeTbtAijsdrYLbEedWEyBT5jbmRy HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jaipurjointreplacement.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://www.youtube.com/embed/Y5oWwW526Lc?google_abuse=GOOGLE_ABUSE_EXEMPTION%3DID%3D9a9062db372e5dd8:TM%3D1670545954:C%3D%3E:IP%3D91.90.42.154-:S%3DRraAVt2RYTRdNIyi6UHZUQ%3B+path%3D/%3B+domain%3Dgoogle.com%3B+expires%3DFri,+09-Dec-2022+03:32:34+GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 446
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0e9eef4ed41ef94e9ea175ad243e294e
b6f83e508270413dabe55e2884b5409ca7978e24
0e741ca8d92717128bca7aed937bca43519a8d20a9d3dd8670da656ad51a695e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 00:32:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/embed/1gedPfC3eHE
142.250.74.174302 Found 381 B URL HTTP/2 www.youtube.com/embed/1gedPfC3eHE
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 7fefa3dfbdee471883838efbd88702e7
8662e8b55282ffb09919b7819002a09a93221fb3
052cc90924aaf40ec4b8ae6913eead2b7afab77accc20305b44243dbaa2c1720
GET /embed/1gedPfC3eHE HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.google.com/sorry/index?continue=https://www.youtube.com/embed/1gedPfC3eHE&q=EgRbWiqaGKKEypwGIjC-1bAa1aHn8XCgCQRDJa3Uil_UBFGsT-q7FfLidqXVMq8KZnkPl63A60MkbzGNQv4yBT5jbmRy
date: Fri, 09 Dec 2022 00:32:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 381
x-xss-protection: 0
set-cookie: CONSENT=PENDING+477; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/sorry/index?continue=https://www.youtube.com/embed/bsicspb4uz0&q=EgRbWiqaGKKEypwGIjCNht95yh-UG5gIUNWk5lv33GReEvWV4YTBgtCy52vFhuBhLOKCC-1ZuG1TIUkg-foyBT5jbmRy
216.58.207.228302 Found 446 B URL HTTP/2 www.google.com/sorry/index?continue=https://www.youtube.com/embed/bsicspb4uz0&q=EgRbWiqaGKKEypwGIjCNht95yh-UG5gIUNWk5lv33GReEvWV4YTBgtCy52vFhuBhLOKCC-1ZuG1TIUkg-foyBT5jbmRy
IP 216.58.207.228:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 8bde6efd92153cc421a1f372b3f4f1df
e720fde1b3e498094d5db9fe36a73dfdb360e26a
b14598dab43cbf5ea3d3da7604cb7f2c2a52d5fcbc4ff143f9bf4d18573c1479
GET /sorry/index?continue=https://www.youtube.com/embed/bsicspb4uz0&q=EgRbWiqaGKKEypwGIjCNht95yh-UG5gIUNWk5lv33GReEvWV4YTBgtCy52vFhuBhLOKCC-1ZuG1TIUkg-foyBT5jbmRy HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jaipurjointreplacement.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://www.youtube.com/embed/bsicspb4uz0?google_abuse=GOOGLE_ABUSE_EXEMPTION%3DID%3D2ad97b44a37e0290:TM%3D1670545954:C%3D%3E:IP%3D91.90.42.154-:S%3DVLVqxW8vEysLCKHEBbxzFg%3B+path%3D/%3B+domain%3Dgoogle.com%3B+expires%3DFri,+09-Dec-2022+03:32:34+GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 446
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/RWf5wKEZZXI
142.250.74.174302 Found 381 B URL HTTP/2 www.youtube.com/embed/RWf5wKEZZXI
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 3b13163a2a15f85db4755b0a84b7c893
780f4e76df8265c2b572fb7475086b07cb627c71
ff9dfb0e6dd36958a6dae4170cf0566a82ea63b0132c94b0410c5904eae0cccb
GET /embed/RWf5wKEZZXI HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.google.com/sorry/index?continue=https://www.youtube.com/embed/RWf5wKEZZXI&q=EgRbWiqaGKKEypwGIjBEflxGwlR_2-UVTbmONDAO7WSZvu9aO-QHtcV75bXepOEPiaVaN3L4r61kWhQwNgsyBT5jbmRy
date: Fri, 09 Dec 2022 00:32:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 381
x-xss-protection: 0
set-cookie: CONSENT=PENDING+352; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/fzJJrTnP1Qs
142.250.74.174302 Found 381 B URL HTTP/2 www.youtube.com/embed/fzJJrTnP1Qs
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash be1db127904dfbf59be653525f99582a
e24424f8f306dd87adbf80d8420af63657cd998b
270483b5f25294d1072afb3c3354ed0b9f9f77ea421d2be9ea3ac369fc62412b
GET /embed/fzJJrTnP1Qs HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jaipurjointreplacement.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://www.google.com/sorry/index?continue=https://www.youtube.com/embed/fzJJrTnP1Qs&q=EgRbWiqaGKKEypwGIjD2n3PdRMbFtP8WGgv5PKn0u-xCbyvF1NNvMCzfez7Lv-xsjTYwqiMum_BPLK3sC48yBT5jbmRy
date: Fri, 09 Dec 2022 00:32:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 381
x-xss-protection: 0
set-cookie: CONSENT=PENDING+620; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/UaMSLnSZKtw
142.250.74.174302 Found 381 B URL HTTP/2 www.youtube.com/embed/UaMSLnSZKtw
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 65971212827588daca159f3a29ef29c4
42f12b1aa1fee01397acd7e40a1931708c9c11f0
2b8698d8bd16f97d3b72967a1b59afd0e48de9924c66ed4a01855c91c07cb2a6
GET /embed/UaMSLnSZKtw HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.google.com/sorry/index?continue=https://www.youtube.com/embed/UaMSLnSZKtw&q=EgRbWiqaGKKEypwGIjBjmnAi946OOcj6Erjo_hNRZdNdXM_Jg5x5-X1y_PECHdflDZTeT0yTcDn58tQOxvsyBT5jbmRy
date: Fri, 09 Dec 2022 00:32:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 381
x-xss-protection: 0
set-cookie: CONSENT=PENDING+426; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/6d3Bh-sYaSs
142.250.74.174302 Found 381 B URL HTTP/2 www.youtube.com/embed/6d3Bh-sYaSs
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 50f127c47682429cc3742e5904ee3dfd
6b83f95912fba64ef8f2eed6d8324d3b379b701b
e480188792fa5a17feb79a576b6930c4b1fe676c3eb84d97c34fa43966e43e6e
GET /embed/6d3Bh-sYaSs HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jaipurjointreplacement.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://www.google.com/sorry/index?continue=https://www.youtube.com/embed/6d3Bh-sYaSs&q=EgRbWiqaGKKEypwGIjBe-dAob7ovN94IyARc_riRQxfVoqtJ0JhzQhGm0ddnJaP_e_et5PFt98HmNkaChfgyBT5jbmRy
date: Fri, 09 Dec 2022 00:32:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 381
x-xss-protection: 0
set-cookie: CONSENT=PENDING+660; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/sorry/index?continue=https://www.youtube.com/embed/1gedPfC3eHE&q=EgRbWiqaGKKEypwGIjC-1bAa1aHn8XCgCQRDJa3Uil_UBFGsT-q7FfLidqXVMq8KZnkPl63A60MkbzGNQv4yBT5jbmRy
216.58.207.228302 Found 446 B URL HTTP/2 www.google.com/sorry/index?continue=https://www.youtube.com/embed/1gedPfC3eHE&q=EgRbWiqaGKKEypwGIjC-1bAa1aHn8XCgCQRDJa3Uil_UBFGsT-q7FfLidqXVMq8KZnkPl63A60MkbzGNQv4yBT5jbmRy
IP 216.58.207.228:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash a57564b82d54cfefbf31e00f58a57565
251a3a68c79251e4754c26de2ade4eb2560c3bd0
657f34980dbda04b2fd1d595f0259e0e46d64ea584c430e01d1ad2af68c2fd13
GET /sorry/index?continue=https://www.youtube.com/embed/1gedPfC3eHE&q=EgRbWiqaGKKEypwGIjC-1bAa1aHn8XCgCQRDJa3Uil_UBFGsT-q7FfLidqXVMq8KZnkPl63A60MkbzGNQv4yBT5jbmRy HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jaipurjointreplacement.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://www.youtube.com/embed/1gedPfC3eHE?google_abuse=GOOGLE_ABUSE_EXEMPTION%3DID%3D5065614aacbab770:TM%3D1670545954:C%3D%3E:IP%3D91.90.42.154-:S%3DGC-7nvBv1UOJcJkBO__NbA%3B+path%3D/%3B+domain%3Dgoogle.com%3B+expires%3DFri,+09-Dec-2022+03:32:34+GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 446
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/maps/embed?pb=!1m14!1m8!1m3!1d7116.292389489731!2d75.780389!3d26.898855!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0xb6a62aa0a7ce934c!2sBest%20Joint%20Replacement%20Surgeon%20Jaipur%20-Dr.%20Mujahid%20Saleem%20-Total%20Knee%20Replacement%20Surgeon%20In%20Jaipur!5e0!3m2!1sen!2sin!4v1596222243366!5m2!1sen!2sin
216.58.207.228200 OK 1.9 kB URL HTTP/2 www.google.com/maps/embed?pb=!1m14!1m8!1m3!1d7116.292389489731!2d75.780389!3d26.898855!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0xb6a62aa0a7ce934c!2sBest%20Joint%20Replacement%20Surgeon%20Jaipur%20-Dr.%20Mujahid%20Saleem%20-Total%20Knee%20Replacement%20Surgeon%20In%20Jaipur!5e0!3m2!1sen!2sin!4v1596222243366!5m2!1sen!2sin
IP 216.58.207.228:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4088)
Hash 101a436718aed507d23ddba997602544
5e7b1bad9d23b68c9abfeb95f5febbcdedc6bc35
0954630de9d15e60ba0afe59bd53576b8cf492b37a42ca0a09808e3db82f0bec
GET /maps/embed?pb=!1m14!1m8!1m3!1d7116.292389489731!2d75.780389!3d26.898855!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0xb6a62aa0a7ce934c!2sBest%20Joint%20Replacement%20Surgeon%20Jaipur%20-Dr.%20Mujahid%20Saleem%20-Total%20Knee%20Replacement%20Surgeon%20In%20Jaipur!5e0!3m2!1sen!2sin!4v1596222243366!5m2!1sen!2sin HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Fri, 09 Dec 2022 00:32:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-HzdvmBrVDjE7BwbTSAAqAw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 1864
x-xss-protection: 0
server-timing: gfet4t7; dur=171
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/MfK_zrPYJyI
142.250.74.174302 Found 381 B URL HTTP/2 www.youtube.com/embed/MfK_zrPYJyI
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 2c85bcc8ebba39b9b2d76ed7ad4dcdb3
b9790021de5630bf28bc1dd0b7adb146aff9aadb
4b84534b6e7f287c278636074c115324eccd40f3788311b149aa8a6551b4d774
GET /embed/MfK_zrPYJyI HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jaipurjointreplacement.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://www.google.com/sorry/index?continue=https://www.youtube.com/embed/MfK_zrPYJyI&q=EgRbWiqaGKKEypwGIjD1glkAOnRD1WG-XTTfp5Tykqxk5nlFjQgR32irYzWKnxnehMSvJAHw_BE0f_sOqgAyBT5jbmRy
date: Fri, 09 Dec 2022 00:32:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 381
x-xss-protection: 0
set-cookie: CONSENT=PENDING+404; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a938af990a97b9856e1174d11c72cbf7
b57716fd0ea9a1e9e0a0595ff593f939560c0abf
6ab769333b231097d077edfbc1c3fc9560de5ae9bfeb5b8360dea8b7fadbcb44
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 00:32:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/sorry/index?continue=https://www.youtube.com/embed/RWf5wKEZZXI&q=EgRbWiqaGKKEypwGIjBEflxGwlR_2-UVTbmONDAO7WSZvu9aO-QHtcV75bXepOEPiaVaN3L4r61kWhQwNgsyBT5jbmRy
216.58.207.228302 Found 446 B URL HTTP/2 www.google.com/sorry/index?continue=https://www.youtube.com/embed/RWf5wKEZZXI&q=EgRbWiqaGKKEypwGIjBEflxGwlR_2-UVTbmONDAO7WSZvu9aO-QHtcV75bXepOEPiaVaN3L4r61kWhQwNgsyBT5jbmRy
IP 216.58.207.228:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash a2cef7fd1ef1e0b5e2bfd211a406b930
5b95989c148892f5df921d8b1373b252c2cf3d0d
288616e62aaa3e08f3ea9931aa78e6d597b3ef458994c377628117e6ad153c9b
GET /sorry/index?continue=https://www.youtube.com/embed/RWf5wKEZZXI&q=EgRbWiqaGKKEypwGIjBEflxGwlR_2-UVTbmONDAO7WSZvu9aO-QHtcV75bXepOEPiaVaN3L4r61kWhQwNgsyBT5jbmRy HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jaipurjointreplacement.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://www.youtube.com/embed/RWf5wKEZZXI?google_abuse=GOOGLE_ABUSE_EXEMPTION%3DID%3Defebb3fb0c6f2a09:TM%3D1670545954:C%3D%3E:IP%3D91.90.42.154-:S%3D2gaoKtWp1XCEAAi4NzckeA%3B+path%3D/%3B+domain%3Dgoogle.com%3B+expires%3DFri,+09-Dec-2022+03:32:34+GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 446
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/sorry/index?continue=https://www.youtube.com/embed/fzJJrTnP1Qs&q=EgRbWiqaGKKEypwGIjD2n3PdRMbFtP8WGgv5PKn0u-xCbyvF1NNvMCzfez7Lv-xsjTYwqiMum_BPLK3sC48yBT5jbmRy
216.58.207.228302 Found 446 B URL HTTP/2 www.google.com/sorry/index?continue=https://www.youtube.com/embed/fzJJrTnP1Qs&q=EgRbWiqaGKKEypwGIjD2n3PdRMbFtP8WGgv5PKn0u-xCbyvF1NNvMCzfez7Lv-xsjTYwqiMum_BPLK3sC48yBT5jbmRy
IP 216.58.207.228:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 7b7d2d6d7977ccd5fe566e0c7ccebb3e
928761befaf911d6fda2d78377286e5f836ddbaf
b8d993837d405b6f5744f68765fb422420d06f1d663c1ae89dfa4298df75770c
GET /sorry/index?continue=https://www.youtube.com/embed/fzJJrTnP1Qs&q=EgRbWiqaGKKEypwGIjD2n3PdRMbFtP8WGgv5PKn0u-xCbyvF1NNvMCzfez7Lv-xsjTYwqiMum_BPLK3sC48yBT5jbmRy HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jaipurjointreplacement.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://www.youtube.com/embed/fzJJrTnP1Qs?google_abuse=GOOGLE_ABUSE_EXEMPTION%3DID%3D3f1c05cee446875e:TM%3D1670545954:C%3D%3E:IP%3D91.90.42.154-:S%3D_sQoN4n5htIWbNkvDNk43A%3B+path%3D/%3B+domain%3Dgoogle.com%3B+expires%3DFri,+09-Dec-2022+03:32:34+GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 446
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jaipurjointreplacement.com/iico/js/vendor/jquery-library.js
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/js/vendor/jquery-library.js
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash d5273caff25d1fab92736f434bac0bc8
2fb2a3f04ab9d3621931783ba230e6b789ada035
b78a20ad9b4af4dda0323f19af2e1f9d655315243d9adf97ca6652638fd1e7be
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/js/vendor/jquery-library.js HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:34 GMT
server: LiteSpeed
www.google.com/sorry/index?continue=https://www.youtube.com/embed/6d3Bh-sYaSs&q=EgRbWiqaGKKEypwGIjBe-dAob7ovN94IyARc_riRQxfVoqtJ0JhzQhGm0ddnJaP_e_et5PFt98HmNkaChfgyBT5jbmRy
216.58.207.228302 Found 446 B URL HTTP/2 www.google.com/sorry/index?continue=https://www.youtube.com/embed/6d3Bh-sYaSs&q=EgRbWiqaGKKEypwGIjBe-dAob7ovN94IyARc_riRQxfVoqtJ0JhzQhGm0ddnJaP_e_et5PFt98HmNkaChfgyBT5jbmRy
IP 216.58.207.228:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash f9bc16f30d46a844dca29b6d934f7c4c
f1f4478ad40fe9e66d0fcb000e08b084525cb5e8
c933b41a7999557e210d28aa4642f4d36b50e9d0524254b5a9fc8f7ae626ad3f
GET /sorry/index?continue=https://www.youtube.com/embed/6d3Bh-sYaSs&q=EgRbWiqaGKKEypwGIjBe-dAob7ovN94IyARc_riRQxfVoqtJ0JhzQhGm0ddnJaP_e_et5PFt98HmNkaChfgyBT5jbmRy HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jaipurjointreplacement.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://www.youtube.com/embed/6d3Bh-sYaSs?google_abuse=GOOGLE_ABUSE_EXEMPTION%3DID%3D0e1ff903c4629108:TM%3D1670545954:C%3D%3E:IP%3D91.90.42.154-:S%3DSFnqFY2CcWWC0b2IMf9QNQ%3B+path%3D/%3B+domain%3Dgoogle.com%3B+expires%3DFri,+09-Dec-2022+03:32:34+GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 446
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/Yepguj9ttY0
142.250.74.174302 Found 381 B URL HTTP/2 www.youtube.com/embed/Yepguj9ttY0
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash cc4a3a834b92ee827d3253eb7e1cb3f9
93eee88af6e83465fcda233efe100cbb77d207c9
e709dbce081222e2ad957191a1d0a87357be034156bf0c12c1b6f89dc4e1ba1f
GET /embed/Yepguj9ttY0 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jaipurjointreplacement.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://www.google.com/sorry/index?continue=https://www.youtube.com/embed/Yepguj9ttY0&q=EgRbWiqaGKKEypwGIjDVJkRoKsdb9sSzMYXD0JRoskVTFiJRppW1_SRbH5sunYFOaYgOtDJmF4emSZ2DpAsyBT5jbmRy
date: Fri, 09 Dec 2022 00:32:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 381
x-xss-protection: 0
set-cookie: CONSENT=PENDING+067; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/tl1pd7hF9jA
142.250.74.174302 Found 381 B URL HTTP/2 www.youtube.com/embed/tl1pd7hF9jA
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 8f203f85a7e6ba2fd3ce7662915659ee
d056ffd3501e12f1f0a28729542b6d5fe161826c
fc1a78ad1ac7fbad9a2b8fd91a031be1eb2b07bf1ad529d82e50b3ee0cc1b686
GET /embed/tl1pd7hF9jA HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jaipurjointreplacement.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://www.google.com/sorry/index?continue=https://www.youtube.com/embed/tl1pd7hF9jA&q=EgRbWiqaGKKEypwGIjABdLWrMHe3sBLzy_Zjasnv-X4DuVUcGjj49K87WrXgUIyHp2yfxotmTDup8qIiGvIyBT5jbmRy
date: Fri, 09 Dec 2022 00:32:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 381
x-xss-protection: 0
set-cookie: CONSENT=PENDING+331; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/6Zq-REH0I64
142.250.74.174302 Found 381 B URL HTTP/2 www.youtube.com/embed/6Zq-REH0I64
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 5045c2b84dcccd97b1c144b612c7d419
134e4deedd204dd66a81e9c32cf19a991c138027
bc281c13ffa6e4378134daad1dacf01ec914d1cd457c294f93482c5eeeafd6ed
GET /embed/6Zq-REH0I64 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jaipurjointreplacement.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://www.google.com/sorry/index?continue=https://www.youtube.com/embed/6Zq-REH0I64&q=EgRbWiqaGKKEypwGIjDoc6HXeSGjEKTyyHGLGVwmJpt8jzGEqD_UI-bQgcRm-cyaXiY4ftHfKsoYm8T_Y7kyBT5jbmRy
date: Fri, 09 Dec 2022 00:32:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 381
x-xss-protection: 0
set-cookie: CONSENT=PENDING+137; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/VL9Tzm1-Mg8
142.250.74.174302 Found 381 B URL HTTP/2 www.youtube.com/embed/VL9Tzm1-Mg8
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 47dd4dc480e1b59cc60f9c23a57484d1
950f62f61936548fdb8aac7bd2407d4a4bd826cf
d770e8ba986caeca38261ac4bd5355e86929ab9017fc072e241c86ec281f287c
GET /embed/VL9Tzm1-Mg8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jaipurjointreplacement.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://www.google.com/sorry/index?continue=https://www.youtube.com/embed/VL9Tzm1-Mg8&q=EgRbWiqaGKKEypwGIjAq6_LuC_gchuHFXdWgDVzAJALiTGOEvo_DemSQ6D_WQPv2fK6G1-d2VPT-MbKrm6oyBT5jbmRy
date: Fri, 09 Dec 2022 00:32:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 381
x-xss-protection: 0
set-cookie: CONSENT=PENDING+012; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/hdQbcSpvWHw
142.250.74.174200 OK 28 kB URL HTTP/2 www.youtube.com/embed/hdQbcSpvWHw
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (58646)
Hash beacbb3287ccbc10f9a574376e8dfa23
c0e930c1329b3aa003077aedfb893efb44d355d2
e07cc8ae0c89dc4c8175ebf3d01d5b3c5724a65ba41e015b75a11b231fb381a2
GET /embed/hdQbcSpvWHw HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=8SxMSzULA28; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=pQLm-YUd8Z0; Domain=.youtube.com; Expires=Wed, 07-Jun-2023 00:32:34 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+823; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jaipurjointreplacement.com/iico/js/moment.min.js
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/js/moment.min.js
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/js/moment.min.js HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:34 GMT
server: LiteSpeed
jaipurjointreplacement.com/iico/js/scrollbar.min.js
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/js/scrollbar.min.js
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/js/scrollbar.min.js HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:35 GMT
server: LiteSpeed
jaipurjointreplacement.com/iico/js/chosen.jquery.js
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/js/chosen.jquery.js
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/js/chosen.jquery.js HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:35 GMT
server: LiteSpeed
jaipurjointreplacement.com/iico/js/fullcalendar.min.js
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/js/fullcalendar.min.js
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/js/fullcalendar.min.js HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:35 GMT
server: LiteSpeed
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 29 kB IP 142.250.74.131:0
Hash a56919847a25de1c10d360abae4e1dd9
a3e827935f2b75c013a9c294f1a49c4fef467e47
622871f6de6792143226faa44a17cde1841016e28b046cecbbf3eaba27ed403e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 00:32:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 28 kB IP 142.250.74.131:0
Hash dd9daee6009636260ac1a3bc2917a8c3
a16b2288d1c4a2d9831666f632c8caccdc82dea8
d72887fcfa6f94ebdad330736a6d1c16c9e67d7232f047477ef5aa35317c42ea
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 00:32:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.134200 OK 27 kB URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.134:0
Hash 1ede0ceec52740a44a84bf3aa599e750
6fe11ad1823e76d2916a2eb8ad7b6ec4f27bb36e
e4699875ae0c43a4a53f294c909c4129f825324db5a72662ef29de3ab01e63a4
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Dec 2022 00:21:04 GMT
expires: Fri, 09 Dec 2022 00:36:04 GMT
cache-control: public, max-age=900
age: 692
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 29 kB IP 142.250.74.131:0
Hash a397a542bd61656628d221a9442d5aa6
38fc63fb6323238614809a18e2ae2ff30fe07493
f8224a651e716d8364902124d148eb8847a94b970d32f8963da1a9acf4462a05
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 00:32:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 30 kB IP 142.250.74.131:0
Hash bb0e385f47e3e8610ff96bfc0c52e70d
00788b686fcd634cb01feaee70234b87a848b2e8
8876d4ebb8b7db186619b25541ad953f55ddcd659e1192f0f5e0a7789646a250
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 00:32:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/id
142.250.74.34302 Found 28 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.34:0
Hash 888e2cc356faa8a7f519dfac6cab2960
299d606467386c40f451558751769070a81a7509
d36bd1081a77f1a77c7dc6ce3c25dca96bce5e07849064dea7f79c7854695f85
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Fri, 09 Dec 2022 00:32:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.34302 Found 28 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.34:0
Hash c3cfa10e5ace0726cd3da3d6fca9a9e5
e0ad6b9dc6c53afdda7f1b49dd63255622c4f674
487b0a4dd6778509f37351ecbafe8a97412b5a2aaa0e3bac3aa7bebeab0cdefa
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Fri, 09 Dec 2022 00:32:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 28 kB IP 142.250.74.131:0
Hash 2844fe5bfc2e3522bd746d0191e42044
efd5a1d99dc8379de8056bacf9318ffa1b778a88
c006d7ec6369f8a5406aad8fc9e45f1f74943104bd69e57acb7578e06e436ee1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 00:32:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e3b657ebd655fbfa5f10c01c775f2aa0
2478fd171e6791a10d83b2bad9de0165d268db7e
2d91737e61e5338bc24c7df4aa36b1c20d9f79fe8ea4bb4914fd2c15e99a7ee3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 00:32:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jaipurjointreplacement.com/iico/js/prettyPhoto.js
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/js/prettyPhoto.js
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash d5273caff25d1fab92736f434bac0bc8
2fb2a3f04ab9d3621931783ba230e6b789ada035
b78a20ad9b4af4dda0323f19af2e1f9d655315243d9adf97ca6652638fd1e7be
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/js/prettyPhoto.js HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:36 GMT
server: LiteSpeed
jaipurjointreplacement.com/iico/js/jquery-ui.js
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/js/jquery-ui.js
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/js/jquery-ui.js HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:36 GMT
server: LiteSpeed
jaipurjointreplacement.com/iico/js/jRate.js
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/js/jRate.js
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/js/jRate.js HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:36 GMT
server: LiteSpeed
jaipurjointreplacement.com/iico/js/slick.min.js
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/js/slick.min.js
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/js/slick.min.js HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:36 GMT
server: LiteSpeed
jaipurjointreplacement.com/iico/js/owl.carousel.min.js
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/js/owl.carousel.min.js
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/js/owl.carousel.min.js HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:36 GMT
server: LiteSpeed
jaipurjointreplacement.com/iico/js/appear.js
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/js/appear.js
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/js/appear.js HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:37 GMT
server: LiteSpeed
www.youtube.com/embed/qIWQtIQ4q7w
142.250.74.174200 OK 28 kB URL HTTP/2 www.youtube.com/embed/qIWQtIQ4q7w
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (58646)
Hash 9751027cf7a7a579f9a672c1272038ad
36c37f17be45096bfe1481fba77e3bb7b60b4f51
b3e498a038283e40cfec9dff42dd8fb3dc4f52b4bf8f8530f7e4577e0e932ae0
GET /embed/qIWQtIQ4q7w HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=sogHBwodzsY; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=_70y0ulflUI; Domain=.youtube.com; Expires=Wed, 07-Jun-2023 00:32:34 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+929; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jaipurjointreplacement.com/iico/images/slider/img-02.png
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/images/slider/img-02.png
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/images/slider/img-02.png HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:37 GMT
server: LiteSpeed
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6ec5f6261a8262e9f94b29627f54cefe
7ac766cf2ac8c2d960ec033388a767ff8a7d45e2
5f6ee11d840909fc5272c2c32f7874d55f49d831abc88d527e35562d218890f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 00:32:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.42200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.42:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 09 Dec 2022 00:32:38 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/M8k4raFXLb8
142.250.74.174200 OK 35 kB URL HTTP/2 www.youtube.com/embed/M8k4raFXLb8
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (58646)
Hash 227c34ee6e3811253dfd48e1fb88b22d
72e5a4a3e347491c4a42976adfb42d2df8e94aaa
eeff73eb6e8454abdfaf37cbd9770fb6242fd3e9241f2711dd73943243e81675
GET /embed/M8k4raFXLb8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=R6dHdhwEpeg; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=pAzroFP9OJw; Domain=.youtube.com; Expires=Wed, 07-Jun-2023 00:32:34 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+144; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/C1bjOtZqUtQ
142.250.74.174200 OK 58 kB URL HTTP/2 www.youtube.com/embed/C1bjOtZqUtQ
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (58644)
Hash c876dece65b0b1df79c12e7be50e7960
1f233d719f13c99e976e977d7a7c28b95d6c09e3
6ef8906c3a1a55323b1facd2778e76d58d0ca5aa0cf254d248f532dc0fb6b27d
GET /embed/C1bjOtZqUtQ HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=b7NMg1vIa94; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=r-2bcCgEE_4; Domain=.youtube.com; Expires=Wed, 07-Jun-2023 00:32:34 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+744; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jaipurjointreplacement.com/iico/images/home.jpg
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/images/home.jpg
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/images/home.jpg HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:37 GMT
server: LiteSpeed
jaipurjointreplacement.com/iico/images/slider/img-03.png
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/images/slider/img-03.png
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/images/slider/img-03.png HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:38 GMT
server: LiteSpeed
www.youtube.com/embed/-17cg6CmM9A
142.250.74.174200 OK 29 kB URL HTTP/2 www.youtube.com/embed/-17cg6CmM9A
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (58646)
Hash 33b5b092d279a2a7607c915cceb46afe
d6298a38141592e7b1794a761133ad492e115685
e749d0e8095473b8e3b6d491d392514197a85b44e29066dc522942b0b6a89132
GET /embed/-17cg6CmM9A HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=EC9zB9_5blA; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=jyKGxzfNJMM; Domain=.youtube.com; Expires=Wed, 07-Jun-2023 00:32:34 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+310; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
yt3.ggpht.com/eSfJCieTYUBXEpC0i1DL4zjbO3Mda7M-qm1OUABzO8d_W9u3Ae9_Zk6rpzuFzQLu5EjaELtBu08=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 3.1 kB URL HTTP/2 yt3.ggpht.com/eSfJCieTYUBXEpC0i1DL4zjbO3Mda7M-qm1OUABzO8d_W9u3Ae9_Zk6rpzuFzQLu5EjaELtBu08=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash b1e35f74b98599e253c4ad142273bfdb
b358885cbf8f89af7cbb16bea6ec696aa0c7438e
0716efba26f334475e19e4c5d5869a0818caac4d18c92a05ef1c1615dbca95ce
GET /eSfJCieTYUBXEpC0i1DL4zjbO3Mda7M-qm1OUABzO8d_W9u3Ae9_Zk6rpzuFzQLu5EjaELtBu08=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sat, 10 Dec 2022 00:32:38 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="channels4_profile.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Fri, 09 Dec 2022 00:32:38 GMT
server: fife
content-length: 3122
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.ytimg.com/vi/X7sXGQGrPzM/maxres2.jpg?sqp=-oaymwEoCIAKENAF8quKqQMcGADwAQH4AZQDgALQBYoCDAgAEAEYZSBbKFYwDw==&rs=AOn4CLBe13Fu7EJQinii-0tIo5wOF1roeg
172.217.21.182200 OK 59 kB URL HTTP/2 i.ytimg.com/vi/X7sXGQGrPzM/maxres2.jpg?sqp=-oaymwEoCIAKENAF8quKqQMcGADwAQH4AZQDgALQBYoCDAgAEAEYZSBbKFYwDw==&rs=AOn4CLBe13Fu7EJQinii-0tIo5wOF1roeg
IP 172.217.21.182:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Hash 5e4570f77109ff8d86757510e4f83570
b4070d9d903b06913443891f3f2b2f4efd584155
aa179b6f70fac85430c69bda933a23d0ce8b38287d77968ea9d663dc93e49aad
GET /vi/X7sXGQGrPzM/maxres2.jpg?sqp=-oaymwEoCIAKENAF8quKqQMcGADwAQH4AZQDgALQBYoCDAgAEAEYZSBbKFYwDw==&rs=AOn4CLBe13Fu7EJQinii-0tIo5wOF1roeg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 59425
date: Fri, 09 Dec 2022 00:32:38 GMT
expires: Fri, 09 Dec 2022 02:32:38 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bf439e0a629dd8cc28fcea33262aff78
f2de8c4fbdfef73e42a47cd3d9a9cab2990b9d3d
1b7c35128fb014799611a8dd3c628eeb1085a9b8e13118416141f9261c8b79a0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 00:32:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3b873c6396aca4019ea51aed119cc8b6
b9684a5bf5075eb4e8ae2512b9ab3f1ddbddf80a
0045a8cb68ae0065903c118fcce7eb8b5eb1ad3bf92da3a50630346f5b45ca34
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 00:32:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jaipurjointreplacement.com/iico/images/slider/img-01.png
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/images/slider/img-01.png
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/images/slider/img-01.png HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:38 GMT
server: LiteSpeed
jaipurjointreplacement.com/iico/images/slider/s4.jpg
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/images/slider/s4.jpg
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/images/slider/s4.jpg HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:38 GMT
server: LiteSpeed
jaipurjointreplacement.com/iico/images/slider/s3.jpg
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/images/slider/s3.jpg
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/images/slider/s3.jpg HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:38 GMT
server: LiteSpeed
jaipurjointreplacement.com/iico/images/slider/s2.jpg
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/images/slider/s2.jpg
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/images/slider/s2.jpg HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:38 GMT
server: LiteSpeed
jaipurjointreplacement.com/iico/images/total-knee-replacement.jpg
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/images/total-knee-replacement.jpg
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/images/total-knee-replacement.jpg HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:38 GMT
server: LiteSpeed
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.42200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.42:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash e692c78d63e7f67552ae1a8229d6bb11
d008da20438d87ecef751d0ea39e0ff75c2111be
63c2b804a704ea79bf5400cc5b43ffedcaf928780fb9dce8aa80f2519fcd6d83
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 09 Dec 2022 00:32:39 GMT
server: ESF
cache-control: private
content-length: 30964
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jaipurjointreplacement.com/iico/images/total-shoulder-replacement.jpg
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/images/total-shoulder-replacement.jpg
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/images/total-shoulder-replacement.jpg HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:39 GMT
server: LiteSpeed
jaipurjointreplacement.com/iico/images/total-knee.jpg
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/images/total-knee.jpg
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/images/total-knee.jpg HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:39 GMT
server: LiteSpeed
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
142.250.74.42200 OK 23 B URL HTTP/2 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP 142.250.74.42:0
File type JSON data\012- , ASCII text
Hash e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 09 Dec 2022 00:32:39 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.google.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jaipurjointreplacement.com/iico/images/total-shoulder.jpg
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/images/total-shoulder.jpg
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/images/total-shoulder.jpg HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:39 GMT
server: LiteSpeed
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c9208747f2926b414bae65ed0e18fac5
3b25f459b1fe1a63689880699450305a8aee8b77
2c5333a23ade630e8dd8242aa59e371fa2208e265c58916e6fa799683d53f196
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 00:32:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.gstatic.com/maps-api-v3/embed/js/51/3/init_embed.js
142.250.74.3200 OK 69 kB URL HTTP/2 maps.gstatic.com/maps-api-v3/embed/js/51/3/init_embed.js
IP 142.250.74.3:0
File type ASCII text, with very long lines (2669)
Hash 670da89542ecf04a8bbff2049748654f
2fcd2c31427edfd9b3180e233a009677b0d88973
d1bdcacb4973ce7c60a0f59144bf6fb699eea4fc016ca1780cdf61dbd9efb3bc
GET /maps-api-v3/embed/js/51/3/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 69327
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 20:12:31 GMT
expires: Thu, 07 Dec 2023 20:12:31 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 05 Dec 2022 18:55:12 GMT
content-type: text/javascript
age: 102008
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c9208747f2926b414bae65ed0e18fac5
3b25f459b1fe1a63689880699450305a8aee8b77
2c5333a23ade630e8dd8242aa59e371fa2208e265c58916e6fa799683d53f196
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 00:32:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jaipurjointreplacement.com/iico/images/total-elbow-replacement.jpg
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/images/total-elbow-replacement.jpg
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/images/total-elbow-replacement.jpg HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:40 GMT
server: LiteSpeed
jaipurjointreplacement.com/iico/images/total-elbow.jpg
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/images/total-elbow.jpg
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/images/total-elbow.jpg HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:40 GMT
server: LiteSpeed
jaipurjointreplacement.com/iico/images/limb-salvage-surgery.jpg
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/images/limb-salvage-surgery.jpg
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/images/limb-salvage-surgery.jpg HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:40 GMT
server: LiteSpeed
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.42200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.42:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash a9d6eeda154c6f8a17e13ae15e362279
f8b1054caa00d5e365dc0f0cddceedeaa7c14103
f85d93f91dbf01560360fe84226b98ed9e8460d414056da66e29fadab84f46aa
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 09 Dec 2022 00:32:40 GMT
server: ESF
cache-control: private
content-length: 30809
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jaipurjointreplacement.com/iico/images/revision-hip-knee.jpg
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/images/revision-hip-knee.jpg
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/images/revision-hip-knee.jpg HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:40 GMT
server: LiteSpeed
jaipurjointreplacement.com/iico/images/limb-salvage.jpg
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/images/limb-salvage.jpg
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/images/limb-salvage.jpg HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:40 GMT
server: LiteSpeed
jaipurjointreplacement.com/iico/images/revision-hip.jpg
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/images/revision-hip.jpg
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/images/revision-hip.jpg HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:40 GMT
server: LiteSpeed
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fa81aa5-4138-458e-9bd7-de9d6211763c.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fa81aa5-4138-458e-9bd7-de9d6211763c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8d1605154a552a8c3165c1358ea2e185
2e677da1f57c112d984180ead80481e8797ff2e8
12b075ad3e786dc68ab3fab1e4ce9d6f7810bdebc7bdafd993e19bc5bc7c0abc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fa81aa5-4138-458e-9bd7-de9d6211763c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11027
x-amzn-requestid: e0d56100-13aa-44e5-ae80-bedfeece87db
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwV19EUOIAMFjcg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900359-5a5402381d61db921a00404d;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:07:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7ET6kgGgWAKa4_CFCgSwnN8m7FnplxP7zOp8lEyodxn5lmlIIHD4vQ==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 03:38:24 GMT
age: 75257
etag: "2e677da1f57c112d984180ead80481e8797ff2e8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
jaipurjointreplacement.com/iico/images/work-icon/img-02.png
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/images/work-icon/img-02.png
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/images/work-icon/img-02.png HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:41 GMT
server: LiteSpeed
jaipurjointreplacement.com/iico/images/work-icon/img-03.png
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/images/work-icon/img-03.png
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/images/work-icon/img-03.png HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:41 GMT
server: LiteSpeed
jaipurjointreplacement.com/iico/images/work-icon/img-01.png
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/images/work-icon/img-01.png
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/images/work-icon/img-01.png HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:41 GMT
server: LiteSpeed
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.42200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.42:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 16c7ba9dce991582b4553d6bf810209c
52dbb5a2aff137c0f7be36cd8d54fa7b2378a698
c31132f1e6352e681014b17c3454b5b968e90d35dce4f45d345bd332658c7447
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 09 Dec 2022 00:32:41 GMT
server: ESF
cache-control: private
content-length: 30942
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jaipurjointreplacement.com/iico/images/new/1.jpg
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/images/new/1.jpg
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/images/new/1.jpg HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:41 GMT
server: LiteSpeed
www.youtube.com/embed/U2QZt1mwV7M
142.250.74.174200 OK 27 kB URL HTTP/2 www.youtube.com/embed/U2QZt1mwV7M
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (58646)
Hash 828eba00bd3bbf0bbb04c14152944178
9d0b00ef156805bdcf25f275892c923f1537c26b
cd522d7904a87e7c3bbaaf159a798c5afe4fffe5e9e6dfbeb181aeab0563ccc1
GET /embed/U2QZt1mwV7M HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=D7azD9CEVcg; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=pzcO_YZe940; Domain=.youtube.com; Expires=Wed, 07-Jun-2023 00:32:34 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+465; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/RQB_vTu_TbQ
142.250.74.174200 OK 29 kB URL HTTP/2 www.youtube.com/embed/RQB_vTu_TbQ
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (58646)
Hash 711ebdf0cd83b5c587ded132934e3051
ace7ccf9c7facfeaffa362a349a362f8659ea33a
8d593fe1f81b3f7787c6ee2d82b5a4ac66e0137f25f47c84a5cf05cc986cafe4
GET /embed/RQB_vTu_TbQ HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=SGbrk5fGQ4o; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=Ih17RRFlxjg; Domain=.youtube.com; Expires=Wed, 07-Jun-2023 00:32:34 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+104; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jaipurjointreplacement.com/iico/images/new/2.jpg
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/images/new/2.jpg
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/images/new/2.jpg HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:42 GMT
server: LiteSpeed
jaipurjointreplacement.com/iico/images/doc-imgs/img-02.png
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/images/doc-imgs/img-02.png
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/images/doc-imgs/img-02.png HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:42 GMT
server: LiteSpeed
jaipurjointreplacement.com/iico/js/jquery-ui.js
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/js/jquery-ui.js
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/js/jquery-ui.js HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:42 GMT
server: LiteSpeed
jaipurjointreplacement.com/iico/images/new/3.jpg
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/images/new/3.jpg
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/images/new/3.jpg HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:42 GMT
server: LiteSpeed
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.42200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.42:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 2ad0e8323ddf1180fc98aeeb54756fc4
c650b5ae11cfb161bc9e8744a374b2da4dd04acd
0b253082672dd4ead529d2fc97ebcd7b6b10715903589298343b24dfd4b0599c
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 09 Dec 2022 00:32:42 GMT
server: ESF
cache-control: private
content-length: 30870
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jaipurjointreplacement.com/iico/images/new/4.jpg
103.138.189.139200 OK 7.4 kB URL HTTP/1.1 jaipurjointreplacement.com/iico/images/new/4.jpg
IP 103.138.189.139:0
ASN #139035 GBLINK NETWORK SOLUTIONS PRIVATE LIMITED
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (474)
Hash e23cff75be675c97043a71bfdd05482c
3d1178270194d1d525f6001ebe6d3a66f7d34268
fb1a816a5a1062b312ad934847e5288f99b30622fb501286c004e699b4ce5661
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /iico/images/new/4.jpg HTTP/1.1
Host: jaipurjointreplacement.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/iico/index.php?QBOT.zip
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.5.38
content-type: text/html
content-length: 7359
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 09 Dec 2022 00:32:42 GMT
server: LiteSpeed
www.youtube.com/embed/X7sXGQGrPzM
142.250.74.174200 OK 0 B URL HTTP/2 www.youtube.com/embed/X7sXGQGrPzM
IP 142.250.74.174:0
GET /embed/X7sXGQGrPzM HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=-caAAIlQ8BM; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=yFxE4xCgU8M; Domain=.youtube.com; Expires=Wed, 07-Jun-2023 00:32:34 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+289; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/5MdsvraMMSc
142.250.74.174200 OK 0 B URL HTTP/2 www.youtube.com/embed/5MdsvraMMSc
IP 142.250.74.174:0
GET /embed/5MdsvraMMSc HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=F5OLQzp9k70; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=fvTW-PaLKvA; Domain=.youtube.com; Expires=Wed, 07-Jun-2023 00:32:34 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+788; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/SZ5Dc5u8nU0
142.250.74.174200 OK 0 B URL HTTP/2 www.youtube.com/embed/SZ5Dc5u8nU0
IP 142.250.74.174:0
GET /embed/SZ5Dc5u8nU0 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=cYJ4XOEu15I; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=PJty4v25nIY; Domain=.youtube.com; Expires=Wed, 07-Jun-2023 00:32:34 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+318; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/gGK6zSgqubA
142.250.74.174200 OK 0 B URL HTTP/2 www.youtube.com/embed/gGK6zSgqubA
IP 142.250.74.174:0
GET /embed/gGK6zSgqubA HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=vrkhU1Bberc; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=FbNKX0Pirkk; Domain=.youtube.com; Expires=Wed, 07-Jun-2023 00:32:34 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+739; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/FUusRBBXzW4
142.250.74.174200 OK 0 B URL HTTP/2 www.youtube.com/embed/FUusRBBXzW4
IP 142.250.74.174:0
GET /embed/FUusRBBXzW4 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=VSQ7y-9H3Ig; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=zUfQXgLU6J0; Domain=.youtube.com; Expires=Wed, 07-Jun-2023 00:32:34 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+990; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/kIXuN4Wd5fU
142.250.74.174200 OK 0 B URL HTTP/2 www.youtube.com/embed/kIXuN4Wd5fU
IP 142.250.74.174:0
GET /embed/kIXuN4Wd5fU HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jaipurjointreplacement.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 09 Dec 2022 00:32:34 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=NSE9F6RhLxU; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=cU9eQ9Vhv5Q; Domain=.youtube.com; Expires=Wed, 07-Jun-2023 00:32:34 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+440; expires=Sun, 08-Dec-2024 00:32:34 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2