sort.itsocloud.com/ga/click/2-127492035-327-1116-2131-2140-37f50a2a6e-n3989e4573
45.85.250.70302 Found 150 B URL HTTP/1.1 sort.itsocloud.com/ga/click/2-127492035-327-1116-2131-2140-37f50a2a6e-n3989e4573
IP 45.85.250.70:0
ASN #141158 HIERO7 M SDN. BHD.
File type HTML document text\012- HTML document, ASCII text, with no line terminators
Hash 2a3e27833846edd885d5b090a0379a42
02bd3bb7f7524edea32355adccbe61cb49123a74
082577808a9a8abfb32ed08f0fa75a109ce8e90fb3fb11b9b757137299f068f1
GET /ga/click/2-127492035-327-1116-2131-2140-37f50a2a6e-n3989e4573 HTTP/1.1
Host: sort.itsocloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Fri, 09 Dec 2022 19:05:45 GMT
Server: Apache/2.4.52 (Unix) OpenSSL/1.0.2k-fips PHP/7.3.33
Status: 302 Found
X-Rack-Cache: miss
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Content-Type: text/html; charset=utf-8
X-Request-Id: 041f51a936404944712019a61cc2290f
Location: http://sort.codesafetydates.com/sdrftgyyutytdtfuiddyuydyydygfdyfdygfdygftyfgjyhgcfof
X-UA-Compatible: IE=Edge,chrome=1
X-Runtime: 0.047584
Expires: Mon, 01 Jan 1990 00:00:00 GMT
X-Powered-By: Phusion Passenger(R) 6.0.12
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash f2acd891dc6eb1f09f57a2b086791781
1e2088306501a61edcca1ade62c4d54f23b3b083
51148fed95cc00d60dc3640350f135b1b2763ff0e3cfbffc40f0948317894be9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5240
Expires: Fri, 09 Dec 2022 20:33:05 GMT
Date: Fri, 09 Dec 2022 19:05:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5135
Expires: Fri, 09 Dec 2022 20:31:20 GMT
Date: Fri, 09 Dec 2022 19:05:45 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 18:33:14 GMT
content-type: application/json
age: 1951
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8484
Expires: Fri, 09 Dec 2022 21:27:09 GMT
Date: Fri, 09 Dec 2022 19:05:45 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: HfJ7/u7LOjuzOXCJtfPdzkSaG81ucnCHKukIqDoOV/YOmBm744ftkf81VF9tmFyhcR+rCkJByhQ=
x-amz-request-id: 0ASPVNCRPK2KNQ98
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 18:50:22 GMT
age: 923
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 19:05:45 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Cache-Control, Backoff, Content-Length, Content-Type, Last-Modified, ETag, Expires, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 18:07:55 GMT
age: 3470
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e6be4d2155028ffff5d01ab6e7edf6da
07172071b5cf43c4cd7d7930b4ad8518ec1e32e9
4d8a5fa2362fd0910babd6d128d850d4460829468eb23d34ee5ee6eaa42d5a38
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5607
Cache-Control: max-age=142476
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:46 GMT
Etag: "6392faaf-1d7"
Expires: Sun, 11 Dec 2022 10:40:22 GMT
Last-Modified: Fri, 09 Dec 2022 09:06:55 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
sort.codesafetydates.com/sdrftgyyutytdtfuiddyuydyydygfdyfdygfdygftyfgjyhgcfof
66.150.130.192302 Found 0 B URL HTTP/1.1 sort.codesafetydates.com/sdrftgyyutytdtfuiddyuydyydygfdyfdygfdygftyfgjyhgcfof
IP 66.150.130.192:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sdrftgyyutytdtfuiddyuydyydygfdyfdygfdygftyfgjyhgcfof HTTP/1.1
Host: sort.codesafetydates.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Fri, 09 Dec 2022 19:05:45 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.4.16
X-Powered-By: PHP/5.4.16
Location: https://mwebnice.com/7054/1130/2/?subid=mixytrfcgyufgh
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash ebbe8acc41e7807ccc01f6d8120c76ed
715b5290724de2fce9e59bfb4e31ec8cf136a207
c872cbf51c723f7edc16231d0cbf259c25b932180e51bf79fb5077c6e1b4dc22
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=104854
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:46 GMT
Etag: "63927da0-116"
Expires: Sun, 11 Dec 2022 00:13:20 GMT
Last-Modified: Fri, 09 Dec 2022 00:13:20 GMT
Server: nginx
Content-Length: 278
push.services.mozilla.com/
52.37.79.227101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.37.79.227:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: H5PU+Y43Jc7FKpvvdGfcCQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 5T90Blua9Jog9IqR7B1MPAnCTpc=
mwebnice.com/7054/1130/2/?subid=mixytrfcgyufgh
104.21.10.231302 Found 279 B URL HTTP/2 mwebnice.com/7054/1130/2/?subid=mixytrfcgyufgh
IP 104.21.10.231:0
Hash 5b09f85d7be36df749185a627ef01007
b9dc70cc7dc861d661742e3cb96fce663e0654a0
5880dfe7ee25baea2d2238c4a7a742dffeabdbe429a1fecab0db4d8370e806df
Analyzer Verdict Alert fortinet Phishing
GET /7054/1130/2/?subid=mixytrfcgyufgh HTTP/1.1
Host: mwebnice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Fri, 09 Dec 2022 19:05:46 GMT
content-type: text/html; charset=UTF-8
location: https://clavusin.com/report?aff_id=90&subid2=7054_sessid2022120919057372&subid=1130
cache-control: max-age=3600, private
pragma: no-cache
expires: Fri, 09 Dec 2022 20:05:46 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 777003a0ac640b06-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7104
Expires: Fri, 09 Dec 2022 21:04:11 GMT
Date: Fri, 09 Dec 2022 19:05:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7104
Expires: Fri, 09 Dec 2022 21:04:11 GMT
Date: Fri, 09 Dec 2022 19:05:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7104
Expires: Fri, 09 Dec 2022 21:04:11 GMT
Date: Fri, 09 Dec 2022 19:05:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7104
Expires: Fri, 09 Dec 2022 21:04:11 GMT
Date: Fri, 09 Dec 2022 19:05:47 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fba9a3854df65740512f96efe7442e58
8fbff7725c842d70e047c635a725723a9dc9c55a
6e639298ebc82343cee9267d2910d15735af55f910e2c3de9218266b7c6fffc9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5188
x-amzn-requestid: afb8cbd2-3674-4dac-9cd9-9ff83618ac0a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ck2-5G9joAMFlPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638b6b92-2979ff216b9028aa70baef8b;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 15:30:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dGxzuQ6zj6wXQbkBuKBnOKxwKJDHUyGoi7PgcugcpdX4QYruNiFxsQ==
via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 21:51:24 GMT
age: 76463
etag: "8fbff7725c842d70e047c635a725723a9dc9c55a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5de5d319f43d9c9c641419d96655541f
cde4c7fa0145d3645af17e34c83c63c08f76a076
fdb114eb142f035c7a54195d16af51b5b423642c312f4bccc0f407d8fcc245aa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7557
x-amzn-requestid: 09204b5e-8af5-4d4b-8186-628443866e0f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctlz5EISoAMFdWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee9b2-357cd4f921c592e1319098dd;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:05:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3KZwQ5HqXa_-tUyDHA5m-65OprogFpFgbbKpEJ65k-Yy3lwoCg8M5w==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 07:13:15 GMT
age: 42752
etag: "cde4c7fa0145d3645af17e34c83c63c08f76a076"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c3214044657f3b876d1f1848bca5684
7558222788f06623ddae6e883413e38e1146281e
e1f9c9c445bba7765f371dbb655cab43c1e12de7cbd015f8034c494118f7f708
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7897
x-amzn-requestid: 032fd8ae-b7e9-4e12-8546-838191a73688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F51IAMFunw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-345ae6cd107d207f5dbe29a8;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oV7bB5Tek01MFi9x2tr_Wix13-UGlQPIt042XM0ALNUvVFYnu5DRcg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:38:26 GMT
age: 55641
etag: "7558222788f06623ddae6e883413e38e1146281e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c94003641bb5a7595e7004f80f95d22
3446450df60d732f9021d5bfd5f5f7c6c870d9ec
4d782dbf94b2163e9bc18028cd0c1a391fdcfcb019f23c4c26ea0b44432039ff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7801
x-amzn-requestid: cb8d5aab-409f-4b39-b498-b1ba84f34e06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFRNHX4oAMFvoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c07-7c6e3bfa3f81082b48f43fa9;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8QHhEAFHTHd-5UqS1S5qwJj_h4WNfix2CgS4MO4zR_psrzgMP3SZ5g==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 23:37:39 GMT
age: 70088
etag: "3446450df60d732f9021d5bfd5f5f7c6c870d9ec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 06514ce96ae21cb01f526a5febdcbeb4
ebb97e5b97f394e8c67098f55581d5329ce819a2
4099a2fb6ddc4feaa30f357a180d64aeb7c9fc73f115fc762d5fe5c221d2e89e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5169
x-amzn-requestid: 277a1b04-4e19-4313-8aac-5f9ab9076305
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctEdkFGrIAMFvHg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb456-5b21edd57297665012d536cc;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:17:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: swNGUcNy2i0w9UGe-EJhwslE01TzTC3rrDhLhVVxHyhWMGSC1uq0mA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 04:46:15 GMT
age: 51572
etag: "ebb97e5b97f394e8c67098f55581d5329ce819a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8546542f00ea29ef4df6ab8d3c7c2164
5c8ffe91490006a9890188b53f875568c2b6bd8f
7fb11750ac339ac283da62fd370862c6b95a103a585ca5dd8c90038718d818a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6578
x-amzn-requestid: 6392feb9-e33e-42fa-bc10-b5e31e654c9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw4beGG7oAMF8hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903aaf-2c890b7b0a16617346a0f7e7;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:03:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: nXaZ1pazAGWMI9GFYZjGlvVVIb8wX6feD0O8VpzjsL8F8l3mFmydAw==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 07:13:59 GMT
age: 42708
etag: "5c8ffe91490006a9890188b53f875568c2b6bd8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5b09f85d7be36df749185a627ef01007
b9dc70cc7dc861d661742e3cb96fce663e0654a0
5880dfe7ee25baea2d2238c4a7a742dffeabdbe429a1fecab0db4d8370e806df
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=95105
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:47 GMT
Etag: "6392578b-117"
Expires: Sat, 10 Dec 2022 21:30:52 GMT
Last-Modified: Thu, 08 Dec 2022 21:30:51 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 795e67bdfadc3c890a663080413b56b7
fdefde3befb6aceac3c337c34c8d738f5091908c
8375b55cfc13989b0cf96293b7bead2ce5811a993b3445da1776ca7015c36985
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-62785402-72
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-62785402-72
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 6cbfcbb853050ef9e985b2c8aa6734e8
52bd973f8aa38f9c3a794330c95cdee89c7f452a
dffefb4b8ec208170099a7e26d36a1cd0190de2b9959223c4b7be2e826a50128
GET /gtag/js?id=UA-62785402-72 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 09 Dec 2022 19:05:47 GMT
expires: Fri, 09 Dec 2022 19:05:47 GMT
cache-control: private, max-age=900
last-modified: Fri, 09 Dec 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43635
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
clavusin.com/report?aff_id=90&subid2=7054_sessid2022120919057372&subid=1130
188.114.96.1200 OK 56 kB URL HTTP/2 clavusin.com/report?aff_id=90&subid2=7054_sessid2022120919057372&subid=1130
IP 188.114.96.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8521)
Hash 32c6048ccf2d06dc2610c1a53fe770c2
75764b35a31e06ca1ac7b42e595b4682aada7cb3
399e4ff9cd7eaeeababa40ca90a3463104f63f7b75a7a83db93cb0052515d75a
GET /report?aff_id=90&subid2=7054_sessid2022120919057372&subid=1130 HTTP/1.1
Host: clavusin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Fri, 09 Dec 2022 19:05:47 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6Im5JS1BTeHhBSU1PNmdEUnVxWXMwTFE9PSIsInZhbHVlIjoiTEFlc3FVckhsdmlFbjVsWkorVTczcjdiNVM3ZUJNWElpSHl0eEtFazBHUVFZWFNzRmlLSEhPaDIvaVIrY3ZicSIsIm1hYyI6ImNiZDdiOTM1NmUyMDAyN2M4ODExOTFhMDcxODAxMzg0YjM3MjJkMDhlOTI0YjgxYTQ3MDgwZDUwMmI2MWVlY2QifQ%3D%3D; expires=Mon, 19-Dec-2022 19:05:47 GMT; Max-Age=864000; path=/; samesite=lax
_=eyJpdiI6InlVbTE3Mm9POURzVVRjTnRzZzhPdXc9PSIsInZhbHVlIjoiRVFwU0wyM2RmT01mY1pxemRDdStqbTN5ZVBoN2hlcm8ycFY5S05Qb0VyalpNMXphUVZvSEV1TDNoSDFDM1kwSyIsIm1hYyI6IjI5NTM0MzhhYTQyNTgyYmNkNTkwMWYzMjRiMGU0NmE3ZmQ4MjYwNmIwYTFhNjYyMjk2MGFiNTgyMTkzZjE5ZWMifQ%3D%3D; expires=Mon, 19-Dec-2022 19:05:47 GMT; Max-Age=864000; path=/; httponly; samesite=lax
referrer=eyJpdiI6IkNWRjBKV1BGOXBWcjQ2TmY2VkQwamc9PSIsInZhbHVlIjoic0R4MnArcDhxZ2NGQTZjRVozMXNCdz09IiwibWFjIjoiMTMzMGVmNmZkNDc4M2NhNmQ2NjQwZWI5NTJmZjY0MTY5OGE3ZTFkMWU5NWY5NTM2YzQ2ZDgwMWM2OGMxZTYyYiJ9; expires=Wed, 14-Dec-2022 19:05:47 GMT; Max-Age=432000; path=/; httponly; samesite=lax
affiliate=eyJpdiI6InorMlhNOHdaTEJrK2JkaTFSVVg3VVE9PSIsInZhbHVlIjoic2RzL1BxSC9rblNkSHNEd1MvKzB6QT09IiwibWFjIjoiZDdjMWY3NWY3YWMyOTRkZTk2ODI0OGI4ZTVmNGJkZTc4NWZjNTk0NDlmMzUyZjAyZDhhZjU3ODlkOTFhYTQwOSJ9; expires=Wed, 14-Dec-2022 19:05:47 GMT; Max-Age=432000; path=/; httponly; samesite=lax
pixels=eyJpdiI6IkIvY3MwTEJvZzFFeGt0ZXREZEdxa2c9PSIsInZhbHVlIjoiWjhaVDVrTFlLUkgzY2lZNk9NenRFSGZUTkRNL0xLRnU3Nk1GNTdYMmFTWk5CZ3dPY1Z0TnlXSzQ4S3U4U3dLZG9ySnJWMzhJU2krMU90Vml1aXRuOEJwOXlJWGI3czJWT2kxMjBwSnVDUEk9IiwibWFjIjoiNmJlMjAyNjlkMWQ5N2FmYzI3ZDMzZTliNDg4ODBlMzBhNDg4Nzk2YTg4MDQ0YmU2MzZkNzY4MzNhMzlmODk5OSJ9; expires=Wed, 14-Dec-2022 19:05:47 GMT; Max-Age=432000; path=/; httponly; samesite=lax
hp=eyJpdiI6IndUWWNVbmFPUi8yd2t2SzRpYXZwT2c9PSIsInZhbHVlIjoiNjl6amdPVlBsTnVPTEdsV2NWYlc0L3pVOHNjcnYvTGhtU1FFenFzYjJMcHNRRlpGQk1zdWxOa2MyMTd0cUQxZSIsIm1hYyI6IjFhYjA1MjQ4MjZlYWJlZDc0MGFmYzQ2OTI2ZGU4YTdiM2FlNTY3NjI2MTFmZjRlNjI4ODViZGNhNjgwZjI1MzgifQ%3D%3D; expires=Wed, 14-Dec-2022 19:05:47 GMT; Max-Age=432000; path=/; httponly; samesite=lax
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I61ki0wlwxiTbIiIfcWqPOWtct%2FjBIh77DR3HDWVir%2FDEHhlLemchrXU%2B0vKFufLDIt1DFoo638VGzFkHqssHvOGadmqRA2p5qcRyiAgHhw4Ruth1Lgc%2Bn27ibarPQQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 777003a40dd0b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4e3dc85fd71bdb106039966a96cdd02b
53d3487232ddcac30b53c224c94e63571633e5af
d0a3a292876b50c590a3fa6c04d3471a6fb726c54f57e75c21f2e1bd45424ace
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4e3dc85fd71bdb106039966a96cdd02b
53d3487232ddcac30b53c224c94e63571633e5af
d0a3a292876b50c590a3fa6c04d3471a6fb726c54f57e75c21f2e1bd45424ace
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4e3dc85fd71bdb106039966a96cdd02b
53d3487232ddcac30b53c224c94e63571633e5af
d0a3a292876b50c590a3fa6c04d3471a6fb726c54f57e75c21f2e1bd45424ace
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4e3dc85fd71bdb106039966a96cdd02b
53d3487232ddcac30b53c224c94e63571633e5af
d0a3a292876b50c590a3fa6c04d3471a6fb726c54f57e75c21f2e1bd45424ace
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash edac2b4e678c48b1fc3be3a06793bfcb
23f1f41a2194536d77a2497d7255b13747fd9af0
e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8f6ab0debac98d11413e20fa98ba8286
e63543ba0f3a685edf4d8fee3f587efd5417015f
fe6bc081b1963c61a3af1ab7b7b1213ae5bc7b962c5474d8f6fe123547d5d309
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c9208747f2926b414bae65ed0e18fac5
3b25f459b1fe1a63689880699450305a8aee8b77
2c5333a23ade630e8dd8242aa59e371fa2208e265c58916e6fa799683d53f196
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 65818724105d0376f3dd8a396d377360
338a5980ad7d143484ea9df600456d26b488cad8
b2e82abff951c34cdf33486411785206d84eb4460324529f0624b342096ad382
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=104843
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:48 GMT
Etag: "63927d97-117"
Expires: Sun, 11 Dec 2022 00:13:11 GMT
Last-Modified: Fri, 09 Dec 2022 00:13:11 GMT
Server: nginx
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c9208747f2926b414bae65ed0e18fac5
3b25f459b1fe1a63689880699450305a8aee8b77
2c5333a23ade630e8dd8242aa59e371fa2208e265c58916e6fa799683d53f196
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clavusin.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Dec 2022 06:30:11 GMT
expires: Sat, 09 Dec 2023 06:30:11 GMT
cache-control: public, max-age=31536000
age: 45337
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c9208747f2926b414bae65ed0e18fac5
3b25f459b1fe1a63689880699450305a8aee8b77
2c5333a23ade630e8dd8242aa59e371fa2208e265c58916e6fa799683d53f196
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wdhyzbi.woff2
216.58.207.227200 OK 25 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wdhyzbi.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 25036, version 1.0\012- data
Hash 9dd150fb7229e143e0f71ba1fe8c8f63
664abfc4941054600213dda51a3d6f0d05b3c312
cffe139366b3882387dddbd10d59e7d9aa29345793fdbf51ddde809ca6a0bec2
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wdhyzbi.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clavusin.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 05:36:53 GMT
expires: Tue, 05 Dec 2023 05:36:53 GMT
cache-control: public, max-age=31536000
age: 394135
last-modified: Mon, 11 Jul 2022 18:59:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 97bed5bb67b50465e51a6b4a4c67b8e8
ee1a09ccaf4fce08de66a5555eeb2bc0f9869008
058ecc2f02ec2766c71ca23b0b2c1b8e980d545ba3d30f1ae71faa83b81f198c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3730
Cache-Control: max-age=89821
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:48 GMT
Etag: "63923457-117"
Expires: Sat, 10 Dec 2022 20:02:49 GMT
Last-Modified: Thu, 08 Dec 2022 19:00:39 GMT
Server: ECS (amb/6B83)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 65818724105d0376f3dd8a396d377360
338a5980ad7d143484ea9df600456d26b488cad8
b2e82abff951c34cdf33486411785206d84eb4460324529f0624b342096ad382
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=104843
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:48 GMT
Etag: "63927d97-117"
Expires: Sun, 11 Dec 2022 00:13:11 GMT
Last-Modified: Fri, 09 Dec 2022 00:13:11 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7d871c35db42060ccfe2b2fe309e8252
49b297fb465bd563bd22a86326576002eab0cb49
9b2e202ede3f4ec66730c95b013bad0b72940d9b776358868f016446acb8a89b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9995a38d7200c0f66f3c394e5d00fe14
c0bf1e248fc8dc89ff09044fceba46db2a4c8ae4
bdd634a2569d44af91f768790e0ca909167da34f3a20b2f9b14940f6067080f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 09 Dec 2022 18:41:08 GMT
expires: Fri, 09 Dec 2022 20:41:08 GMT
cache-control: public, max-age=7200
age: 1480
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7d871c35db42060ccfe2b2fe309e8252
49b297fb465bd563bd22a86326576002eab0cb49
9b2e202ede3f4ec66730c95b013bad0b72940d9b776358868f016446acb8a89b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a0905812e8498e6c5c0a9b4b584b972f
039b784fd1e0152ec7f49a54ba027f0b2bd1e833
ee3531ef0f334dcd73a86b1e4365a020d5db69ff7b82bad136eaf1a8e9d3b47f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9995a38d7200c0f66f3c394e5d00fe14
c0bf1e248fc8dc89ff09044fceba46db2a4c8ae4
bdd634a2569d44af91f768790e0ca909167da34f3a20b2f9b14940f6067080f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9995a38d7200c0f66f3c394e5d00fe14
c0bf1e248fc8dc89ff09044fceba46db2a4c8ae4
bdd634a2569d44af91f768790e0ca909167da34f3a20b2f9b14940f6067080f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a0905812e8498e6c5c0a9b4b584b972f
039b784fd1e0152ec7f49a54ba027f0b2bd1e833
ee3531ef0f334dcd73a86b1e4365a020d5db69ff7b82bad136eaf1a8e9d3b47f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/s/player/8706c0e5/www-widgetapi.vflset/www-widgetapi.js
142.250.74.46200 OK 54 kB URL HTTP/2 www.youtube.com/s/player/8706c0e5/www-widgetapi.vflset/www-widgetapi.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (817)
Hash a5700632998a645f12520fd7f8d6b38f
57677812c099ecd86ddec1e6e69110c97128d993
e70ed17b7599772efaa5e5310b754ec0bebf2b654fbb348c8882b971f8f13c4e
GET /s/player/8706c0e5/www-widgetapi.vflset/www-widgetapi.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 54103
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Dec 2022 15:53:30 GMT
expires: Fri, 08 Dec 2023 15:53:30 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 08 Dec 2022 01:16:20 GMT
content-type: text/javascript
age: 97939
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
storage.googleapis.com/offerimages/clavusin/images/custom/shortcut-icon.png
142.250.74.48403 Forbidden 298 B URL HTTP/2 storage.googleapis.com/offerimages/clavusin/images/custom/shortcut-icon.png
IP 142.250.74.48:0
File type XML 1.0 document text\012- XML document, ASCII text, with no line terminators
Hash 3861a3795095fe81fcb8382d2b9066bd
2cef2af9a35d636c3af48902c20891ec49a8e791
b19463cb9b847bdfc7dbf8133d9702d0a0ecc4175335c4a75db211e0196f84b3
GET /offerimages/clavusin/images/custom/shortcut-icon.png HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
x-guploader-uploadid: ADPycds22aEBe7fcm0grpq8SUYI85e6MEFuD_t0Y9aB06Q67oID6TsqKXNryAHuhXDYoWE_2ngWBEwFZUKF93T32xegLqA
content-type: application/xml; charset=UTF-8
content-length: 298
date: Fri, 09 Dec 2022 19:05:49 GMT
expires: Fri, 09 Dec 2022 19:05:49 GMT
cache-control: private, max-age=0
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9995a38d7200c0f66f3c394e5d00fe14
c0bf1e248fc8dc89ff09044fceba46db2a4c8ae4
bdd634a2569d44af91f768790e0ca909167da34f3a20b2f9b14940f6067080f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
storage.googleapis.com/offerimages/clavusin/images/products/prod8/3-bottles.png
142.250.74.48200 OK 95 kB URL HTTP/2 storage.googleapis.com/offerimages/clavusin/images/products/prod8/3-bottles.png
IP 142.250.74.48:0
File type PNG image data, 751 x 600, 8-bit colormap, non-interlaced\012- data
Hash c12a27a21f5c7b091e00f477b0ed31f8
93d967ea46291d92347602685b0c53c70e8b331f
a5bcdfe28613ad697699fc71f341acb981d377971d9911bd86b07ae6bc7201bf
GET /offerimages/clavusin/images/products/prod8/3-bottles.png HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtL3jg9Hgzzo7MLgGqcWnpKtNiGwynMV7CuVyag4-2NeASQbgKcj1TON32wRjdTWJaYe_g_UoiZTqpu3RGf7TAdew
expires: Fri, 09 Dec 2022 20:05:48 GMT
date: Fri, 09 Dec 2022 19:05:48 GMT
cache-control: public, max-age=3600
last-modified: Tue, 10 May 2022 14:55:12 GMT
etag: "c12a27a21f5c7b091e00f477b0ed31f8"
x-goog-generation: 1652194512283292
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 95313
content-type: image/png
x-goog-hash: crc32c=bZDPxA==, md5=wSonoh9cewkeAPR3sO0x+A==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 95313
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
storage.googleapis.com/offerimages/clavusin/images/products/prod7/1-bottle.png
142.250.74.48200 OK 44 kB URL HTTP/2 storage.googleapis.com/offerimages/clavusin/images/products/prod7/1-bottle.png
IP 142.250.74.48:0
File type PNG image data, 397 x 600, 8-bit colormap, non-interlaced\012- data
Hash 68ab07835a2453d4a6b7981488292d88
97c6ef50d4bfa92b7dab67b86ee05d37be18b01c
5817138870a7c84fd04c673c0298cd064f4c9624bcba0b9ad0296ef3b9a4c6cc
GET /offerimages/clavusin/images/products/prod7/1-bottle.png HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsYx11mOT-K9ViZpiyhQWhMWTgKe1G0mwTBXAXpd8zRwlljRDhhrrI1hDIWDu0eSFq3cuVsM6pafGr4w0wCa-BT_oBC6NIr
expires: Fri, 09 Dec 2022 20:05:48 GMT
date: Fri, 09 Dec 2022 19:05:48 GMT
cache-control: public, max-age=3600
last-modified: Tue, 10 May 2022 14:55:11 GMT
etag: "68ab07835a2453d4a6b7981488292d88"
x-goog-generation: 1652194511588295
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43966
content-type: image/png
x-goog-hash: crc32c=tE1mfQ==, md5=aKsHg1okU9Smt5gUiCktiA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 43966
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-11.jpg
142.250.74.48200 OK 55 kB URL HTTP/2 storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-11.jpg
IP 142.250.74.48:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 350x426, components 3\012- data
Hash a24b6dfb6a72f91cbb9d81e644d7d0b7
c7297452b08037596651b02f6acf60ac0a53a7ab
9ab2cfacbab9310ffc8b451b805ca3a1cb0aad136b655acefa96bab8f1110b70
GET /offerimages/clavusin/custom/images/transcript/image-11.jpg HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduQarqOS4clDsM5mSz4qoqTLIrpuA5yy2s_kgcyCyjzjpVEHqGqLA_v_jBMekBc8WPW7iv3iK66D2HhlL0OfuwxfwjGT0VH
expires: Fri, 09 Dec 2022 20:05:48 GMT
date: Fri, 09 Dec 2022 19:05:48 GMT
cache-control: public, max-age=3600
last-modified: Tue, 10 May 2022 14:54:52 GMT
etag: "a24b6dfb6a72f91cbb9d81e644d7d0b7"
x-goog-generation: 1652194492453446
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 54624
content-type: image/jpeg
x-goog-hash: crc32c=2lcPYw==, md5=oktt+2py+Ry7nYHmRNfQtw==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 54624
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
storage.googleapis.com/offerimages/clavusin/images/products/prod11/6-bottles.png
142.250.74.48200 OK 134 kB URL HTTP/2 storage.googleapis.com/offerimages/clavusin/images/products/prod11/6-bottles.png
IP 142.250.74.48:0
File type PNG image data, 1078 x 600, 8-bit colormap, non-interlaced\012- data
Size 134 kB (133558 bytes)
Hash a4617a37e61e8f076b4ebf805ec6895a
5ce26a2f2bf886a21d5f63ec5da76c34d16df347
773fd933788b096a20aa11b7d269519922d236a9864d59a6d8c257e457b8d724
GET /offerimages/clavusin/images/products/prod11/6-bottles.png HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdu_pRJONVxylrStNIndKC9csZOUyPhcn8ouuEENAiXT25AvP5Ft9qJcti3lEmPGWfGxX5TQjpiU1VsyWGcNM6ZUhg
expires: Fri, 09 Dec 2022 20:05:48 GMT
date: Fri, 09 Dec 2022 19:05:48 GMT
cache-control: public, max-age=3600
last-modified: Tue, 10 May 2022 14:55:07 GMT
etag: "a4617a37e61e8f076b4ebf805ec6895a"
x-goog-generation: 1652194507099560
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 133558
content-type: image/png
x-goog-hash: crc32c=gkKQcA==, md5=pGF6N+YejwdrTr+AXsaJWg==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 133558
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-9.jpg
142.250.74.48200 OK 142 kB URL HTTP/2 storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-9.jpg
IP 142.250.74.48:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 609x473, components 3\012- data
Size 142 kB (141509 bytes)
Hash 0e4b3fbcd452b3459c7911876dc1bd67
c967d8fa4ab9609a743ab9008339cafc6023cb90
015e2a03500ce358360a6c36d99d670df11d53834c70a45d69bd52691f612dce
GET /offerimages/clavusin/custom/images/transcript/image-9.jpg HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdteFzURq73pRDgd-i-WmPCeqJN7Cqg0XOzjzt0dYsPKHnxpywZc9SCs5XFwmt93fWEheHvM2a09rlWt6il_i0tRFVHwPNs2
expires: Fri, 09 Dec 2022 20:05:48 GMT
date: Fri, 09 Dec 2022 19:05:48 GMT
cache-control: public, max-age=3600
last-modified: Tue, 10 May 2022 14:55:03 GMT
etag: "0e4b3fbcd452b3459c7911876dc1bd67"
x-goog-generation: 1652194503272607
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 141509
content-type: image/jpeg
x-goog-hash: crc32c=94AmmQ==, md5=Dks/vNRSs0WceRGHbcG9Zw==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 141509
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-15.png
142.250.74.48200 OK 97 kB URL HTTP/2 storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-15.png
IP 142.250.74.48:0
File type PNG image data, 751 x 600, 8-bit colormap, non-interlaced\012- data
Hash 5884dd4a034642f9978a7e1f568bdfa7
22045e8b01f8142c05f694193d1d6c70f5fa4901
17c8d615e5a1a2f530164e1041297972fd0bb76c7687ab5b9c8152f163f6073d
GET /offerimages/clavusin/custom/images/transcript/image-15.png HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsy5Tx7jJOoDmpAtRQr2VZ6Hid_QPetbKadAFulmzmjVom96MF8m49TfFJ3WgKk6y8teSvnlvb5WA_31ZYBDM5WWbmzsIKM
expires: Fri, 09 Dec 2022 20:05:48 GMT
date: Fri, 09 Dec 2022 19:05:48 GMT
cache-control: public, max-age=3600
last-modified: Tue, 10 May 2022 14:54:55 GMT
etag: "5884dd4a034642f9978a7e1f568bdfa7"
x-goog-generation: 1652194495164684
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 97268
content-type: image/png
x-goog-hash: crc32c=3yXsgw==, md5=WITdSgNGQvmXin4fVovfpw==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 97268
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-1.jpg
142.250.74.48200 OK 107 kB URL HTTP/2 storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-1.jpg
IP 142.250.74.48:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 967x639, components 3\012- data
Size 107 kB (106895 bytes)
Hash 4051c5440206bb91c17742a274f032e1
2afbad75273a9aa094631c63bbb7f2066c91bbcb
1e6f30febcc8b161773c27c6ee568483119dea832464e2b36c4556e748401379
GET /offerimages/clavusin/custom/images/transcript/image-1.jpg HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsR_dqXY7z60WwiJW8HGhfiM5_XhvhVZUhe1ELDlv6CME8DbRvNxigr_pjx6FtZS7lnXCHAlqCHERch7ilIV-27Q8EMJ61W
expires: Fri, 09 Dec 2022 20:05:48 GMT
date: Fri, 09 Dec 2022 19:05:48 GMT
cache-control: public, max-age=3600
last-modified: Tue, 10 May 2022 14:54:50 GMT
etag: "4051c5440206bb91c17742a274f032e1"
x-goog-generation: 1652194490478563
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 106895
content-type: image/jpeg
x-goog-hash: crc32c=FkYLqw==, md5=QFHFRAIGu5HBd0KidPAy4Q==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 106895
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-14.png
142.250.74.48200 OK 44 kB URL HTTP/2 storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-14.png
IP 142.250.74.48:0
File type PNG image data, 397 x 600, 8-bit colormap, non-interlaced\012- data
Hash 3bbe2c598ed9ec604d3ecb811b158d52
ed949424bf7982784a2ad92f48f19fcdffbb455e
a04c939d4ff1a60477b5a46eaa8e1665053fc663a47c8b468a3859346c9d1b96
GET /offerimages/clavusin/custom/images/transcript/image-14.png HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtgTxEucXsVIqzvLcbuIYkq3zzj3GzENDFYR6OBeOUJorwU6yO-2LPiqfTB6W3ylx4M2V2r5aD5dNKmw807I1qXhA
expires: Fri, 09 Dec 2022 20:05:48 GMT
date: Fri, 09 Dec 2022 19:05:48 GMT
cache-control: public, max-age=3600
last-modified: Tue, 10 May 2022 14:54:54 GMT
etag: "3bbe2c598ed9ec604d3ecb811b158d52"
x-goog-generation: 1652194494459258
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43468
content-type: image/png
x-goog-hash: crc32c=l5yG+g==, md5=O74sWY7Z7GBNPsuBGxWNUg==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 43468
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
storage.googleapis.com/offerimages/clavusin/images/products/prod9/6-bottles.png
142.250.74.48200 OK 134 kB URL HTTP/2 storage.googleapis.com/offerimages/clavusin/images/products/prod9/6-bottles.png
IP 142.250.74.48:0
File type PNG image data, 1078 x 600, 8-bit colormap, non-interlaced\012- data
Size 134 kB (133558 bytes)
Hash a4617a37e61e8f076b4ebf805ec6895a
5ce26a2f2bf886a21d5f63ec5da76c34d16df347
773fd933788b096a20aa11b7d269519922d236a9864d59a6d8c257e457b8d724
GET /offerimages/clavusin/images/products/prod9/6-bottles.png HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycds-OMXwLZ3Omag37sAbgmLcnV9nqWxGf5ksTjcQ33lHGc66BV_1y8ERWH953PSCv7rXKnxT6odqEWgWjKpiHudaeYMGVB8K
expires: Fri, 09 Dec 2022 20:05:48 GMT
date: Fri, 09 Dec 2022 19:05:48 GMT
cache-control: public, max-age=3600
last-modified: Tue, 10 May 2022 14:55:13 GMT
etag: "a4617a37e61e8f076b4ebf805ec6895a"
x-goog-generation: 1652194513241913
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 133558
content-type: image/png
x-goog-hash: crc32c=gkKQcA==, md5=pGF6N+YejwdrTr+AXsaJWg==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 133558
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-16.png
142.250.74.48200 OK 134 kB URL HTTP/2 storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-16.png
IP 142.250.74.48:0
File type PNG image data, 1078 x 600, 8-bit colormap, non-interlaced\012- data
Size 134 kB (133832 bytes)
Hash 3f33433c0e47a5c27c0d29c32448f41d
0930afda9627ac3bcd57eafc4e597ea9af35cf5e
33678900fc71232bb6ebf614fc368c44b9cce8e0ebc1339e95b1989e9d037ca3
GET /offerimages/clavusin/custom/images/transcript/image-16.png HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsWMxzrTJ82XQifVAkGa_KPGkpuXIjzwUB35xcMGkvX-VjU0-hVdw6IQ1ZyLU_fsGhJQoe4z4AYT55A80DlEjU8s9kU_9cu
expires: Fri, 09 Dec 2022 20:05:48 GMT
date: Fri, 09 Dec 2022 19:05:48 GMT
cache-control: public, max-age=3600
last-modified: Tue, 10 May 2022 14:54:55 GMT
etag: "3f33433c0e47a5c27c0d29c32448f41d"
x-goog-generation: 1652194495872172
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 133832
content-type: image/png
x-goog-hash: crc32c=UsApig==, md5=PzNDPA5HpcJ8DSnDJEj0HQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 133832
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-17.jpg
142.250.74.48200 OK 86 kB URL HTTP/2 storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-17.jpg
IP 142.250.74.48:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 700x661, components 3\012- data
Hash 61baad1d885903b4a3b6bc55c8010fd5
cf032d33d242f952fcfb5e3a3a9d50b16ce6d0ca
90d46c3e158516988a9fcee75c26fd0f198179c6fcf1a4633a149a959e334b40
GET /offerimages/clavusin/custom/images/transcript/image-17.jpg HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdshDbmoezeWsDE8ecqGvsqH2eVkWshCjdsuj59xrr4vKW0fCZIv3eZnrWU4kaxDLOFQNIqU-ZUIu_PzWXHrFgct3YvOnEzA
expires: Fri, 09 Dec 2022 20:05:48 GMT
date: Fri, 09 Dec 2022 19:05:48 GMT
cache-control: public, max-age=3600
last-modified: Tue, 10 May 2022 14:54:56 GMT
etag: "61baad1d885903b4a3b6bc55c8010fd5"
x-goog-generation: 1652194496576390
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 86039
content-type: image/jpeg
x-goog-hash: crc32c=qDEQhA==, md5=YbqtHYhZA7SjtrxVyAEP1Q==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 86039
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-7.jpg
142.250.74.48200 OK 234 kB URL HTTP/2 storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-7.jpg
IP 142.250.74.48:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 1000x665, components 3\012- data
Size 234 kB (234453 bytes)
Hash c4fb4a1b678ac4b7e4fe6327a08c1935
a795df8f31d5268841e7f8f3589dc6b7ce194356
7770cd8543c337b93ca872b62e9cd2f62f84665a22c155f31770458b880f6892
GET /offerimages/clavusin/custom/images/transcript/image-7.jpg HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsHeSuhEZTxUTkxIElL68Y94JDKrYeCPi19dpaWeBynirtr3llE9iZfNLm6rvhGlMp7LPGUc24yeRGK7iu_E4jX36NM0e_0
expires: Fri, 09 Dec 2022 20:05:48 GMT
date: Fri, 09 Dec 2022 19:05:48 GMT
cache-control: public, max-age=3600
last-modified: Tue, 10 May 2022 14:55:01 GMT
etag: "c4fb4a1b678ac4b7e4fe6327a08c1935"
x-goog-generation: 1652194501844032
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 234453
content-type: image/jpeg
x-goog-hash: crc32c=fGkUpQ==, md5=xPtKG2eKxLfk/mMnoIwZNQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 234453
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-8.jpg
142.250.74.48200 OK 216 kB URL HTTP/2 storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-8.jpg
IP 142.250.74.48:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 1080x720, components 3\012- data
Size 216 kB (216064 bytes)
Hash db7e0b50471349e7ece88c19fb0ea6ce
ab2bcb8a5c1365de1533e983ad786d2278992999
da09c417b2e89fcdb55e0440b88a09ae45ca2c857a3ac66a99402151862af57b
GET /offerimages/clavusin/custom/images/transcript/image-8.jpg HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtZ7oR1TY2H5g_OqIWFtoqniWD4Wvw-kgA5l8cgi8f_T5HdEQB_Z5xVHpIQ318V-RoahG3o2WeUapK3DFLrFiNQ9sO2QkeS
expires: Fri, 09 Dec 2022 20:05:48 GMT
date: Fri, 09 Dec 2022 19:05:48 GMT
cache-control: public, max-age=3600
last-modified: Tue, 10 May 2022 14:55:02 GMT
etag: "db7e0b50471349e7ece88c19fb0ea6ce"
x-goog-generation: 1652194502562668
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 216064
content-type: image/jpeg
x-goog-hash: crc32c=KQB2DQ==, md5=234LUEcTSefs6IwZ+w6mzg==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 216064
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
storage.googleapis.com/offerimages/clavusin/images/custom/exit-popup.png
142.250.74.48200 OK 417 kB URL HTTP/2 storage.googleapis.com/offerimages/clavusin/images/custom/exit-popup.png
IP 142.250.74.48:0
File type PNG image data, 612 x 407, 8-bit/color RGB, non-interlaced\012- data
Size 417 kB (417208 bytes)
Hash c1cb8ca5aedf7c9a2767993ff7d3d7f1
6e62e0a93286e1d557c2108a7dea515eaa39a56e
29e2a34eae7eecc6f22e94ee47be7ce82233b775ceae8c4e38a53d25bfe33f12
GET /offerimages/clavusin/images/custom/exit-popup.png HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtW2KK7MTl6UNxnoiUO6zhI4AI1XnefVpflXysYgUoOvBJcQDxFHoYGZemrYOR2B6E_P22J0nLKlC2apW4Vn06n4g
expires: Fri, 09 Dec 2022 20:05:48 GMT
date: Fri, 09 Dec 2022 19:05:48 GMT
cache-control: public, max-age=3600
last-modified: Tue, 10 May 2022 14:55:04 GMT
etag: "c1cb8ca5aedf7c9a2767993ff7d3d7f1"
x-goog-generation: 1652194504087523
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 417208
content-type: image/png
x-goog-hash: crc32c=X8syzA==, md5=wcuMpa7ffJonZ5k/99PX8Q==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 417208
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-6.jpg
142.250.74.48200 OK 46 kB URL HTTP/2 storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-6.jpg
IP 142.250.74.48:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 400x258, components 3\012- data
Hash 0085be3020c51a54da183711ee171a8a
c36bb275bb7db66083ce90173cb67dbc22b2da8a
e3a759114f427b0bf0730a3eb08041ba415927123c276885be7252316dad7095
GET /offerimages/clavusin/custom/images/transcript/image-6.jpg HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsNr2ENHVFf427iydYpbE3DOrEFTFe6uqcDydmTm0tMnpre0JsLKf24iKlDX1-Cwpz8O6KG91beAEV_Hm-RDQDs8a0GAne4
expires: Fri, 09 Dec 2022 20:05:48 GMT
date: Fri, 09 Dec 2022 19:05:48 GMT
cache-control: public, max-age=3600
last-modified: Tue, 10 May 2022 14:55:01 GMT
etag: "0085be3020c51a54da183711ee171a8a"
x-goog-generation: 1652194501073513
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 45669
content-type: image/jpeg
x-goog-hash: crc32c=zd4/ww==, md5=AIW+MCDFGlTaGDcR7hcaig==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 45669
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-12.jpg
142.250.74.48200 OK 360 kB URL HTTP/2 storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-12.jpg
IP 142.250.74.48:0
Size 360 kB (360332 bytes)
Hash e1950a4d58102a99fd0e5b42faa20900
ee012c3e0dba0c10cc3fdc2eb53dc116556e180b
49a319e3a42ce4bd499ef08409cb892523092f7257a504ef96079882f32a5e08
GET /offerimages/clavusin/custom/images/transcript/image-12.jpg HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvk_4cjecqUD5DT5I8hVDmQHvU1QRW4yI2q5J60TpVN13sy4CyMFpceUFrKeaZStTPD9pMp6nwcV0dGzDIMudFFGO8Jh3rH
expires: Fri, 09 Dec 2022 20:05:48 GMT
date: Fri, 09 Dec 2022 19:05:48 GMT
cache-control: public, max-age=3600
last-modified: Tue, 10 May 2022 14:54:53 GMT
etag: "162de2cbbf8fe770ae48f0f9220cf650"
x-goog-generation: 1652194493168308
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 194028
content-type: image/jpeg
x-goog-hash: crc32c=MaGpGw==, md5=Fi3iy7+P53CuSPD5Igz2UA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 194028
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-13.png
142.250.74.48200 OK 340 kB URL HTTP/2 storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-13.png
IP 142.250.74.48:0
File type PNG image data, 599 x 474, 8-bit/color RGBA, non-interlaced\012- data
Size 340 kB (340012 bytes)
Hash e13b9d920548be8aa7906c9d95ae0f09
2ed9a4272f60b6cf29c39a323a3e78d9822c51f2
44cc986bdce7e18992d57ff2762c36e15b0a90faf61ba5ac5f8d1e54620faf53
GET /offerimages/clavusin/custom/images/transcript/image-13.png HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtZMbi3JZYtN1lxICmc63wWvg2g9cLETlqWXwynqhRh20a_zKsuaSG49q9Oif2C9OwXfWJONPTYFdayt02go34BOy0xYIQv
expires: Fri, 09 Dec 2022 20:05:48 GMT
date: Fri, 09 Dec 2022 19:05:48 GMT
cache-control: public, max-age=3600
last-modified: Tue, 10 May 2022 14:54:53 GMT
etag: "e13b9d920548be8aa7906c9d95ae0f09"
x-goog-generation: 1652194493896498
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 340012
content-type: image/png
x-goog-hash: crc32c=K2K2zw==, md5=4TudkgVIvoqnkGydla4PCQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 340012
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-2.jpg
142.250.74.48200 OK 746 kB URL HTTP/2 storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-2.jpg
IP 142.250.74.48:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 1536x2048, components 3\012- data
Size 746 kB (745890 bytes)
Hash f38797cac4fd452dbe49ea273e19d660
3d4d6a7e3bfb7ca1e320f5226444790eddb4d7e6
ae9659b04921bb84df036e469fd1130f98e345e45e5e8fc866ebac2cc4ade469
GET /offerimages/clavusin/custom/images/transcript/image-2.jpg HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtHbChZjKFv_0WFF74AabvKoiQIeyR1lRgjnvKZYsBB1foqN-_AMVEwJOKrB-w9ij8RLzUpJrH1rF69h0bP2dPm9g
expires: Fri, 09 Dec 2022 20:05:48 GMT
date: Fri, 09 Dec 2022 19:05:48 GMT
cache-control: public, max-age=3600
last-modified: Tue, 10 May 2022 14:54:57 GMT
etag: "f38797cac4fd452dbe49ea273e19d660"
x-goog-generation: 1652194497323804
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 745890
content-type: image/jpeg
x-goog-hash: crc32c=08dOrw==, md5=84eXysT9RS2+SeonPhnWYA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 745890
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-10.png
142.250.74.48200 OK 1.2 MB URL HTTP/2 storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-10.png
IP 142.250.74.48:0
File type PNG image data, 1300 x 1328, 8-bit/color RGBA, non-interlaced\012- data
Size 1.2 MB (1178430 bytes)
Hash fd1fc7e29eb21caa188ecbaac9b57b65
c45961f4e8fe2247b830ae10d2e3ef023dfe9d27
dcc219a0a2b5535a28eae75eb2022a587f179c085cdf14b5aba57e28da8c5a96
GET /offerimages/clavusin/custom/images/transcript/image-10.png HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtPqu8oXFV2a-9ysZOk6le48B8hrpm04kPOxTIh7GjTlmkyaj1HJUV5nz_ABUqNFIO-vAGNDlK71RiCYfrXfmRvYLCjFtuV
expires: Fri, 09 Dec 2022 20:05:48 GMT
date: Fri, 09 Dec 2022 19:05:48 GMT
cache-control: public, max-age=3600
last-modified: Tue, 10 May 2022 14:54:51 GMT
etag: "fd1fc7e29eb21caa188ecbaac9b57b65"
x-goog-generation: 1652194491662314
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1178430
content-type: image/png
x-goog-hash: crc32c=PRMYBw==, md5=/R/H4p6yHKoYjsuqybV7ZQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 1178430
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-4.png
142.250.74.48200 OK 971 kB URL HTTP/2 storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-4.png
IP 142.250.74.48:0
File type PNG image data, 1015 x 566, 8-bit/color RGBA, non-interlaced\012- data
Size 971 kB (970797 bytes)
Hash e8658a534f4f60da72fa82456aba3bb0
9dc5755602b39835a9abf468e6536cfb3d548e84
c2c62552c125a767518e46a1cdeff4fac8dedbbe52e6330d4d15c37dd487df2c
GET /offerimages/clavusin/custom/images/transcript/image-4.png HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtV_6XMJNjapxI_k8SHCMjxOm9BaDzR_euTHpmjj0Vv4zD6Bms7iPKGNt3HSEg38GeykmvdZBNfXwqdMD3ekZDDrA
expires: Fri, 09 Dec 2022 20:05:49 GMT
date: Fri, 09 Dec 2022 19:05:49 GMT
cache-control: public, max-age=3600
last-modified: Tue, 10 May 2022 14:54:59 GMT
etag: "e8658a534f4f60da72fa82456aba3bb0"
x-goog-generation: 1652194499460308
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 970797
content-type: image/png
x-goog-hash: crc32c=VcUalQ==, md5=6GWKU09PYNpy+oJFaro7sA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 970797
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tracking.buygoods.com/track/?a=6441&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=prod7,prod8,prod9,prod11&caller_url=https%3A%2F%2Fclavusin.com%2Freport%3Faff_id%3D90%26subid2%3D7054_sessid2022120919057372%26subid%3D1130
172.66.40.234200 OK 2.2 MB URL HTTP/2 tracking.buygoods.com/track/?a=6441&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=prod7,prod8,prod9,prod11&caller_url=https%3A%2F%2Fclavusin.com%2Freport%3Faff_id%3D90%26subid2%3D7054_sessid2022120919057372%26subid%3D1130
IP 172.66.40.234:0
File type ASCII text, with very long lines (674), with CRLF line terminators
Size 2.2 MB (2173137 bytes)
Hash 3f144d9256e73419fdd91e37f1724d3b
b08e0b10227f758f451d84a5d990dde25d181f4f
bd28662567fab91b5d5596ba890c003180744e26a1d4bc3fafdbace74d7143bc
GET /track/?a=6441&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=prod7,prod8,prod9,prod11&caller_url=https%3A%2F%2Fclavusin.com%2Freport%3Faff_id%3D90%26subid2%3D7054_sessid2022120919057372%26subid%3D1130 HTTP/1.1
Host: tracking.buygoods.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 19:05:48 GMT
content-type: application/javascript
p3p: CP="CAO COR CURa ADMa DEVa OUR IND ONL COM DEM PRE"
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Tue, Jan 12 1999 01:01:01 GMT
set-cookie: spiaffid_6441=90; expires=Thu, 09-Mar-2023 19:05:48 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spisubid_6441=1130%7C7054_sessid2022120919057372; expires=Thu, 09-Mar-2023 19:05:48 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spicampaign_id_6441=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.buygoods.com
spireferrer_6441=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.buygoods.com
spireferrer_6441=91.90.42.154::clavusin.com%2Freport; expires=Thu, 09-Mar-2023 19:05:48 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spisessid2_6441=sessid2022120919054165; expires=Thu, 09-Mar-2023 19:05:48 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spi_funnel_codename_6441=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.buygoods.com
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 777003acde24b51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-5.png
142.250.74.48200 OK 949 kB URL HTTP/2 storage.googleapis.com/offerimages/clavusin/custom/images/transcript/image-5.png
IP 142.250.74.48:0
Size 949 kB (949165 bytes)
Hash 59fbe31cd88ea05898c562ade8df2675
b74bb612880750e22aeafb4123e7a99d6e66aafb
0aea45154be8ad57be9ecec17923111865dfb46dfe50cd6d78100a5fca9f86f8
GET /offerimages/clavusin/custom/images/transcript/image-5.png HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtZBmtLnCv-NSW852bz3ezhWi3Nt-lL54n2HQ1pgAvpqHve3fiicGziRr5mLZ1wHQ_BbgdyAujOQZq3Yj3YomCzpA
expires: Fri, 09 Dec 2022 20:05:48 GMT
date: Fri, 09 Dec 2022 19:05:48 GMT
cache-control: public, max-age=3600
last-modified: Tue, 10 May 2022 14:55:00 GMT
etag: "fbf37819f90d8986fdf402685b4d62fe"
x-goog-generation: 1652194500582509
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 949070
content-type: image/png
x-goog-hash: crc32c=D2BijA==, md5=+/N4GfkNiYb99AJoW01i/g==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 949070
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2556512b197b09798af71bea10bb4bbb
23b647aca5f8294ae82fa8cc7e2215ebe3347b60
3b5bd592342d978bcf8919d1a1e2f87295e2e4af5b5b266e6017b7a25725d08d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a7fcce3dc63f88fb3bb42fe1a285c7b9
867cf7966a5efc48c619653649f82d091b1bd8e0
94153fe13e128934e8bbb652b69720e96ffe8bc7d922c9ef75474149cdeb74f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.102200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.102:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Dec 2022 18:51:04 GMT
expires: Fri, 09 Dec 2022 19:06:04 GMT
cache-control: public, max-age=900
age: 885
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
go.maxweb.com/conversion/iframe/?a=7054&token=6e794a13aa499701d508963195f3348c
172.66.43.113200 OK 50 B URL HTTP/2 go.maxweb.com/conversion/iframe/?a=7054&token=6e794a13aa499701d508963195f3348c
IP 172.66.43.113:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with no line terminators
Hash cbfb19b0c07aaa9aac4a8bc78b6fcb45
c1122a6862a96ddee43ba4b7011fefb71fae3890
90e91281fb39bab96d8c1f34f2feb5771a56848faa3fd848688857a01afcf742
GET /conversion/iframe/?a=7054&token=6e794a13aa499701d508963195f3348c HTTP/1.1
Host: go.maxweb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 19:05:49 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Fri, 09 Dec 2022 20:05:49 GMT
cache-control: max-age=3600, private
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 777003ae2941b511-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash dcb0ed86727c359c48d60000d5ce055b
f7e736e0e1f78ec89eacaa08fd5648e1cf47d4fc
68713a99b06419fcaa5ee2c4b2b1a2772ff6a47df9ca0f5dda78189fefa108a7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2556512b197b09798af71bea10bb4bbb
23b647aca5f8294ae82fa8cc7e2215ebe3347b60
3b5bd592342d978bcf8919d1a1e2f87295e2e4af5b5b266e6017b7a25725d08d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.106200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.106:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 09 Dec 2022 19:05:49 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b5cba4e1962a1fe17c9021f3e418975a
01293d7e4084011451f7d17936ab2427504cdb1a
ecfe30d3abc32ca9f933303d75b2055642d3c7c8197af08fe2c314394699594b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/YkfklCtf3s5-_1quWHAnTHHVaBZ-i7ToAeXFpu3i2Ro.js
216.58.207.228200 OK 14 kB URL HTTP/2 www.google.com/js/th/YkfklCtf3s5-_1quWHAnTHHVaBZ-i7ToAeXFpu3i2Ro.js
IP 216.58.207.228:0
File type ASCII text, with very long lines (36162)
Hash e9bf756aa2fac02f3307febffa242635
d0da1ab271c03a49fe6499a38e6f3c34d396c5d4
12655f58f30c13fae1942aae99ace0d8e450ead33ec120b89d78fd98a279e0bb
GET /js/th/YkfklCtf3s5-_1quWHAnTHHVaBZ-i7ToAeXFpu3i2Ro.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14349
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:26:54 GMT
expires: Thu, 07 Dec 2023 19:26:54 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 03 Nov 2022 10:00:00 GMT
content-type: text/javascript
age: 171535
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.106200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.106:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash d6f1d6886ce991bf7ed946f391aea66c
59f2111140b989fb1e79b34ec13053b0e5142ac8
a7ca248e20fbe71b73bbd126075011252bf9fe6e0f2a8dfca780d12e8e0111d4
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 09 Dec 2022 19:05:49 GMT
server: ESF
cache-control: private
content-length: 31184
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bf439e0a629dd8cc28fcea33262aff78
f2de8c4fbdfef73e42a47cd3d9a9cab2990b9d3d
1b7c35128fb014799611a8dd3c628eeb1085a9b8e13118416141f9261c8b79a0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-62785402-72&cid=1414402111.1670612748&jid=1361202155&gjid=1450881916&_gid=436307039.1670612748&_u=4GBAAUAAAAAAACAAI~&z=1517506033
108.177.14.156200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-62785402-72&cid=1414402111.1670612748&jid=1361202155&gjid=1450881916&_gid=436307039.1670612748&_u=4GBAAUAAAAAAACAAI~&z=1517506033
IP 108.177.14.156:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-62785402-72&cid=1414402111.1670612748&jid=1361202155&gjid=1450881916&_gid=436307039.1670612748&_u=4GBAAUAAAAAAACAAI~&z=1517506033 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://clavusin.com
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://clavusin.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 09 Dec 2022 19:05:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-62785402-76&cid=1414402111.1670612748&jid=1606662340&gjid=42893482&_gid=436307039.1670612748&_u=4GDAAUABAAAAACAAI~&z=1156755465
108.177.14.156200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-62785402-76&cid=1414402111.1670612748&jid=1606662340&gjid=42893482&_gid=436307039.1670612748&_u=4GDAAUABAAAAACAAI~&z=1156755465
IP 108.177.14.156:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-62785402-76&cid=1414402111.1670612748&jid=1606662340&gjid=42893482&_gid=436307039.1670612748&_u=4GDAAUABAAAAACAAI~&z=1156755465 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://clavusin.com
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://clavusin.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 09 Dec 2022 19:05:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.ytimg.com/vi/diGCGO7F2yw/maxresdefault.jpg?sqp=-oaymwEmCIAKENAF8quKqQMa8AEB-AH-CYACtgWKAgwIABABGGUgZShlMA8=&rs=AOn4CLBUbSRK9g-B4Ne9QWyjJlxvBbIFbA
142.250.74.22200 OK 32 kB URL HTTP/2 i.ytimg.com/vi/diGCGO7F2yw/maxresdefault.jpg?sqp=-oaymwEmCIAKENAF8quKqQMa8AEB-AH-CYACtgWKAgwIABABGGUgZShlMA8=&rs=AOn4CLBUbSRK9g-B4Ne9QWyjJlxvBbIFbA
IP 142.250.74.22:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Hash 61643b72ff6e80456d1eb62c9c3a5c36
3fef1d5819260be8635a769570afdceecf4c2340
dd0665a83bb59d7a8860e3b427576342fdceb6e36a209d6a3b31fee7d5f8ec86
GET /vi/diGCGO7F2yw/maxresdefault.jpg?sqp=-oaymwEmCIAKENAF8quKqQMa8AEB-AH-CYACtgWKAgwIABABGGUgZShlMA8=&rs=AOn4CLBUbSRK9g-B4Ne9QWyjJlxvBbIFbA HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 32100
date: Fri, 09 Dec 2022 19:05:49 GMT
expires: Fri, 09 Dec 2022 21:05:49 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3b873c6396aca4019ea51aed119cc8b6
b9684a5bf5075eb4e8ae2512b9ab3f1ddbddf80a
0045a8cb68ae0065903c118fcce7eb8b5eb1ad3bf92da3a50630346f5b45ca34
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/ytc/AMLnZu_XS_MQ3CprtLAV94nVZFWmyEnAByRLpaV-e3dPhIdOlNPqDqUdZmfv-IUzDie0=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 965 B URL HTTP/2 yt3.ggpht.com/ytc/AMLnZu_XS_MQ3CprtLAV94nVZFWmyEnAByRLpaV-e3dPhIdOlNPqDqUdZmfv-IUzDie0=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash d9e4af6d2f3884d173632fb85899f176
2844918e6b7368cb99145c25003fe36f2c539fc8
19a1a7aa225df93aa8518422f904cbaade50dea44f23fba30eae9aac32c90ece
GET /ytc/AMLnZu_XS_MQ3CprtLAV94nVZFWmyEnAByRLpaV-e3dPhIdOlNPqDqUdZmfv-IUzDie0=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 965
x-xss-protection: 0
date: Fri, 09 Dec 2022 16:45:14 GMT
expires: Sat, 10 Dec 2022 16:45:14 GMT
cache-control: public, max-age=86400, no-transform
content-type: image/jpeg
age: 8435
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bf439e0a629dd8cc28fcea33262aff78
f2de8c4fbdfef73e42a47cd3d9a9cab2990b9d3d
1b7c35128fb014799611a8dd3c628eeb1085a9b8e13118416141f9261c8b79a0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.106200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.106:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 09 Dec 2022 19:05:49 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.106200 OK 110 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.106:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2ea0f3d92b33737f4223baf219a8649e
8fa8acc81abfda1371518b9e254c3ea98af2a6be
2e869c5ecd612a9d2c035eca1f4d732906b0daeb2dfc663351d6f7563537c1cd
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1336
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 09 Dec 2022 19:05:49 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b658d05e796c732572cbbb288f9dbd7a
66c489a55cdfda30f31c88dd4fbedf1ee138229f
f34d9a993edb309ed27889ac25679317ac691d7ca129aaf0732033013478df0c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 272ec26183190d48a1849acf0272f112
76ea3dba55c09c3d46b1847b280fb68a37d250cf
3151d89b6e99d9b9ec3cf098d5b26e7ca7b2da5e2c9951589b0f33d302cab399
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1670634350&ei=DYeTY-iSN4_RyAX9hYEg&ip=91.90.42.154&id=o-ALnomfe0lJ6uQqci3Nx3IwNXvjEikCoyw2-yRY89Sk9H&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&mh=bJ&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=3976250&spc=SFxXNsADftTTmymRpTZLeFkmHdHyjg4&vprv=1&mime=video%2Fwebm&ns=bKqONJnggAJLy_wSf0qK6iYJ&gir=yes&clen=21647729&dur=3535.133&lmt=1652511301283408&mt=1670612457&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5319224&n=MHSA1m6PpAJf7Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgKK7HV-FPTAMb9HdaEJCoLVNf3dIiv_BkNgvCplcdekMCIQDRCnKvzKGS5uBBgJWyJulncEPn5SFk5l9My5G6vIZlog%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIhAKCy6e-u6aPb6ELzFssw0lRaQuxGNyDZnjcveYxlsVoTAiAtRftdyjnCRndDr9bRWPn5x5IbJPGtxO64BThupVkGTw%3D%3D&alr=yes&cpn=0MYu3-bDTV8EP3u6&cver=1.20221207.01.00&range=0-137794&rn=1&rbuf=0&pot=D7a3ahNB99leto-gNv3OZpViDKFp-rHGA79vj9fCIEH1Sh_uJoQ9pctkZNJdDUDIDltxE-pVtzZvbshSAWgQcUNYklk2eXYVVuGHHWzaTdPzp90MwSlhMzB8SqA5-nq4khWPzhA=
91.90.45.173200 OK 1.3 kB URL HTTP/1.1 rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1670634350&ei=DYeTY-iSN4_RyAX9hYEg&ip=91.90.42.154&id=o-ALnomfe0lJ6uQqci3Nx3IwNXvjEikCoyw2-yRY89Sk9H&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&mh=bJ&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=3976250&spc=SFxXNsADftTTmymRpTZLeFkmHdHyjg4&vprv=1&mime=video%2Fwebm&ns=bKqONJnggAJLy_wSf0qK6iYJ&gir=yes&clen=21647729&dur=3535.133&lmt=1652511301283408&mt=1670612457&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5319224&n=MHSA1m6PpAJf7Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgKK7HV-FPTAMb9HdaEJCoLVNf3dIiv_BkNgvCplcdekMCIQDRCnKvzKGS5uBBgJWyJulncEPn5SFk5l9My5G6vIZlog%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIhAKCy6e-u6aPb6ELzFssw0lRaQuxGNyDZnjcveYxlsVoTAiAtRftdyjnCRndDr9bRWPn5x5IbJPGtxO64BThupVkGTw%3D%3D&alr=yes&cpn=0MYu3-bDTV8EP3u6&cver=1.20221207.01.00&range=0-137794&rn=1&rbuf=0&pot=D7a3ahNB99leto-gNv3OZpViDKFp-rHGA79vj9fCIEH1Sh_uJoQ9pctkZNJdDUDIDltxE-pVtzZvbshSAWgQcUNYklk2eXYVVuGHHWzaTdPzp90MwSlhMzB8SqA5-nq4khWPzhA=
IP 91.90.45.173:0
ASN #50304 Blix Solutions AS
File type ASCII text, with very long lines (1251), with no line terminators
Hash 84ba1f0fb855b4aee4d18784e288f118
395fefb0157b87fa36a7cd63a4cfa2d3cdce0fd2
fe36b12d3312453b00b6449c6f518b3b90c24a347e3b7ed2fc762e3a6e46d14c
POST /videoplayback?expire=1670634350&ei=DYeTY-iSN4_RyAX9hYEg&ip=91.90.42.154&id=o-ALnomfe0lJ6uQqci3Nx3IwNXvjEikCoyw2-yRY89Sk9H&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&mh=bJ&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=3976250&spc=SFxXNsADftTTmymRpTZLeFkmHdHyjg4&vprv=1&mime=video%2Fwebm&ns=bKqONJnggAJLy_wSf0qK6iYJ&gir=yes&clen=21647729&dur=3535.133&lmt=1652511301283408&mt=1670612457&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5319224&n=MHSA1m6PpAJf7Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgKK7HV-FPTAMb9HdaEJCoLVNf3dIiv_BkNgvCplcdekMCIQDRCnKvzKGS5uBBgJWyJulncEPn5SFk5l9My5G6vIZlog%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIhAKCy6e-u6aPb6ELzFssw0lRaQuxGNyDZnjcveYxlsVoTAiAtRftdyjnCRndDr9bRWPn5x5IbJPGtxO64BThupVkGTw%3D%3D&alr=yes&cpn=0MYu3-bDTV8EP3u6&cver=1.20221207.01.00&range=0-137794&rn=1&rbuf=0&pot=D7a3ahNB99leto-gNv3OZpViDKFp-rHGA79vj9fCIEH1Sh_uJoQ9pctkZNJdDUDIDltxE-pVtzZvbshSAWgQcUNYklk2eXYVVuGHHWzaTdPzp90MwSlhMzB8SqA5-nq4khWPzhA= HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Fri, 09 Dec 2022 19:05:50 GMT
Expires: Fri, 09 Dec 2022 19:05:50 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 1251
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 272ec26183190d48a1849acf0272f112
76ea3dba55c09c3d46b1847b280fb68a37d250cf
3151d89b6e99d9b9ec3cf098d5b26e7ca7b2da5e2c9951589b0f33d302cab399
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1670634350&ei=DYeTY-iSN4_RyAX9hYEg&ip=91.90.42.154&id=o-ALnomfe0lJ6uQqci3Nx3IwNXvjEikCoyw2-yRY89Sk9H&itag=251&source=youtube&requiressl=yes&mh=bJ&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=3976250&spc=SFxXNsADftTTmymRpTZLeFkmHdHyjg4&vprv=1&mime=audio%2Fwebm&ns=bKqONJnggAJLy_wSf0qK6iYJ&gir=yes&clen=58313868&dur=3535.161&lmt=1652511580268378&mt=1670612457&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5318224&n=MHSA1m6PpAJf7Q&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAIfxAOttJdSEF8HAFbHpqjnvouy7wooh_ZQYkGY2MGWvAiAYryjXiMVEdIC1lQnr4Wgab_eYCOIgPz5IeA8wkqNo_g%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIhAKCy6e-u6aPb6ELzFssw0lRaQuxGNyDZnjcveYxlsVoTAiAtRftdyjnCRndDr9bRWPn5x5IbJPGtxO64BThupVkGTw%3D%3D&alr=yes&cpn=0MYu3-bDTV8EP3u6&cver=1.20221207.01.00&range=0-72070&rn=2&rbuf=0&pot=D7a3ahNB99leto-gNv3OZpViDKFp-rHGA79vj9fCIEH1Sh_uJoQ9pctkZNJdDUDIDltxE-pVtzZvbshSAWgQcUNYklk2eXYVVuGHHWzaTdPzp90MwSlhMzB8SqA5-nq4khWPzhA=
91.90.45.173200 OK 1.2 kB URL HTTP/1.1 rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1670634350&ei=DYeTY-iSN4_RyAX9hYEg&ip=91.90.42.154&id=o-ALnomfe0lJ6uQqci3Nx3IwNXvjEikCoyw2-yRY89Sk9H&itag=251&source=youtube&requiressl=yes&mh=bJ&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=3976250&spc=SFxXNsADftTTmymRpTZLeFkmHdHyjg4&vprv=1&mime=audio%2Fwebm&ns=bKqONJnggAJLy_wSf0qK6iYJ&gir=yes&clen=58313868&dur=3535.161&lmt=1652511580268378&mt=1670612457&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5318224&n=MHSA1m6PpAJf7Q&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAIfxAOttJdSEF8HAFbHpqjnvouy7wooh_ZQYkGY2MGWvAiAYryjXiMVEdIC1lQnr4Wgab_eYCOIgPz5IeA8wkqNo_g%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIhAKCy6e-u6aPb6ELzFssw0lRaQuxGNyDZnjcveYxlsVoTAiAtRftdyjnCRndDr9bRWPn5x5IbJPGtxO64BThupVkGTw%3D%3D&alr=yes&cpn=0MYu3-bDTV8EP3u6&cver=1.20221207.01.00&range=0-72070&rn=2&rbuf=0&pot=D7a3ahNB99leto-gNv3OZpViDKFp-rHGA79vj9fCIEH1Sh_uJoQ9pctkZNJdDUDIDltxE-pVtzZvbshSAWgQcUNYklk2eXYVVuGHHWzaTdPzp90MwSlhMzB8SqA5-nq4khWPzhA=
IP 91.90.45.173:0
ASN #50304 Blix Solutions AS
File type ASCII text, with very long lines (1173), with no line terminators
Hash 7f0dacdf8bf1adf10d804b49a102ba98
8d015d18552d85b7a9fc82db70e33159f43b8c5e
e3d2ee670a0237d26455ab1fcabeb689a308f438f69357ae78cd389e844325e6
POST /videoplayback?expire=1670634350&ei=DYeTY-iSN4_RyAX9hYEg&ip=91.90.42.154&id=o-ALnomfe0lJ6uQqci3Nx3IwNXvjEikCoyw2-yRY89Sk9H&itag=251&source=youtube&requiressl=yes&mh=bJ&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7y&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=3976250&spc=SFxXNsADftTTmymRpTZLeFkmHdHyjg4&vprv=1&mime=audio%2Fwebm&ns=bKqONJnggAJLy_wSf0qK6iYJ&gir=yes&clen=58313868&dur=3535.161&lmt=1652511580268378&mt=1670612457&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5318224&n=MHSA1m6PpAJf7Q&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAIfxAOttJdSEF8HAFbHpqjnvouy7wooh_ZQYkGY2MGWvAiAYryjXiMVEdIC1lQnr4Wgab_eYCOIgPz5IeA8wkqNo_g%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIhAKCy6e-u6aPb6ELzFssw0lRaQuxGNyDZnjcveYxlsVoTAiAtRftdyjnCRndDr9bRWPn5x5IbJPGtxO64BThupVkGTw%3D%3D&alr=yes&cpn=0MYu3-bDTV8EP3u6&cver=1.20221207.01.00&range=0-72070&rn=2&rbuf=0&pot=D7a3ahNB99leto-gNv3OZpViDKFp-rHGA79vj9fCIEH1Sh_uJoQ9pctkZNJdDUDIDltxE-pVtzZvbshSAWgQcUNYklk2eXYVVuGHHWzaTdPzp90MwSlhMzB8SqA5-nq4khWPzhA= HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Fri, 09 Dec 2022 19:05:50 GMT
Expires: Fri, 09 Dec 2022 19:05:50 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 1173
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5bd85619ed659073cdbb14c3cf552cf0
74df5fe55bd6303fa74f8aee3e96b7ffb8fc19e7
16cba15a5b459260beeab7be588d1f03ae770a8f78b0458f3f424909908bb4c2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7d0707b86cc9bea2baab5f776c6a2fa6
1ca4152999f650f43d0bddc79c74d744652cd2b7
f67f5184bb3c0696479dc1d1eaa77eded6b150aa2dd7a23112e4e315299e0e56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7d0707b86cc9bea2baab5f776c6a2fa6
1ca4152999f650f43d0bddc79c74d744652cd2b7
f67f5184bb3c0696479dc1d1eaa77eded6b150aa2dd7a23112e4e315299e0e56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr3---sn-5goeen7y.googlevideo.com/videoplayback?expire=1670634350&ei=DYeTY-iSN4_RyAX9hYEg&ip=91.90.42.154&id=o-ALnomfe0lJ6uQqci3Nx3IwNXvjEikCoyw2-yRY89Sk9H&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&spc=SFxXNsADftTTmymRpTZLeFkmHdHyjg4&vprv=1&mime=video%2Fwebm&ns=bKqONJnggAJLy_wSf0qK6iYJ&gir=yes&clen=21647729&dur=3535.133&lmt=1652511301283408&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5319224&n=MHSA1m6PpAJf7Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgKK7HV-FPTAMb9HdaEJCoLVNf3dIiv_BkNgvCplcdekMCIQDRCnKvzKGS5uBBgJWyJulncEPn5SFk5l9My5G6vIZlog%3D%3D&alr=yes&cpn=0MYu3-bDTV8EP3u6&cver=1.20221207.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=bJ&mm=29&mn=sn-5goeen7y&ms=rdu&mt=1670612462&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhAJMrHuJ8ymuHqi0vngKecnLldWCekkmDNpIx1KCGCtcVAiEAs4L4sOJQfs2iOAL0PBXtWKqv8S-CtIlRbzlRHO5mMAs%3D&range=0-137794&rn=3&rbuf=0&pot=D7a3ahNB99leto-gNv3OZpViDKFp-rHGA79vj9fCIEH1Sh_uJoQ9pctkZNJdDUDIDltxE-pVtzZvbshSAWgQcUNYklk2eXYVVuGHHWzaTdPzp90MwSlhMzB8SqA5-nq4khWPzhA=
74.125.110.136200 OK 1.3 kB URL HTTP/1.1 rr3---sn-5goeen7y.googlevideo.com/videoplayback?expire=1670634350&ei=DYeTY-iSN4_RyAX9hYEg&ip=91.90.42.154&id=o-ALnomfe0lJ6uQqci3Nx3IwNXvjEikCoyw2-yRY89Sk9H&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&spc=SFxXNsADftTTmymRpTZLeFkmHdHyjg4&vprv=1&mime=video%2Fwebm&ns=bKqONJnggAJLy_wSf0qK6iYJ&gir=yes&clen=21647729&dur=3535.133&lmt=1652511301283408&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5319224&n=MHSA1m6PpAJf7Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgKK7HV-FPTAMb9HdaEJCoLVNf3dIiv_BkNgvCplcdekMCIQDRCnKvzKGS5uBBgJWyJulncEPn5SFk5l9My5G6vIZlog%3D%3D&alr=yes&cpn=0MYu3-bDTV8EP3u6&cver=1.20221207.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=bJ&mm=29&mn=sn-5goeen7y&ms=rdu&mt=1670612462&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhAJMrHuJ8ymuHqi0vngKecnLldWCekkmDNpIx1KCGCtcVAiEAs4L4sOJQfs2iOAL0PBXtWKqv8S-CtIlRbzlRHO5mMAs%3D&range=0-137794&rn=3&rbuf=0&pot=D7a3ahNB99leto-gNv3OZpViDKFp-rHGA79vj9fCIEH1Sh_uJoQ9pctkZNJdDUDIDltxE-pVtzZvbshSAWgQcUNYklk2eXYVVuGHHWzaTdPzp90MwSlhMzB8SqA5-nq4khWPzhA=
IP 74.125.110.136:0
File type ASCII text, with very long lines (1262), with no line terminators
Hash 62198fb644320ecf061a341256c54594
bf7d2473d7b5dde7997a749f22e42e00ce80c9e8
36c649263f2c45929f20558b87274711c6e20133fa725999d71d02fbbd26cc6e
POST /videoplayback?expire=1670634350&ei=DYeTY-iSN4_RyAX9hYEg&ip=91.90.42.154&id=o-ALnomfe0lJ6uQqci3Nx3IwNXvjEikCoyw2-yRY89Sk9H&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&spc=SFxXNsADftTTmymRpTZLeFkmHdHyjg4&vprv=1&mime=video%2Fwebm&ns=bKqONJnggAJLy_wSf0qK6iYJ&gir=yes&clen=21647729&dur=3535.133&lmt=1652511301283408&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5319224&n=MHSA1m6PpAJf7Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgKK7HV-FPTAMb9HdaEJCoLVNf3dIiv_BkNgvCplcdekMCIQDRCnKvzKGS5uBBgJWyJulncEPn5SFk5l9My5G6vIZlog%3D%3D&alr=yes&cpn=0MYu3-bDTV8EP3u6&cver=1.20221207.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=bJ&mm=29&mn=sn-5goeen7y&ms=rdu&mt=1670612462&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhAJMrHuJ8ymuHqi0vngKecnLldWCekkmDNpIx1KCGCtcVAiEAs4L4sOJQfs2iOAL0PBXtWKqv8S-CtIlRbzlRHO5mMAs%3D&range=0-137794&rn=3&rbuf=0&pot=D7a3ahNB99leto-gNv3OZpViDKFp-rHGA79vj9fCIEH1Sh_uJoQ9pctkZNJdDUDIDltxE-pVtzZvbshSAWgQcUNYklk2eXYVVuGHHWzaTdPzp90MwSlhMzB8SqA5-nq4khWPzhA= HTTP/1.1
Host: rr3---sn-5goeen7y.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Fri, 09 Dec 2022 19:05:50 GMT
Expires: Fri, 09 Dec 2022 19:05:50 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 1262
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr3---sn-5goeen7y.googlevideo.com/videoplayback?expire=1670634350&ei=DYeTY-iSN4_RyAX9hYEg&ip=91.90.42.154&id=o-ALnomfe0lJ6uQqci3Nx3IwNXvjEikCoyw2-yRY89Sk9H&itag=251&source=youtube&requiressl=yes&spc=SFxXNsADftTTmymRpTZLeFkmHdHyjg4&vprv=1&mime=audio%2Fwebm&ns=bKqONJnggAJLy_wSf0qK6iYJ&gir=yes&clen=58313868&dur=3535.161&lmt=1652511580268378&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5318224&n=MHSA1m6PpAJf7Q&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAIfxAOttJdSEF8HAFbHpqjnvouy7wooh_ZQYkGY2MGWvAiAYryjXiMVEdIC1lQnr4Wgab_eYCOIgPz5IeA8wkqNo_g%3D%3D&alr=yes&cpn=0MYu3-bDTV8EP3u6&cver=1.20221207.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=bJ&mm=29&mn=sn-5goeen7y&ms=rdu&mt=1670612462&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgFez42p_N1wWWN3WRNBN6PRn8wp65DW-ht8N8atZvIfkCIQD-Vo-0W87U3WNouKdMMEsQ54lzTMSHs9aXCmxKcnxGBA%3D%3D&range=0-72070&rn=4&rbuf=0&pot=D7a3ahNB99leto-gNv3OZpViDKFp-rHGA79vj9fCIEH1Sh_uJoQ9pctkZNJdDUDIDltxE-pVtzZvbshSAWgQcUNYklk2eXYVVuGHHWzaTdPzp90MwSlhMzB8SqA5-nq4khWPzhA=
74.125.110.136200 OK 1.2 kB URL HTTP/1.1 rr3---sn-5goeen7y.googlevideo.com/videoplayback?expire=1670634350&ei=DYeTY-iSN4_RyAX9hYEg&ip=91.90.42.154&id=o-ALnomfe0lJ6uQqci3Nx3IwNXvjEikCoyw2-yRY89Sk9H&itag=251&source=youtube&requiressl=yes&spc=SFxXNsADftTTmymRpTZLeFkmHdHyjg4&vprv=1&mime=audio%2Fwebm&ns=bKqONJnggAJLy_wSf0qK6iYJ&gir=yes&clen=58313868&dur=3535.161&lmt=1652511580268378&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5318224&n=MHSA1m6PpAJf7Q&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAIfxAOttJdSEF8HAFbHpqjnvouy7wooh_ZQYkGY2MGWvAiAYryjXiMVEdIC1lQnr4Wgab_eYCOIgPz5IeA8wkqNo_g%3D%3D&alr=yes&cpn=0MYu3-bDTV8EP3u6&cver=1.20221207.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=bJ&mm=29&mn=sn-5goeen7y&ms=rdu&mt=1670612462&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgFez42p_N1wWWN3WRNBN6PRn8wp65DW-ht8N8atZvIfkCIQD-Vo-0W87U3WNouKdMMEsQ54lzTMSHs9aXCmxKcnxGBA%3D%3D&range=0-72070&rn=4&rbuf=0&pot=D7a3ahNB99leto-gNv3OZpViDKFp-rHGA79vj9fCIEH1Sh_uJoQ9pctkZNJdDUDIDltxE-pVtzZvbshSAWgQcUNYklk2eXYVVuGHHWzaTdPzp90MwSlhMzB8SqA5-nq4khWPzhA=
IP 74.125.110.136:0
File type ASCII text, with very long lines (1182), with no line terminators
Hash 28de919619be9eea22649aac77556871
202951b941b32eb47cc2d893fefe277a6d0285fa
b978ade50dd847fb864c9ab136eb2ce0e51476f64589bb4b2941da5cc66ad080
POST /videoplayback?expire=1670634350&ei=DYeTY-iSN4_RyAX9hYEg&ip=91.90.42.154&id=o-ALnomfe0lJ6uQqci3Nx3IwNXvjEikCoyw2-yRY89Sk9H&itag=251&source=youtube&requiressl=yes&spc=SFxXNsADftTTmymRpTZLeFkmHdHyjg4&vprv=1&mime=audio%2Fwebm&ns=bKqONJnggAJLy_wSf0qK6iYJ&gir=yes&clen=58313868&dur=3535.161&lmt=1652511580268378&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5318224&n=MHSA1m6PpAJf7Q&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAIfxAOttJdSEF8HAFbHpqjnvouy7wooh_ZQYkGY2MGWvAiAYryjXiMVEdIC1lQnr4Wgab_eYCOIgPz5IeA8wkqNo_g%3D%3D&alr=yes&cpn=0MYu3-bDTV8EP3u6&cver=1.20221207.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=bJ&mm=29&mn=sn-5goeen7y&ms=rdu&mt=1670612462&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgFez42p_N1wWWN3WRNBN6PRn8wp65DW-ht8N8atZvIfkCIQD-Vo-0W87U3WNouKdMMEsQ54lzTMSHs9aXCmxKcnxGBA%3D%3D&range=0-72070&rn=4&rbuf=0&pot=D7a3ahNB99leto-gNv3OZpViDKFp-rHGA79vj9fCIEH1Sh_uJoQ9pctkZNJdDUDIDltxE-pVtzZvbshSAWgQcUNYklk2eXYVVuGHHWzaTdPzp90MwSlhMzB8SqA5-nq4khWPzhA= HTTP/1.1
Host: rr3---sn-5goeen7y.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Fri, 09 Dec 2022 19:05:50 GMT
Expires: Fri, 09 Dec 2022 19:05:50 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 1182
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr3---sn-5goeen7y.googlevideo.com/videoplayback?expire=1670634350&ei=DYeTY-iSN4_RyAX9hYEg&ip=91.90.42.154&id=o-ALnomfe0lJ6uQqci3Nx3IwNXvjEikCoyw2-yRY89Sk9H&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&spc=SFxXNsADftTTmymRpTZLeFkmHdHyjg4&vprv=1&mime=video%2Fwebm&ns=bKqONJnggAJLy_wSf0qK6iYJ&gir=yes&clen=21647729&dur=3535.133&lmt=1652511301283408&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5319224&n=MHSA1m6PpAJf7Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgKK7HV-FPTAMb9HdaEJCoLVNf3dIiv_BkNgvCplcdekMCIQDRCnKvzKGS5uBBgJWyJulncEPn5SFk5l9My5G6vIZlog%3D%3D&alr=yes&cpn=0MYu3-bDTV8EP3u6&cver=1.20221207.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=bJ&mm=29&mn=sn-5goeen7y&ms=rdu&mt=1670612462&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgY4tq4lHAWTcnQLjvybePYtuBvIA0eD459wrpVh5l4L8CIQDtvCfssfJyZgGfRQJGsP8GhOO0XCNBbm2k8lfSUtienQ%3D%3D&range=0-137794&rn=7&rbuf=0&pot=D7a3ahNB99leto-gNv3OZpViDKFp-rHGA79vj9fCIEH1Sh_uJoQ9pctkZNJdDUDIDltxE-pVtzZvbshSAWgQcUNYklk2eXYVVuGHHWzaTdPzp90MwSlhMzB8SqA5-nq4khWPzhA=
74.125.110.136200 OK 1.3 kB URL HTTP/1.1 rr3---sn-5goeen7y.googlevideo.com/videoplayback?expire=1670634350&ei=DYeTY-iSN4_RyAX9hYEg&ip=91.90.42.154&id=o-ALnomfe0lJ6uQqci3Nx3IwNXvjEikCoyw2-yRY89Sk9H&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&spc=SFxXNsADftTTmymRpTZLeFkmHdHyjg4&vprv=1&mime=video%2Fwebm&ns=bKqONJnggAJLy_wSf0qK6iYJ&gir=yes&clen=21647729&dur=3535.133&lmt=1652511301283408&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5319224&n=MHSA1m6PpAJf7Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgKK7HV-FPTAMb9HdaEJCoLVNf3dIiv_BkNgvCplcdekMCIQDRCnKvzKGS5uBBgJWyJulncEPn5SFk5l9My5G6vIZlog%3D%3D&alr=yes&cpn=0MYu3-bDTV8EP3u6&cver=1.20221207.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=bJ&mm=29&mn=sn-5goeen7y&ms=rdu&mt=1670612462&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgY4tq4lHAWTcnQLjvybePYtuBvIA0eD459wrpVh5l4L8CIQDtvCfssfJyZgGfRQJGsP8GhOO0XCNBbm2k8lfSUtienQ%3D%3D&range=0-137794&rn=7&rbuf=0&pot=D7a3ahNB99leto-gNv3OZpViDKFp-rHGA79vj9fCIEH1Sh_uJoQ9pctkZNJdDUDIDltxE-pVtzZvbshSAWgQcUNYklk2eXYVVuGHHWzaTdPzp90MwSlhMzB8SqA5-nq4khWPzhA=
IP 74.125.110.136:0
File type ASCII text, with very long lines (1264), with no line terminators
Hash a0fcae95ac41b6d6bf0307865d487e86
92b1d9949bc48fe52d167c5ea9c8217c30fca0a2
9d505acee7bc5eb392ff43fc9f1b4ce221e645c415b890bb643b89d08105614d
POST /videoplayback?expire=1670634350&ei=DYeTY-iSN4_RyAX9hYEg&ip=91.90.42.154&id=o-ALnomfe0lJ6uQqci3Nx3IwNXvjEikCoyw2-yRY89Sk9H&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&spc=SFxXNsADftTTmymRpTZLeFkmHdHyjg4&vprv=1&mime=video%2Fwebm&ns=bKqONJnggAJLy_wSf0qK6iYJ&gir=yes&clen=21647729&dur=3535.133&lmt=1652511301283408&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5319224&n=MHSA1m6PpAJf7Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgKK7HV-FPTAMb9HdaEJCoLVNf3dIiv_BkNgvCplcdekMCIQDRCnKvzKGS5uBBgJWyJulncEPn5SFk5l9My5G6vIZlog%3D%3D&alr=yes&cpn=0MYu3-bDTV8EP3u6&cver=1.20221207.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=bJ&mm=29&mn=sn-5goeen7y&ms=rdu&mt=1670612462&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgY4tq4lHAWTcnQLjvybePYtuBvIA0eD459wrpVh5l4L8CIQDtvCfssfJyZgGfRQJGsP8GhOO0XCNBbm2k8lfSUtienQ%3D%3D&range=0-137794&rn=7&rbuf=0&pot=D7a3ahNB99leto-gNv3OZpViDKFp-rHGA79vj9fCIEH1Sh_uJoQ9pctkZNJdDUDIDltxE-pVtzZvbshSAWgQcUNYklk2eXYVVuGHHWzaTdPzp90MwSlhMzB8SqA5-nq4khWPzhA= HTTP/1.1
Host: rr3---sn-5goeen7y.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Fri, 09 Dec 2022 19:05:50 GMT
Expires: Fri, 09 Dec 2022 19:05:50 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 1264
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 433a29b11f69ed19a37df2d92c2d05d4
4c3b5276a4f76a379709cd95723839c4ca8638bf
7671716e8f9ea45eb0afae7d42540ecc9776713ae7bc9886dcb10a179a0d7ffb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 19:05:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr1---sn-5hnekn7d.googlevideo.com/videoplayback?expire=1670634350&ei=DYeTY-iSN4_RyAX9hYEg&ip=91.90.42.154&id=o-ALnomfe0lJ6uQqci3Nx3IwNXvjEikCoyw2-yRY89Sk9H&itag=251&source=youtube&requiressl=yes&spc=SFxXNsADftTTmymRpTZLeFkmHdHyjg4&vprv=1&mime=audio%2Fwebm&ns=bKqONJnggAJLy_wSf0qK6iYJ&gir=yes&clen=58313868&dur=3535.161&lmt=1652511580268378&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5318224&n=MHSA1m6PpAJf7Q&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAIfxAOttJdSEF8HAFbHpqjnvouy7wooh_ZQYkGY2MGWvAiAYryjXiMVEdIC1lQnr4Wgab_eYCOIgPz5IeA8wkqNo_g%3D%3D&alr=yes&cpn=0MYu3-bDTV8EP3u6&cver=1.20221207.01.00&cm2rm=sn-capm-vnae7l,sn-5gole7s&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=bJ&mm=34&mn=sn-5hnekn7d&ms=ltu&mt=1670612440&mv=m&mvi=1&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhAMoVgDi_UtKtM6N49jiQkzDVMnmqdB-wMaEMowBV5tJwAiEAhrAp1OY2ms_eOe4763vcLx4aPqT_vPhfkWbQbF7V3cg%3D&range=0-72070&rn=6&rbuf=0&pot=D7a3ahNB99leto-gNv3OZpViDKFp-rHGA79vj9fCIEH1Sh_uJoQ9pctkZNJdDUDIDltxE-pVtzZvbshSAWgQcUNYklk2eXYVVuGHHWzaTdPzp90MwSlhMzB8SqA5-nq4khWPzhA=
209.85.226.38200 OK 72 kB URL HTTP/1.1 rr1---sn-5hnekn7d.googlevideo.com/videoplayback?expire=1670634350&ei=DYeTY-iSN4_RyAX9hYEg&ip=91.90.42.154&id=o-ALnomfe0lJ6uQqci3Nx3IwNXvjEikCoyw2-yRY89Sk9H&itag=251&source=youtube&requiressl=yes&spc=SFxXNsADftTTmymRpTZLeFkmHdHyjg4&vprv=1&mime=audio%2Fwebm&ns=bKqONJnggAJLy_wSf0qK6iYJ&gir=yes&clen=58313868&dur=3535.161&lmt=1652511580268378&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5318224&n=MHSA1m6PpAJf7Q&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAIfxAOttJdSEF8HAFbHpqjnvouy7wooh_ZQYkGY2MGWvAiAYryjXiMVEdIC1lQnr4Wgab_eYCOIgPz5IeA8wkqNo_g%3D%3D&alr=yes&cpn=0MYu3-bDTV8EP3u6&cver=1.20221207.01.00&cm2rm=sn-capm-vnae7l,sn-5gole7s&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=bJ&mm=34&mn=sn-5hnekn7d&ms=ltu&mt=1670612440&mv=m&mvi=1&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhAMoVgDi_UtKtM6N49jiQkzDVMnmqdB-wMaEMowBV5tJwAiEAhrAp1OY2ms_eOe4763vcLx4aPqT_vPhfkWbQbF7V3cg%3D&range=0-72070&rn=6&rbuf=0&pot=D7a3ahNB99leto-gNv3OZpViDKFp-rHGA79vj9fCIEH1Sh_uJoQ9pctkZNJdDUDIDltxE-pVtzZvbshSAWgQcUNYklk2eXYVVuGHHWzaTdPzp90MwSlhMzB8SqA5-nq4khWPzhA=
IP 209.85.226.38:0
File type WebM\012- EBML file, creator webmB\20\012- data
Hash 8a0bc00286e39695a9f34a84eeccc91e
9feb6337a17f7bcd9897eb6425259966bcb6937a
f7233132e32dd2c94277280f0b3ef8fc19b67b00625c044350458ef2b2ef3e2d
POST /videoplayback?expire=1670634350&ei=DYeTY-iSN4_RyAX9hYEg&ip=91.90.42.154&id=o-ALnomfe0lJ6uQqci3Nx3IwNXvjEikCoyw2-yRY89Sk9H&itag=251&source=youtube&requiressl=yes&spc=SFxXNsADftTTmymRpTZLeFkmHdHyjg4&vprv=1&mime=audio%2Fwebm&ns=bKqONJnggAJLy_wSf0qK6iYJ&gir=yes&clen=58313868&dur=3535.161&lmt=1652511580268378&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5318224&n=MHSA1m6PpAJf7Q&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAIfxAOttJdSEF8HAFbHpqjnvouy7wooh_ZQYkGY2MGWvAiAYryjXiMVEdIC1lQnr4Wgab_eYCOIgPz5IeA8wkqNo_g%3D%3D&alr=yes&cpn=0MYu3-bDTV8EP3u6&cver=1.20221207.01.00&cm2rm=sn-capm-vnae7l,sn-5gole7s&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=bJ&mm=34&mn=sn-5hnekn7d&ms=ltu&mt=1670612440&mv=m&mvi=1&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhAMoVgDi_UtKtM6N49jiQkzDVMnmqdB-wMaEMowBV5tJwAiEAhrAp1OY2ms_eOe4763vcLx4aPqT_vPhfkWbQbF7V3cg%3D&range=0-72070&rn=6&rbuf=0&pot=D7a3ahNB99leto-gNv3OZpViDKFp-rHGA79vj9fCIEH1Sh_uJoQ9pctkZNJdDUDIDltxE-pVtzZvbshSAWgQcUNYklk2eXYVVuGHHWzaTdPzp90MwSlhMzB8SqA5-nq4khWPzhA= HTTP/1.1
Host: rr1---sn-5hnekn7d.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Sat, 14 May 2022 06:59:40 GMT
Content-Type: audio/webm
Date: Fri, 09 Dec 2022 19:05:50 GMT
Expires: Fri, 09 Dec 2022 19:05:50 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 72071
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr1---sn-5hnekn7d.googlevideo.com/videoplayback?expire=1670634350&ei=DYeTY-iSN4_RyAX9hYEg&ip=91.90.42.154&id=o-ALnomfe0lJ6uQqci3Nx3IwNXvjEikCoyw2-yRY89Sk9H&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&spc=SFxXNsADftTTmymRpTZLeFkmHdHyjg4&vprv=1&mime=video%2Fwebm&ns=bKqONJnggAJLy_wSf0qK6iYJ&gir=yes&clen=21647729&dur=3535.133&lmt=1652511301283408&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5319224&n=MHSA1m6PpAJf7Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgKK7HV-FPTAMb9HdaEJCoLVNf3dIiv_BkNgvCplcdekMCIQDRCnKvzKGS5uBBgJWyJulncEPn5SFk5l9My5G6vIZlog%3D%3D&alr=yes&cpn=0MYu3-bDTV8EP3u6&cver=1.20221207.01.00&cm2rm=sn-capm-vnae7l,sn-5gole7s&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=bJ&mm=34&mn=sn-5hnekn7d&ms=ltu&mt=1670612440&mv=m&mvi=1&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgcwAIc8GkmxOvzMCzdSkrkSsqgP5BocY4i_an5dotkkYCIQC12W_vVa954wwhfku3-9A1CjtMAC1sP7K46VGxgUSPOw%3D%3D&range=0-137794&rn=8&rbuf=0&pot=D7a3ahNB99leto-gNv3OZpViDKFp-rHGA79vj9fCIEH1Sh_uJoQ9pctkZNJdDUDIDltxE-pVtzZvbshSAWgQcUNYklk2eXYVVuGHHWzaTdPzp90MwSlhMzB8SqA5-nq4khWPzhA=
209.85.226.38200 OK 138 kB URL HTTP/1.1 rr1---sn-5hnekn7d.googlevideo.com/videoplayback?expire=1670634350&ei=DYeTY-iSN4_RyAX9hYEg&ip=91.90.42.154&id=o-ALnomfe0lJ6uQqci3Nx3IwNXvjEikCoyw2-yRY89Sk9H&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&spc=SFxXNsADftTTmymRpTZLeFkmHdHyjg4&vprv=1&mime=video%2Fwebm&ns=bKqONJnggAJLy_wSf0qK6iYJ&gir=yes&clen=21647729&dur=3535.133&lmt=1652511301283408&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5319224&n=MHSA1m6PpAJf7Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgKK7HV-FPTAMb9HdaEJCoLVNf3dIiv_BkNgvCplcdekMCIQDRCnKvzKGS5uBBgJWyJulncEPn5SFk5l9My5G6vIZlog%3D%3D&alr=yes&cpn=0MYu3-bDTV8EP3u6&cver=1.20221207.01.00&cm2rm=sn-capm-vnae7l,sn-5gole7s&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=bJ&mm=34&mn=sn-5hnekn7d&ms=ltu&mt=1670612440&mv=m&mvi=1&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgcwAIc8GkmxOvzMCzdSkrkSsqgP5BocY4i_an5dotkkYCIQC12W_vVa954wwhfku3-9A1CjtMAC1sP7K46VGxgUSPOw%3D%3D&range=0-137794&rn=8&rbuf=0&pot=D7a3ahNB99leto-gNv3OZpViDKFp-rHGA79vj9fCIEH1Sh_uJoQ9pctkZNJdDUDIDltxE-pVtzZvbshSAWgQcUNYklk2eXYVVuGHHWzaTdPzp90MwSlhMzB8SqA5-nq4khWPzhA=
IP 209.85.226.38:0
File type WebM\012- EBML file, creator webmB\20\012- data
Size 138 kB (137795 bytes)
Hash 080d8e208ad2e438d1c04714d44e7ce4
8df675773ff70e5fc264d73fb98a1e5be499fcb4
021f65469bc51bbcf2bf8aebee14121d2f1606903d7aea6bba503c779d450651
POST /videoplayback?expire=1670634350&ei=DYeTY-iSN4_RyAX9hYEg&ip=91.90.42.154&id=o-ALnomfe0lJ6uQqci3Nx3IwNXvjEikCoyw2-yRY89Sk9H&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&spc=SFxXNsADftTTmymRpTZLeFkmHdHyjg4&vprv=1&mime=video%2Fwebm&ns=bKqONJnggAJLy_wSf0qK6iYJ&gir=yes&clen=21647729&dur=3535.133&lmt=1652511301283408&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5319224&n=MHSA1m6PpAJf7Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgKK7HV-FPTAMb9HdaEJCoLVNf3dIiv_BkNgvCplcdekMCIQDRCnKvzKGS5uBBgJWyJulncEPn5SFk5l9My5G6vIZlog%3D%3D&alr=yes&cpn=0MYu3-bDTV8EP3u6&cver=1.20221207.01.00&cm2rm=sn-capm-vnae7l,sn-5gole7s&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=bJ&mm=34&mn=sn-5hnekn7d&ms=ltu&mt=1670612440&mv=m&mvi=1&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgcwAIc8GkmxOvzMCzdSkrkSsqgP5BocY4i_an5dotkkYCIQC12W_vVa954wwhfku3-9A1CjtMAC1sP7K46VGxgUSPOw%3D%3D&range=0-137794&rn=8&rbuf=0&pot=D7a3ahNB99leto-gNv3OZpViDKFp-rHGA79vj9fCIEH1Sh_uJoQ9pctkZNJdDUDIDltxE-pVtzZvbshSAWgQcUNYklk2eXYVVuGHHWzaTdPzp90MwSlhMzB8SqA5-nq4khWPzhA= HTTP/1.1
Host: rr1---sn-5hnekn7d.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Sat, 14 May 2022 06:55:01 GMT
Content-Type: video/webm
Date: Fri, 09 Dec 2022 19:05:50 GMT
Expires: Fri, 09 Dec 2022 19:05:50 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 137795
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
fonts.googleapis.com/css2?family=Oswald:wght@400;500;600;700;800
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Oswald:wght@400;500;600;700;800
IP 142.250.74.106:0
GET /css2?family=Oswald:wght@400;500;600;700;800 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 09 Dec 2022 19:05:48 GMT
date: Fri, 09 Dec 2022 19:05:48 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Sacramento
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Sacramento
IP 142.250.74.106:0
GET /css2?family=Sacramento HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 09 Dec 2022 19:05:48 GMT
date: Fri, 09 Dec 2022 19:05:48 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/iframe_api
142.250.74.46200 OK 0 B URL HTTP/2 www.youtube.com/iframe_api
IP 142.250.74.46:0
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Fri, 09 Dec 2022 19:05:48 GMT
date: Fri, 09 Dec 2022 19:05:48 GMT
cache-control: private, max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=AMqV6y4ifyc; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=OKnnmkQhMWc; Domain=.youtube.com; Expires=Wed, 07-Jun-2023 19:05:48 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+546; expires=Sun, 08-Dec-2024 19:05:48 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Montserrat:wght@400;500;600;700;900
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Montserrat:wght@400;500;600;700;900
IP 142.250.74.106:0
GET /css2?family=Montserrat:wght@400;500;600;700;900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 09 Dec 2022 19:05:48 GMT
date: Fri, 09 Dec 2022 19:05:48 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto:wght@400
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Roboto:wght@400
IP 142.250.74.106:0
GET /css2?family=Roboto:wght@400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clavusin.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 09 Dec 2022 19:05:48 GMT
date: Fri, 09 Dec 2022 19:05:48 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2