185.10.202.137/
185.10.202.137200 OK 6.1 kB IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (912), with CRLF, LF line terminators
Hash eac242056dfebfc9ed63ffc66cc44534
73982368aa5c14e062544ba683d3cafb2496763a
074e8b90ca27623fa07087aa7bb531125d89b688a84a311a5af3a87a6d673baa
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:33 GMT
Server: Apache/2.2.22 (Debian)
X-Powered-By: PHP/5.4.45-0+deb7u4
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6121
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7af19a5145a4ee99bdf18831bad04bfd
7bdd2a4785b999ef54a2644211d2b2b7190fb8e1
3237bf0111ecdec3615c4d2d49a602f48f800335d0194f52b600bdaefbd63ed0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3237BF0111ECDEC3615C4D2D49A602F48F800335D0194F52B600BDAEFBD63ED0"
Last-Modified: Thu, 30 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3927
Expires: Fri, 31 Mar 2023 23:04:56 GMT
Date: Fri, 31 Mar 2023 21:59:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cca063332ba9a89eadd62a8dd7f81a9b
d473b2a7a32c964599ff3bac8f98fa578f03d1d1
02fb74c7c695ad99f7f2fd7c02ae2b88e2da1c5db339f883333d9090291931dc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02FB74C7C695AD99F7F2FD7C02AE2B88E2DA1C5DB339F883333D9090291931DC"
Last-Modified: Wed, 29 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5924
Expires: Fri, 31 Mar 2023 23:38:13 GMT
Date: Fri, 31 Mar 2023 21:59:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 374c9e295a804e605c402f48ae7e2446
967394b36ecdff2dd32842f878887f061024c6b3
7652dfcb9e2d620ce1d033be8ecc53166d2881154c15decd60899415e5ac2706
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7652DFCB9E2D620CE1D033BE8ECC53166D2881154C15DECD60899415E5AC2706"
Last-Modified: Thu, 30 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4506
Expires: Fri, 31 Mar 2023 23:14:35 GMT
Date: Fri, 31 Mar 2023 21:59:29 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4ad6984a756720fbfff47b37a75513a2
355e35258114452af8b9638985ed9d8ef3bf0aca
43181fccb10652c68cae86e5e32b4e8f426fb5ad49d8125cb99e072cff573cf5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 31 Mar 2023 21:16:13 GMT
content-type: application/json
age: 2596
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: hk3qcxxUZRKcIKvBci93nTmlfKvIxs5SiGp06v9NhXBEmqJWgsBfjU5EI0VOUh7j9bUCT9Fwj2s=
x-amz-request-id: 3WSQ5E0WPTTFPXZ5
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 31 Mar 2023 21:03:29 GMT
age: 3360
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
185.10.202.137/css/owl.carousel.css
185.10.202.137200 OK 528 B URL HTTP/1.1 185.10.202.137/css/owl.carousel.css
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
Hash a70757c9c5b45b8b3e693066dee5c63c
4ddc02d2eac2bb1a9ccc446ff1e19641ee8f7279
97e2ca1b06a80ecd57e1514d54bec8904727d25dc47f878b41d204c72e8535de
Analyzer Verdict Alert quad9 Sinkholed
GET /css/owl.carousel.css HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
Last-Modified: Tue, 06 Dec 2016 13:04:20 GMT
ETag: "310002-5c4-542fd0add7d00"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 528
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 21:59:29 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
185.10.202.137/css/responsive.2.css
185.10.202.137200 OK 1.3 kB URL HTTP/1.1 185.10.202.137/css/responsive.2.css
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
Hash 37e19af43a44ee860276707a025a6bda
3d32b1421b56d8fcfd4c25e77e61143dc098c3eb
113c0ab946f7fbd716e24c08e8a57349824e99f8a98f70fdf5d55ca0302c7c72
Analyzer Verdict Alert quad9 Sinkholed
GET /css/responsive.2.css HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
Last-Modified: Sat, 14 Oct 2017 11:44:42 GMT
ETag: "31041a-1b87-55b804c8ffe80"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1327
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
185.10.202.137/js/jquery.nav.js
185.10.202.137200 OK 1.8 kB URL HTTP/1.1 185.10.202.137/js/jquery.nav.js
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
Hash 519317608d5cc1a5fee2f2ee8d322872
728c90ad40b735644e6f49d0660876f47201b20a
b7d7e904efe7b0137c3937fbfe700f8f5ddaaa8a2cc6db7415bba05b62faeb85
Analyzer Verdict Alert quad9 Sinkholed
GET /js/jquery.nav.js HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
Last-Modified: Wed, 28 Sep 2016 08:58:07 GMT
ETag: "31800c-1412-53d8d8f4685c0"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1828
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
185.10.202.137/js/vendor/modernizr-2.6.2.min.js
185.10.202.137200 OK 6.2 kB URL HTTP/1.1 185.10.202.137/js/vendor/modernizr-2.6.2.min.js
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type HTML document, ASCII text, with very long lines (14756)
Hash 57a085f9e525f95d45036b030b42a541
eed7fda0de371ff378a50062521934e00a094bc7
51db4d7fbbd3433e90e12a9120ddb9e3b3a3909e7770f7419a53977f38a5f8c0
Analyzer Verdict Alert quad9 Sinkholed
GET /js/vendor/modernizr-2.6.2.min.js HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
Last-Modified: Wed, 28 Sep 2016 08:58:07 GMT
ETag: "318011-3c36-53d8d8f4685c0"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6246
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
185.10.202.137/js/jquery.sticky.js
185.10.202.137200 OK 1.7 kB URL HTTP/1.1 185.10.202.137/js/jquery.sticky.js
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
Hash 66c90326035da87147f90d726516c74f
8c23e0d1470835515cff3a3d78ba38ec4559f55d
33c03a59a31ad23e41a6a48de81a8cfc932906c56eed486dbd459c8ebda2165b
Analyzer Verdict Alert quad9 Sinkholed
GET /js/jquery.sticky.js HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
Last-Modified: Wed, 28 Sep 2016 08:58:07 GMT
ETag: "318014-1616-53d8d8f4685c0"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1669
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
185.10.202.137/js/plugins.js
185.10.202.137200 OK 12 kB URL HTTP/1.1 185.10.202.137/js/plugins.js
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type ASCII text, with very long lines (2241)
Hash 0db475d02459bde3063d9c6098ee445e
15ff11e3b52fcad80dcf6bf47b0fe42294bb0355
3a98dc979b7542750afadb931c67c4cd448a211bbf327a53a3d6ef24a39d4e6f
Analyzer Verdict Alert quad9 Sinkholed
GET /js/plugins.js HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
Last-Modified: Wed, 28 Sep 2016 08:58:07 GMT
ETag: "31800e-f6cc-53d8d8f4685c0"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11953
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
185.10.202.137/js/bootstrap.min.js
185.10.202.137200 OK 7.7 kB URL HTTP/1.1 185.10.202.137/js/bootstrap.min.js
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type ASCII text, with very long lines (28928)
Hash 531cec57cf2527408053a77abcaf5684
49664d46b6767d39060d84cbcaaca0935bca7cbf
adf31e9db17035ef5e2e7199f94f5235fbd8a81fb1aafb1bd8f4b8d0d1d4720f
Analyzer Verdict Alert quad9 Sinkholed
GET /js/bootstrap.min.js HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
Last-Modified: Wed, 28 Sep 2016 08:58:07 GMT
ETag: "31800d-71a9-53d8d8f4685c0"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7665
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
185.10.202.137/js/wow.min.js
185.10.202.137200 OK 1.7 kB URL HTTP/1.1 185.10.202.137/js/wow.min.js
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type ASCII text, with very long lines (4746)
Hash 3f4eda7c27f5d2ccaa6f682a9c091da7
9226932c3240508dd7beb9c550ec593eeccd2ead
d1d2fdc9ac825699e14cb3664aa7e9c077309305262e976697136c318274da24
Analyzer Verdict Alert quad9 Sinkholed
GET /js/wow.min.js HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
Last-Modified: Wed, 28 Sep 2016 08:58:07 GMT
ETag: "318016-12a8-53d8d8f4685c0"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1701
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
185.10.202.137/js/main.js
185.10.202.137200 OK 399 B URL HTTP/1.1 185.10.202.137/js/main.js
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
Hash e7c50896435be3c91d3adaf2537af34d
7552e25eeb9fb468c1b6569269a95858748443af
9b577d036463d275c6a40c9830a4c5b7e921aee0c5d30b84f9a2f45874cbdcf1
Analyzer Verdict Alert quad9 Sinkholed
GET /js/main.js HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
Last-Modified: Wed, 28 Sep 2016 08:58:07 GMT
ETag: "318015-29b-53d8d8f4685c0"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 399
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
185.10.202.137/css/allcard.css
185.10.202.137200 OK 889 B URL HTTP/1.1 185.10.202.137/css/allcard.css
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
Hash d7080adc5611f5fa35fcdf68299188b2
bfd9033be16a034de2f3945e2d0f04ade08787a7
468152e520834d6c6d0d2bdc62ca631b37e94cbf6cf309f57af39060edf2cc6c
Analyzer Verdict Alert quad9 Sinkholed
GET /css/allcard.css HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
Last-Modified: Tue, 06 Dec 2016 13:04:18 GMT
ETag: "31040c-11f2-542fd0abef880"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 889
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
185.10.202.137/css/font-awesome.min.css
185.10.202.137200 OK 5.0 kB URL HTTP/1.1 185.10.202.137/css/font-awesome.min.css
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type ASCII text, with very long lines (21822)
Hash 5fc680fa1d13940a1a9cba6f89965f74
98a85daaf67d23ff264953e583c68315f76f5549
0f61bee70c4eca1d92acdfd8ad8285206bced50ef37af0ad2c846d1e5cbc3534
Analyzer Verdict Alert quad9 Sinkholed
GET /css/font-awesome.min.css HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
Last-Modified: Tue, 06 Dec 2016 13:04:21 GMT
ETag: "310007-55e0-542fd0aecbf40"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5042
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
185.10.202.137/css/animate.min.css
185.10.202.137200 OK 4.7 kB URL HTTP/1.1 185.10.202.137/css/animate.min.css
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type ASCII text, with very long lines (54696)
Hash 0b9644206266ef87cf1ef979f7337295
d4f76c7d9279e9a406ff270e08085d00c326b78d
c2beb17a7a834019cace12177f0ed422dc2810a97dc9678426e77f37709a9c9f
Analyzer Verdict Alert quad9 Sinkholed
GET /css/animate.min.css HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
Last-Modified: Tue, 06 Dec 2016 13:04:24 GMT
ETag: "310005-da24-542fd0b1a8600"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4745
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
185.10.202.137/css/main.2.css
185.10.202.137200 OK 2.6 kB URL HTTP/1.1 185.10.202.137/css/main.2.css
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
Hash 2ad7ba8440d719d5be982644906c2207
9a4c2d8f188a92e64220ed65fa8e82ad3cf075ed
52a0c7c2c1a7c13965acbe7c32ed39b3064a535a286b36096f909a663bcc1ce7
Analyzer Verdict Alert quad9 Sinkholed
GET /css/main.2.css HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
Last-Modified: Sat, 14 Oct 2017 11:43:22 GMT
ETag: "31040e-405d-55b8047cb4a80"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2637
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
185.10.202.137/css/bootstrap.min.css
185.10.202.137200 OK 20 kB URL HTTP/1.1 185.10.202.137/css/bootstrap.min.css
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type ASCII text, with very long lines (311)
Hash 7b23b6a75927c7a5a8917f24972c0083
81066a81168b33a95961a6dc52d725f78b6c0072
3e99f460f5d71dceb111c9211b16434f07390db451e6ad3351285882bc510182
Analyzer Verdict Alert quad9 Sinkholed
GET /css/bootstrap.min.css HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
Last-Modified: Sat, 14 Oct 2017 09:43:44 GMT
ETag: "310004-22698-55b7e9bf3b400"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20218
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
185.10.202.137/images/lang_sel.png
185.10.202.137200 OK 2.0 kB URL HTTP/1.1 185.10.202.137/images/lang_sel.png
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type PNG image data, 54 x 12, 8-bit/color RGBA, non-interlaced\012- data
Hash e00ce0e68f249e2008c613729fdcd797
084a338ae0246025166f6aa46f3c091e3e8b70a5
59101d5e480739f810addf15b0362bd7da8e4edd6a978a04069200b842046db3
Analyzer Verdict Alert quad9 Sinkholed
GET /images/lang_sel.png HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
Last-Modified: Wed, 28 Sep 2016 08:58:07 GMT
ETag: "3103c5-7cc-53d8d8f4685c0"
Accept-Ranges: bytes
Content-Length: 1996
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
www.skypeassets.com/content/dam/skype/images/misc/Trademark/s-logo-solid.jpg
23.36.76.218200 OK 8.8 kB URL HTTP/1.1 www.skypeassets.com/content/dam/skype/images/misc/Trademark/s-logo-solid.jpg
IP 23.36.76.218:0
ASN #20940 Akamai International B.V.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 113x113, components 3\012- data
Hash c77e6bbfa2c83b4cfc0a55d3ce367e02
335afb5e035e93079c38da15612aa1a91d7a3d77
6adae2233892323c56e6552a8c90a1cb312ecf2283d0c55cd19da4f6dd83de88
GET /content/dam/skype/images/misc/Trademark/s-logo-solid.jpg HTTP/1.1
Host: www.skypeassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Cache-Control: public, max-age=7776000
Content-Length: 8811
Content-Type: image/jpeg
Content-MD5: x35rv6LIO0z8ClXTzjZ+Ag==
Last-Modified: Wed, 14 Oct 2015 08:46:09 GMT
ETag: 0x8D2D473E883F637
Access-Control-Expose-Headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
Access-Control-Allow-Origin: *
Date: Fri, 31 Mar 2023 21:59:29 GMT
Connection: keep-alive
185.10.202.137/GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5b436b3101fa63.06753982.jpg
185.10.202.137200 OK 39 kB URL HTTP/1.1 185.10.202.137/GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5b436b3101fa63.06753982.jpg
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6], baseline, precision 8, 317x266, components 3\012- data
Hash 911a91707d5536408a4a31210bc1f455
ac3a15351dcd109839657c0d4a5b7b9fd7576281
8137b510ecc04de99b417b30915496eba5aed3f9eb2cfc2c2a8203a465a941cf
Analyzer Verdict Alert quad9 Sinkholed
GET /GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5b436b3101fa63.06753982.jpg HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
X-Powered-By: PHP/5.4.45-0+deb7u4
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
185.10.202.137/images/logo_set.png
185.10.202.137200 OK 94 kB URL HTTP/1.1 185.10.202.137/images/logo_set.png
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type PNG image data, 350 x 56, 8-bit/color RGBA, non-interlaced\012- data
Hash a92ec68945a33f0830aa9692be49eec1
e9d94df0bfa96f6c01564f896f30952629e71f93
b330555174b9cb68c9bd154f63568d5d518ae1513ec3d9da479a659659cfe272
Analyzer Verdict Alert quad9 Sinkholed
GET /images/logo_set.png HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
Last-Modified: Wed, 28 Sep 2016 08:58:07 GMT
ETag: "310041-17006-53d8d8f4685c0"
Accept-Ranges: bytes
Content-Length: 94214
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
185.10.202.137/images/wildshrimp002.jpg
185.10.202.137200 OK 91 kB URL HTTP/1.1 185.10.202.137/images/wildshrimp002.jpg
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 887x592, components 3\012- data
Hash e6e1f35e9c2d7f3e9da604ca6e1db9c6
0a45563277ba272939a0c25f408fcbbaa56d9c1e
6111e208fe095d89020387c7a57b7c2d0adf411fcdfbbc2eab08b9bc7a667780
Analyzer Verdict Alert quad9 Sinkholed
GET /images/wildshrimp002.jpg HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
Last-Modified: Wed, 28 Sep 2016 08:58:07 GMT
ETag: "3103cf-1621f-53d8d8f4685c0"
Accept-Ranges: bytes
Content-Length: 90655
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
185.10.202.137/fonts/ufonts.com_tw-cen-mt.ttf
185.10.202.137200 OK 76 kB URL HTTP/1.1 185.10.202.137/fonts/ufonts.com_tw-cen-mt.ttf
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type TrueType Font data, digitally signed, 19 tables, 1st "DSIG", 50 names, Macintosh, Digitized data copyright The Monotype Corporation 1991-1997. All rights reserved. Twentieth Cent\012- data
Hash 9b62dc86f936227b3f7b367bd0b6c05e
426e88020f87c3f937617fc5f1cb2f3f277895ae
10df71cef84ae0d7031d7ffa072b185343365be0e59bec4ac231e7c77811584b
Analyzer Verdict Alert quad9 Sinkholed
GET /fonts/ufonts.com_tw-cen-mt.ttf HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/css/main.2.css
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
Last-Modified: Wed, 28 Sep 2016 08:58:07 GMT
ETag: "31000a-129dc-53d8d8f4685c0"
Accept-Ranges: bytes
Content-Length: 76252
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
185.10.202.137/GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5847efc9ddd7f9.50940096.jpg
185.10.202.137200 OK 17 kB URL HTTP/1.1 185.10.202.137/GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5847efc9ddd7f9.50940096.jpg
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 295x295, components 3\012- data
Hash 495b9862cbe3b169f8a7430c0eee11a8
965d0a9952f18817075e9c9368b6acd0f9c082d1
5f3ef2ea0ea9de547bb3b534f52c2ef79422b0d9787a0abb2b2e399d648dfc8e
Analyzer Verdict Alert quad9 Sinkholed
GET /GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5847efc9ddd7f9.50940096.jpg HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
X-Powered-By: PHP/5.4.45-0+deb7u4
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
185.10.202.137/images/header_garnaal.jpg
185.10.202.137200 OK 536 kB URL HTTP/1.1 185.10.202.137/images/header_garnaal.jpg
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 2585x748, components 3\012- data
Size 536 kB (535898 bytes)
Hash 7c485d7443d84cf29a3adbcd279ceae3
808ff9b9cd67567c7ec86c99125591bd71cf3669
d9f111a0b2eb59c742b636fc09d6c93c846cf5fe5077611e2213be23266fe853
Analyzer Verdict Alert quad9 Sinkholed
GET /images/header_garnaal.jpg HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
Last-Modified: Wed, 28 Sep 2016 15:05:52 GMT
ETag: "3103c6-82d5a-53d92b273b400"
Accept-Ranges: bytes
Content-Length: 535898
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
185.10.202.137/js/vendor/jquery-1.10.2.min.js
185.10.202.137200 OK 33 kB URL HTTP/1.1 185.10.202.137/js/vendor/jquery-1.10.2.min.js
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type ASCII text, with very long lines (32072)
Hash 7e1dc6526190c5ed10a7c46efab6308f
357183b385b66f7178a78ae0f29b318bf98715c4
4ea55c30856ac22e9991922eada0c9bc28d4f20848437da1f0ab55fe38c27bd3
Analyzer Verdict Alert quad9 Sinkholed
GET /js/vendor/jquery-1.10.2.min.js HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
Last-Modified: Wed, 28 Sep 2016 08:58:07 GMT
ETag: "318010-16bb3-53d8d8f4685c0"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 32802
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
185.10.202.137/GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5e42881eb20727.11952508.jpg
185.10.202.137200 OK 29 kB URL HTTP/1.1 185.10.202.137/GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5e42881eb20727.11952508.jpg
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6], baseline, precision 8, 200x200, components 3\012- data
Hash d5c63da30a436ebcb3afb68ac6b0395f
6861c5f45c0c4c6bcd2b0dd808dc7ca29565387d
3e5127a11fb04811c2c2c2f0fa46c52c5e7f0e1629ea09de06fa315c8328a579
Analyzer Verdict Alert quad9 Sinkholed
GET /GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5e42881eb20727.11952508.jpg HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
X-Powered-By: PHP/5.4.45-0+deb7u4
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
185.10.202.137/GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5c3c7827e91e91.02559542.jpg
185.10.202.137200 OK 50 kB URL HTTP/1.1 185.10.202.137/GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5c3c7827e91e91.02559542.jpg
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=10], baseline, precision 8, 314x312, components 3\012- data
Hash 333da17992e21f757f087e9335d3ff2b
336d07dc218f57bfc38a068c85caf011a2045b1e
05ccd15ba714b68382687cc85bdcbf3ccd7f6b3762beeeb09a6f538ea4907406
Analyzer Verdict Alert quad9 Sinkholed
GET /GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5c3c7827e91e91.02559542.jpg HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
X-Powered-By: PHP/5.4.45-0+deb7u4
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
185.10.202.137/GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5b4364767b81c3.68128761.jpg
185.10.202.137200 OK 43 kB URL HTTP/1.1 185.10.202.137/GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5b4364767b81c3.68128761.jpg
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6], baseline, precision 8, 295x295, components 3\012- data
Hash 1cb99d3c9d6406d01d89fb9bd1a50f94
eb7768b127b5e2d066d6479f884c3cd60f500647
5343acaaea27eb0d3c27c8c36a52e11a4d1f449a96dce7d9fced23b09afb48ac
Analyzer Verdict Alert quad9 Sinkholed
GET /GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5b4364767b81c3.68128761.jpg HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
X-Powered-By: PHP/5.4.45-0+deb7u4
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
185.10.202.137/GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5b4363cf82bbc3.22228113.jpg
185.10.202.137200 OK 14 kB URL HTTP/1.1 185.10.202.137/GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5b4363cf82bbc3.22228113.jpg
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 295x295, components 3\012- data
Hash 675a4d440b07e25a639e5e5caf6bed86
c3d4ad6c5ceb981d486339689abf8555e34e157f
636f91cd00c4cec34b29ab637d9c764fce315f6fc990d0b25b3ff1a8eae04a25
Analyzer Verdict Alert quad9 Sinkholed
GET /GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5b4363cf82bbc3.22228113.jpg HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
X-Powered-By: PHP/5.4.45-0+deb7u4
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
185.10.202.137/GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5847ef55ceae55.72528420.jpg
185.10.202.137200 OK 12 kB URL HTTP/1.1 185.10.202.137/GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5847ef55ceae55.72528420.jpg
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 295x295, components 3\012- data
Hash b2bfbaa0feda1116d0f45d349dc95b6c
0ac32bc06e909f40c2e5235be69a1fda94708997
2a5b6ee2278159f2553d3928781ad08bc3074dbaf448a64e4d3d9dd63bf0b2a4
Analyzer Verdict Alert quad9 Sinkholed
GET /GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5847ef55ceae55.72528420.jpg HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
X-Powered-By: PHP/5.4.45-0+deb7u4
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
185.10.202.137/images/oilfish001.jpg
185.10.202.137200 OK 76 kB URL HTTP/1.1 185.10.202.137/images/oilfish001.jpg
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 600x400, components 3\012- data
Hash d003f79e92e139e3d259875355454d70
4fa3db8049c28fb495c6eb9406c851b473d8be28
e3707073c898347cb3de72abb5d3950dd5be1b22c5bf4444c51f64e5ded1a831
Analyzer Verdict Alert quad9 Sinkholed
GET /images/oilfish001.jpg HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
Last-Modified: Wed, 28 Sep 2016 08:58:07 GMT
ETag: "3103c2-127e9-53d8d8f4685c0"
Accept-Ranges: bytes
Content-Length: 75753
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
185.10.202.137/GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5c3703cd6151e3.63038133.jpg
185.10.202.137200 OK 62 kB URL HTTP/1.1 185.10.202.137/GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5c3703cd6151e3.63038133.jpg
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 125x125, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=9, manufacturer=Canon, model=Canon EOS 5D, orientation=upper-left, xresolution=142, yresolution=150, resolutionunit=2, datetime=2011:07:12 10:12:32], Exif Standard: [TIFF image data, big-endian, direntries=7, manufacturer=Canon, model=Canon EOS 5D, xresolution=118, yresolution=126, resolutionunit=2, datetime=2011:07:12 10:12:32], baseline, precision 8, 600x603, components 3\012- data
Hash 473be62302bd7d3af5771e6430327905
571ac450bb0e7e88c5036c56d1526d41879235f2
826e324312d6a64ef6e2b63e8de826284b1a06c28cd9c99cdea701400ce67e4b
Analyzer Verdict Alert quad9 Sinkholed
GET /GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5c3703cd6151e3.63038133.jpg HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
X-Powered-By: PHP/5.4.45-0+deb7u4
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
185.10.202.137/GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5c3c75e0378402.65861240.jpg
185.10.202.137200 OK 509 kB URL HTTP/1.1 185.10.202.137/GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5c3c75e0378402.65861240.jpg
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=13, height=0, manufacturer=samsung, model=SM-G955F, orientation=upper-left, xresolution=188, yresolution=196, resolutionunit=2, software=G955FXXU1CRC7, datetime=2019:01:14 12:31:42, GPS-Data, width=0], baseline, precision 8, 1728x2100, components 3\012- data
Size 509 kB (509345 bytes)
Hash 2daef556d6111bfb71a5ea202be1fad8
9aa693370a3f0b36385ef6f24804728547089257
8ff995a8fd6b67fe185c7eeeedaa0c5686568e05ac18dd77308fce8fb0542da4
Analyzer Verdict Alert quad9 Sinkholed
GET /GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5c3c75e0378402.65861240.jpg HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
X-Powered-By: PHP/5.4.45-0+deb7u4
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
185.10.202.137/GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5b436781403477.77970062.jpg
185.10.202.137200 OK 48 kB URL HTTP/1.1 185.10.202.137/GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5b436781403477.77970062.jpg
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6], baseline, precision 8, 295x295, components 3\012- data
Hash b6f18210ee6f4242d0ecd9346aa70d0f
51abf5f60efdaaa1d370de7a43bb7095b3104030
5b580779e00fd27c9f2e1a251dedef37eb49ab85795d78e7caf2291fdaf399c8
Analyzer Verdict Alert quad9 Sinkholed
GET /GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5b436781403477.77970062.jpg HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
X-Powered-By: PHP/5.4.45-0+deb7u4
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
185.10.202.137/GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5cdd0d0b446e40.11556461.jpg
185.10.202.137200 OK 172 kB URL HTTP/1.1 185.10.202.137/GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5cdd0d0b446e40.11556461.jpg
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6], baseline, precision 8, 1072x1275, components 3\012- data
Size 172 kB (172313 bytes)
Hash 98aee5beff87759bcc14c8ea93dcb81a
aa2e30153a768f46c7e99a451f1dca4292f33a54
2115882071c66a20f0c08a64cf5fab8bc44650d729595732e821e46476e9dba2
Analyzer Verdict Alert quad9 Sinkholed
GET /GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5cdd0d0b446e40.11556461.jpg HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
X-Powered-By: PHP/5.4.45-0+deb7u4
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
185.10.202.137/images/wildshrimp001.jpg
185.10.202.137200 OK 28 kB URL HTTP/1.1 185.10.202.137/images/wildshrimp001.jpg
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 600x400, components 3\012- data
Hash c61b125edc5fb2c7e56eb80af1352eaf
8cda46924b6a734ff9062ebcda7d6eed97b1e942
35f499d6d1b9265b75bf769764467e4be6d987f9436e6551f4f739131bfc919c
Analyzer Verdict Alert quad9 Sinkholed
GET /images/wildshrimp001.jpg HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
Last-Modified: Wed, 28 Sep 2016 08:58:07 GMT
ETag: "3103c8-6f81-53d8d8f4685c0"
Accept-Ranges: bytes
Content-Length: 28545
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
185.10.202.137/GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5e42850c990362.88023163.jpg
185.10.202.137200 OK 0 B URL HTTP/1.1 185.10.202.137/GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5e42850c990362.88023163.jpg
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /GetImage.v1.php?c2=5384ee&c1=5426f7&filename=5e42850c990362.88023163.jpg HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
X-Powered-By: PHP/5.4.45-0+deb7u4
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
185.10.202.137/images/vannamei002.jpg
185.10.202.137200 OK 54 kB URL HTTP/1.1 185.10.202.137/images/vannamei002.jpg
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 887x592, components 3\012- data
Hash d02accb32a618263149370729f43f569
bb2e4d2623af3bbf4f56bc24e79d4d081462cebe
7ba65585578c40c2a33225d3a737932fe7c1bc20fe4fa1a6eb069dbe34162115
Analyzer Verdict Alert quad9 Sinkholed
GET /images/vannamei002.jpg HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
Last-Modified: Wed, 28 Sep 2016 08:58:07 GMT
ETag: "310037-d2e3-53d8d8f4685c0"
Accept-Ranges: bytes
Content-Length: 53987
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
185.10.202.137/images/redshrimp002.jpg
185.10.202.137200 OK 51 kB URL HTTP/1.1 185.10.202.137/images/redshrimp002.jpg
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 888x592, components 3\012- data
Hash 94f920683b2a9759751f506a7092575c
a4b6fd0e595512df725599a4a1d9eef0a97cace1
2e7a9046e670dbf9d5cc9724692925bc35b8823dc4811a3915f76f0c9560e3e5
Analyzer Verdict Alert quad9 Sinkholed
GET /images/redshrimp002.jpg HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
Last-Modified: Wed, 28 Sep 2016 08:58:07 GMT
ETag: "310048-c7da-53d8d8f4685c0"
Accept-Ranges: bytes
Content-Length: 51162
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
www.youtube.com/embed/A2Mjlq5y2Ck
216.58.211.14301 Moved Permanently 0 B URL HTTP/1.1 www.youtube.com/embed/A2Mjlq5y2Ck
IP 216.58.211.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/A2Mjlq5y2Ck HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Content-Type: application/binary
X-Content-Type-Options: nosniff
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Fri, 31 Mar 2023 21:59:30 GMT
Location: https://www.youtube.com/embed/A2Mjlq5y2Ck
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
185.10.202.137/images/overlay-pattern.png
185.10.202.137200 OK 950 B URL HTTP/1.1 185.10.202.137/images/overlay-pattern.png
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type PNG image data, 4 x 4, 8-bit/color RGBA, non-interlaced\012- data
Hash 12405df6c29bd10b790494df7a09f59e
5a6c2d106b6cddfeb7a4a45549ae4378fa6515c0
1a865c46ac67bedb5026a3af891b8d946cbdacadff98ee4a8c7e7e8264ee6e87
Analyzer Verdict Alert quad9 Sinkholed
GET /images/overlay-pattern.png HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/css/main.2.css
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
Last-Modified: Wed, 28 Sep 2016 08:58:07 GMT
ETag: "310044-3b6-53d8d8f4685c0"
Accept-Ranges: bytes
Content-Length: 950
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
185.10.202.137/images/oilfish002.jpg
185.10.202.137200 OK 49 kB URL HTTP/1.1 185.10.202.137/images/oilfish002.jpg
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 887x590, components 3\012- data
Hash 7cbaeb6bb8a9660c2db91da3ba8263e7
9d4ea1be9822ec6ac612fcdeb845c1d178c89c8c
3f291429b91d3e476ac29c26c12bb12fe5bedde169fa62e6a35cc8205c370e7b
Analyzer Verdict Alert quad9 Sinkholed
GET /images/oilfish002.jpg HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
Last-Modified: Wed, 28 Sep 2016 08:58:07 GMT
ETag: "3103cb-c060-53d8d8f4685c0"
Accept-Ranges: bytes
Content-Length: 49248
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
185.10.202.137/fonts/fontawesome-webfont.woff?v=4.2.0
185.10.202.137200 OK 66 kB URL HTTP/1.1 185.10.202.137/fonts/fontawesome-webfont.woff?v=4.2.0
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type Web Open Font Format, TrueType, length 65452, version 1.0\012- data
Hash d95d6f5d5ab7cfefd09651800b69bd54
7d65e0227d0d7cdc1718119cd2a7dce0638f151c
199411f659f41aaccb959bacb1b0de30e54f244352a48c6f9894e65ae0f8a9a1
Analyzer Verdict Alert quad9 Sinkholed
GET /fonts/fontawesome-webfont.woff?v=4.2.0 HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://185.10.202.137/css/font-awesome.min.css
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
Last-Modified: Wed, 28 Sep 2016 08:58:07 GMT
ETag: "31000c-ffac-53d8d8f4685c0"
Accept-Ranges: bytes
Content-Length: 65452
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/x-font-woff
185.10.202.137/images/vannamei001.jpg
185.10.202.137200 OK 84 kB URL HTTP/1.1 185.10.202.137/images/vannamei001.jpg
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 600x400, components 3\012- data
Hash eba2dcaae49c50e8d6c2c0f52e4ccc38
92fb6894364d7cfc317330c6d8b90fbc38883797
af2628370d75f9d7c4c9d7c67d32f1736ac1f9872aac30e86f590b7569c955d0
Analyzer Verdict Alert quad9 Sinkholed
GET /images/vannamei001.jpg HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
Last-Modified: Wed, 28 Sep 2016 08:58:07 GMT
ETag: "310024-147f7-53d8d8f4685c0"
Accept-Ranges: bytes
Content-Length: 83959
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
185.10.202.137/images/redshrimp001.jpg
185.10.202.137200 OK 104 kB URL HTTP/1.1 185.10.202.137/images/redshrimp001.jpg
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 600x400, components 3\012- data
Size 104 kB (103649 bytes)
Hash 015891df910d6620e8981d9518faa5af
9e274f925ee1d5491964bce007fcff4b6daeab6c
70b012ab65e971d77d3b6fe7eb0be0986b860897efbd9888094af7bdcfc1f228
Analyzer Verdict Alert quad9 Sinkholed
GET /images/redshrimp001.jpg HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
Last-Modified: Wed, 28 Sep 2016 08:58:07 GMT
ETag: "3103c1-194e1-53d8d8f4685c0"
Accept-Ranges: bytes
Content-Length: 103649
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 02ddc021542aadb090aa31099f7b9267
cb2091bff4ad6c225faa4c0c02182217bcdc502c
dcca0f6c051c27f611b9e51981fb34bd0c82a317c2e3ae3412ec6de80c596d24
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 21:59:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Backoff, Last-Modified, Alert, Content-Length, Pragma, Cache-Control, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 31 Mar 2023 21:17:26 GMT
age: 2524
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 02ddc021542aadb090aa31099f7b9267
cb2091bff4ad6c225faa4c0c02182217bcdc502c
dcca0f6c051c27f611b9e51981fb34bd0c82a317c2e3ae3412ec6de80c596d24
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 21:59:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
185.10.202.137/favicon.ico
185.10.202.137404 Not Found 240 B URL HTTP/1.1 185.10.202.137/favicon.ico
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 24cf35bb8fece0f73e83c468426a0cbf
5368d98db6f4cfcf68f0a28939cbc576a208bbc1
b84ebc36d709385683a511e14f720255e00ec5c2b59e73c4443debaed2fdaa38
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/
HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 21:59:35 GMT
Server: Apache/2.2.22 (Debian)
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 240
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.youtube.com/embed/A2Mjlq5y2Ck
216.58.211.14200 OK 31 kB URL HTTP/2 www.youtube.com/embed/A2Mjlq5y2Ck
IP 216.58.211.14:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (58660)
Hash 200c4b3ff8681644b535d099e26dd8c8
fc5817e896530197fddfd77ea41ff92074cb019e
67064ed3acd238b5ee15539889f4d1e91aabb6c3f6c72e6123a2d572fe055eab
GET /embed/A2Mjlq5y2Ck HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://185.10.202.137/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 31 Mar 2023 21:59:30 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=zvWZzCphU-U; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=rbj4k7Gmqew; Domain=.youtube.com; Expires=Wed, 27-Sep-2023 21:59:30 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+080; expires=Sun, 30-Mar-2025 21:59:30 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
185.10.202.137/images/blog/blog-bg.jpg
185.10.202.137200 OK 438 kB URL HTTP/1.1 185.10.202.137/images/blog/blog-bg.jpg
IP 185.10.202.137:0
ASN #12703 Pulsant (Scotland) Ltd
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=992, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=1920], baseline, precision 8, 1920x992, components 3\012- data
Size 438 kB (438444 bytes)
Hash ddb4d083bf2157350c5fc7281e13e90c
f594e233b4e3465769d0007745a744c6848e7000
d62f95915b58b238dba461a4097fa2b967d8736414b7f2a8bb8e3b5143881d00
Analyzer Verdict Alert quad9 Sinkholed
GET /images/blog/blog-bg.jpg HTTP/1.1
Host: 185.10.202.137
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.10.202.137/css/main.2.css
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 21:59:34 GMT
Server: Apache/2.2.22 (Debian)
Last-Modified: Wed, 28 Sep 2016 08:58:07 GMT
ETag: "310026-6b0ac-53d8d8f4685c0"
Accept-Ranges: bytes
Content-Length: 438444
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
www.youtube.com/s/player/fa7eb95c/www-player.css
216.58.211.14200 OK 52 kB URL HTTP/2 www.youtube.com/s/player/fa7eb95c/www-player.css
IP 216.58.211.14:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 40333c9d07daab8ba8a53f73ee3f974e
36c2b17a7c48fc28036534f445b79fca9658f0a4
998313664fbeab2403238a77e6c50a4541d20805b30533f67de1a12c624fee54
GET /s/player/fa7eb95c/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/X26iZM53Xug
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 52099
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Mar 2023 15:52:18 GMT
expires: Thu, 28 Mar 2024 15:52:18 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 29 Mar 2023 00:17:30 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 194832
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/s/player/fa7eb95c/www-embed-player.vflset/www-embed-player.js
216.58.211.14200 OK 110 kB URL HTTP/2 www.youtube.com/s/player/fa7eb95c/www-embed-player.vflset/www-embed-player.js
IP 216.58.211.14:0
File type ASCII text, with very long lines (679)
Size 110 kB (110541 bytes)
Hash f7d0caf37d196733802d70ffde7306b0
29c3b2044acbe4ecd75557563fa647ca5ca953db
108dfb988d1c7838a44fafca3abc98945e7fc45a8c471d382b4450093b0d6045
GET /s/player/fa7eb95c/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/X26iZM53Xug
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 110541
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Mar 2023 15:52:18 GMT
expires: Thu, 28 Mar 2024 15:52:18 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 29 Mar 2023 00:17:30 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 194832
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b3df8c73360b4239af64e11f9d2388be
dc5463ff26615b40e4eab388052790d6c30ea5e6
877b23d16abf2e0e9f649f53747e82af0b75e8595abd71728254e612847cfdb6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "877B23D16ABF2E0E9F649F53747E82AF0B75E8595ABD71728254E612847CFDB6"
Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16764
Expires: Sat, 01 Apr 2023 02:38:54 GMT
Date: Fri, 31 Mar 2023 21:59:30 GMT
Connection: keep-alive
www.youtube.com/s/player/fa7eb95c/fetch-polyfill.vflset/fetch-polyfill.js
216.58.211.14200 OK 2.8 kB URL HTTP/2 www.youtube.com/s/player/fa7eb95c/fetch-polyfill.vflset/fetch-polyfill.js
IP 216.58.211.14:0
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (555)
Hash 80fe2d229007996c8397073b00755dc7
121f82c77bcf2a297a1085e3b092415c463fcafe
033dfa8941482c82d4f1aaa4a9172fb379b9e46a02d5b36297c5476bbbfdea2c
GET /s/player/fa7eb95c/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/X26iZM53Xug
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Mar 2023 15:52:18 GMT
expires: Thu, 28 Mar 2024 15:52:18 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 29 Mar 2023 00:17:30 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 194832
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/s/player/fa7eb95c/player_ias.vflset/en_US/base.js
216.58.211.14200 OK 628 kB URL HTTP/2 www.youtube.com/s/player/fa7eb95c/player_ias.vflset/en_US/base.js
IP 216.58.211.14:0
File type ASCII text, with very long lines (555)
Size 628 kB (627457 bytes)
Hash a583b39f19252d5e929044138520b689
51fc5bbd8694b72756de25fc60f13151d132ef01
0123ffed642c61e4754dc6b590a20af667dc7d0b4262335c8b4c46e562ad3823
GET /s/player/fa7eb95c/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/X26iZM53Xug
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-encoding: br
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 627457
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Mar 2023 15:56:58 GMT
expires: Thu, 28 Mar 2024 15:56:58 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 29 Mar 2023 00:17:30 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 194552
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ff36ec2657d8ee3b0f78d0a8b2bc9c96
7ce770b27771a2417292364a24af2d65bb9085a5
7c6a6029f3d8b5c88c0d52cfa1d8a6d79fe57080cbd88951ce40456d1ae214e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 21:59:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ff36ec2657d8ee3b0f78d0a8b2bc9c96
7ce770b27771a2417292364a24af2d65bb9085a5
7c6a6029f3d8b5c88c0d52cfa1d8a6d79fe57080cbd88951ce40456d1ae214e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 21:59:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 10:31:03 GMT
expires: Wed, 27 Mar 2024 10:31:03 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 300507
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ff36ec2657d8ee3b0f78d0a8b2bc9c96
7ce770b27771a2417292364a24af2d65bb9085a5
7c6a6029f3d8b5c88c0d52cfa1d8a6d79fe57080cbd88951ce40456d1ae214e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 21:59:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ff36ec2657d8ee3b0f78d0a8b2bc9c96
7ce770b27771a2417292364a24af2d65bb9085a5
7c6a6029f3d8b5c88c0d52cfa1d8a6d79fe57080cbd88951ce40456d1ae214e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 21:59:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 10:31:35 GMT
expires: Wed, 27 Mar 2024 10:31:35 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 300475
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ff36ec2657d8ee3b0f78d0a8b2bc9c96
7ce770b27771a2417292364a24af2d65bb9085a5
7c6a6029f3d8b5c88c0d52cfa1d8a6d79fe57080cbd88951ce40456d1ae214e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 21:59:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
54.191.42.69101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.191.42.69:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: MdxGQRwg1+K5Yv2DwmHYdQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: joZdleQE1r4VCZ4X6tDodFB+VW0=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 4eec701fec69b73ab6ff1af2c178806f
5de0d4c444297364831a311b4c13954aa31976b0
fda1ec0d2c39aafdb994d336b4d8b5d819fcd064a64b43649598609dac04f512
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 21:59:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b659ba21b71473d2f3b2d4aa16e37f06
bb64d95a2d25e7fa9c2577e16d7be664816bdb94
5220ed8dd94613cf15ac539ad97b9fbe9b47e19c68d3873f48f837a291039325
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 21:59:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 4eec701fec69b73ab6ff1af2c178806f
5de0d4c444297364831a311b4c13954aa31976b0
fda1ec0d2c39aafdb994d336b4d8b5d819fcd064a64b43649598609dac04f512
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 21:59:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.38200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.38:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 31 Mar 2023 21:50:12 GMT
expires: Fri, 31 Mar 2023 22:05:12 GMT
cache-control: public, max-age=900
age: 559
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b659ba21b71473d2f3b2d4aa16e37f06
bb64d95a2d25e7fa9c2577e16d7be664816bdb94
5220ed8dd94613cf15ac539ad97b9fbe9b47e19c68d3873f48f837a291039325
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 21:59:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/id
142.250.74.2302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Fri, 31 Mar 2023 21:59:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.2302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Fri, 31 Mar 2023 21:59:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b659ba21b71473d2f3b2d4aa16e37f06
bb64d95a2d25e7fa9c2577e16d7be664816bdb94
5220ed8dd94613cf15ac539ad97b9fbe9b47e19c68d3873f48f837a291039325
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 21:59:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a5ac29d7d71ef6c0cc7547974c8c4f7b
29108a8370757ef63f347d1fd2ae696f5842342c
3371093d6dab54c7c3b612e3774435f0a592bee4e40fbcc2edd55d29d7715c26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 21:59:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 4eec701fec69b73ab6ff1af2c178806f
5de0d4c444297364831a311b4c13954aa31976b0
fda1ec0d2c39aafdb994d336b4d8b5d819fcd064a64b43649598609dac04f512
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 21:59:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a5ac29d7d71ef6c0cc7547974c8c4f7b
29108a8370757ef63f347d1fd2ae696f5842342c
3371093d6dab54c7c3b612e3774435f0a592bee4e40fbcc2edd55d29d7715c26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 21:59:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.234200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 31 Mar 2023 21:59:31 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 741a2f47aab81a2c7ed0fadaa1fa74e3
be34e0df4a5f272589a017ce77ece974d890f27c
4ea1737c8246072ea1072314ae684c1f7e518a81a5200c46374e47378bfb6b63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 21:59:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.234200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.234:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 29052594c79955d72f1e7ab5e662ac58
d7e1d753f3f543d3146bb4cbf11b0fbf83a2c6c7
1153d51fc332220c877afbf693ba2af75ca08767434224922daf9a18d51d46f4
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 31 Mar 2023 21:59:31 GMT
server: ESF
cache-control: private
content-length: 31054
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/js/th/09QSY-CUWkp9sd11ZUAJFeGr74Rau5wFI3HTYCOPMRs.js
142.250.74.132200 OK 14 kB URL HTTP/2 www.google.com/js/th/09QSY-CUWkp9sd11ZUAJFeGr74Rau5wFI3HTYCOPMRs.js
IP 142.250.74.132:0
File type ASCII text, with very long lines (36056)
Hash 91f33730e67e53c07fc9f1a051dcf0bc
bfa02f031e34fc25f4cc35bfcf7f194d5a306630
d264f134546c3036352d36ecad736309d84839740f7dc74052d185d12a380639
GET /js/th/09QSY-CUWkp9sd11ZUAJFeGr74Rau5wFI3HTYCOPMRs.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14271
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 31 Mar 2023 05:04:49 GMT
expires: Sat, 30 Mar 2024 05:04:49 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 20 Mar 2023 09:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 60882
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash acc41e80951534174d58e49379c02091
4158092d3bc68a0c970e006c2e41796ca0d2b823
6b89f21ed802b8d05e9ee4d3f551f9c947eddc97135e67a9aa635983f9eb9532
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 21:59:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a5ac29d7d71ef6c0cc7547974c8c4f7b
29108a8370757ef63f347d1fd2ae696f5842342c
3371093d6dab54c7c3b612e3774435f0a592bee4e40fbcc2edd55d29d7715c26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 21:59:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.234200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.234:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash b824bfdb30c306d4e0a09ed2406cc72b
012098abc51af7171300cd50beb2d4e6c0f49048
45a2f64549ec31a660ea84f6cb47a9d2a8cf3b573a4e69b99c2ac071746a4c98
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 31 Mar 2023 21:59:31 GMT
server: ESF
cache-control: private
content-length: 30953
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i.ytimg.com/vi_webp/X26iZM53Xug/hqdefault.webp
142.250.74.86200 OK 29 kB URL HTTP/2 i.ytimg.com/vi_webp/X26iZM53Xug/hqdefault.webp
IP 142.250.74.86:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 480x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1c37f6a9ddfcf41766f9078ca9b01eb5
c9901536bd7b4100e4a8e9961bf6f8a6a429f8c7
401a96cb5a59d1e38069db1cc0f698f7c610e8025c88fb18db399b85df8add39
GET /vi_webp/X26iZM53Xug/hqdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 29448
date: Fri, 31 Mar 2023 21:59:31 GMT
expires: Fri, 31 Mar 2023 23:59:31 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash acc41e80951534174d58e49379c02091
4158092d3bc68a0c970e006c2e41796ca0d2b823
6b89f21ed802b8d05e9ee4d3f551f9c947eddc97135e67a9aa635983f9eb9532
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 21:59:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi_webp/A2Mjlq5y2Ck/sddefault.webp
142.250.74.86200 OK 48 kB URL HTTP/2 i.ytimg.com/vi_webp/A2Mjlq5y2Ck/sddefault.webp
IP 142.250.74.86:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8340e0662920f9433bfedf9cf61d01c5
05677ad9e62906cdcf7aba1559c0070ad68590c8
1b290dac34ad44c7b89db5084895b2c4bc353ae96ee084d1bbdf1529f61a8121
GET /vi_webp/A2Mjlq5y2Ck/sddefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 47900
date: Fri, 31 Mar 2023 21:59:31 GMT
expires: Fri, 31 Mar 2023 23:59:31 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0a48144d6cda73ca7d9de96dd6a73409
d6892e6fb892edaab9a53eb240de03553efa3cb1
0da835f0eafe277c7480efdfd80f52d73aeab2894db42827c120423bb7a187be
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 21:59:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16957
Expires: Sat, 01 Apr 2023 02:42:09 GMT
Date: Fri, 31 Mar 2023 21:59:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16957
Expires: Sat, 01 Apr 2023 02:42:09 GMT
Date: Fri, 31 Mar 2023 21:59:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16957
Expires: Sat, 01 Apr 2023 02:42:09 GMT
Date: Fri, 31 Mar 2023 21:59:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16957
Expires: Sat, 01 Apr 2023 02:42:09 GMT
Date: Fri, 31 Mar 2023 21:59:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16957
Expires: Sat, 01 Apr 2023 02:42:09 GMT
Date: Fri, 31 Mar 2023 21:59:32 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F808d12ec-c97a-4c49-976e-6025ea897112.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F808d12ec-c97a-4c49-976e-6025ea897112.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 800c2662fd6ab8829a02b7d63084c38d
0917d2c376f8d2af2a436a33ce2bfe1cbdb8b239
76545e9f75dc558fdb7b54550934c7775318fb4150a9309f60e65d982d2e576e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F808d12ec-c97a-4c49-976e-6025ea897112.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5950
x-amzn-requestid: 5d5a94f5-db2f-4c4c-9c9f-08c14b0ccd80
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cqm7NG2NIAMF-sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642751e1-57c957f442c42fe148e66831;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:34:25 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: k7ZzBBGmbX5OCG_u8RwOqyLQBvohNe643wpsd3Srg2hoxh55aqSV6A==
via: 1.1 f193acd25f2604e189bfbfaf539aaa06.cloudfront.net (CloudFront), 1.1 c9b161639a9353c2354b895548ea9fca.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:38:48 GMT
etag: "0917d2c376f8d2af2a436a33ce2bfe1cbdb8b239"
content-type: image/jpeg
age: 1244
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0016adbc-9eaa-41a0-88fb-97c440b93a00.jpeg
34.120.237.76200 OK 3.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0016adbc-9eaa-41a0-88fb-97c440b93a00.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c528a914643f270c39c913daaf18baa3
e4c2d95a58e2b4a70956969b2418cc7d02b5d267
1163759cb7d40315bfdb8be80957c1ed2cc85b41159ab402acbd1dac62bd3599
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0016adbc-9eaa-41a0-88fb-97c440b93a00.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3681
x-amzn-requestid: 995c0201-ebb0-4aa5-9d26-87cb92fbcfa0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CqnHKFoVoAMFp1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6427522d-365b465e628d402065ed1749;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:35:41 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: AD6GOV4T7JOKCh7aEGbDWMVO_RGRlEW1m425FrHzX68lonWjKXk-bQ==
via: 1.1 b6cdb2111444305bd4957a473b711ad6.cloudfront.net (CloudFront), 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:47:54 GMT
age: 698
etag: "e4c2d95a58e2b4a70956969b2418cc7d02b5d267"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24171d10-56ac-40e7-9d10-77b9e948da6e.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24171d10-56ac-40e7-9d10-77b9e948da6e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c193cd4520e8ee5d17cd1f3faadc1c73
b46effcb93e0ad066474ec1f67bcd54020615caf
bc824341b884278e7e69ae3bb87484ad914e5909544959ebc8f8661a545cb929
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24171d10-56ac-40e7-9d10-77b9e948da6e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10128
x-amzn-requestid: bdd46a1d-4b43-4450-be32-3e3947d2fcd7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cqm9VELdIAMFmmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642751ee-346e92d143f6fcf46db741c8;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:34:38 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: TzZpij5xeF-mrrMvpNNPJQA62GcNd0qPNAh_7IAme7SI3WwmZ4itcg==
via: 1.1 c28e01aa413e9ea602538ccda1511062.cloudfront.net (CloudFront), 1.1 efcf7b9d0f917f9ebf314db03e52d9b6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:47:54 GMT
etag: "b46effcb93e0ad066474ec1f67bcd54020615caf"
content-type: image/jpeg
age: 698
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash da174e6ccc9451c5071ba10eeb97f6f6
c38827a9ac1218768839877263e1f2984fbdc454
76da406c8ae8cd6ca8471928f3aec3876aed2c21bc10edc0fbdaef5c100c1030
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9859
x-amzn-requestid: c00efe5b-7fdb-445a-a924-75ddd461b72b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: COQPtHizoAMF7-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641bfa64-3eb90ae703b78e8a06130540;Sampled=0
x-amzn-remapped-date: Thu, 23 Mar 2023 07:06:12 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: nZfXy-IsoHliuLodEocEZlH-IvmIV9G-noSmSEU1wmuMPfBx3rLJ9w==
via: 1.1 02f1a759e4ec9fab6fc17c080dd851dc.cloudfront.net (CloudFront), 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 00:11:32 GMT
age: 78480
etag: "c38827a9ac1218768839877263e1f2984fbdc454"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa438448b-437b-48c9-af47-94514486c67e.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa438448b-437b-48c9-af47-94514486c67e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0ee37ccafa69e9c352768fa30819a54f
c5268d4749fa57e8602fcb12fd11d5ffb10d0503
4186438aaede57d6b47306caa12a61328fdc83f421cecce44337ff6df9c8c028
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa438448b-437b-48c9-af47-94514486c67e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8513
x-amzn-requestid: c96fbbef-3321-40ca-9f82-79db833d14ed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CqnXDEcQoAMFZkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64275293-75f3dfe836f9fb52292e0c21;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:37:23 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: _X7O9XKZJkC5d0gdV6D__yO7FMPXC2KhJtE6V9LVHgWlaRcyBe7eEQ==
via: 1.1 4b800f7fa2c3fbb9f4f3c505b0df315e.cloudfront.net (CloudFront), 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:47:43 GMT
age: 709
etag: "c5268d4749fa57e8602fcb12fd11d5ffb10d0503"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F365dc310-6867-454a-8e83-d6a28e4bc177.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F365dc310-6867-454a-8e83-d6a28e4bc177.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f992b95cc46e20672fed03dc4a3f8a7a
944f46cbcfaf9335466bfd1b23c5ef57a3503cd1
b7ee66b81aa60b9a5d8976b9e36161899aa03fab4676d44de21789231b18f658
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F365dc310-6867-454a-8e83-d6a28e4bc177.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10885
x-amzn-requestid: 129c4e54-5f31-45ab-bd0c-0ca20d561503
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cqm7NFNWoAMFXcA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642751e1-25d9470c2225c57512a18cd6;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:34:25 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Iy-8AOJptoYjQnUOhZyvPFr1W-vhYD7QpjBuXrODaWudOwdFkIS4WA==
via: 1.1 c28e01aa413e9ea602538ccda1511062.cloudfront.net (CloudFront), 1.1 1f6e68152880a39d72e6bf2996cd6a60.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:38:48 GMT
age: 1244
etag: "944f46cbcfaf9335466bfd1b23c5ef57a3503cd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
yt3.ggpht.com/ytc/AL5GRJUOcZrFL3EPG5eR4XeyOnlfpW7-RLObak8o6utO-A=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 2.9 kB URL HTTP/2 yt3.ggpht.com/ytc/AL5GRJUOcZrFL3EPG5eR4XeyOnlfpW7-RLObak8o6utO-A=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash 8c991f40ac8213dc7601aaa5f2562944
03ff6ff582776452855ef1fd2ae54173090b5d5f
654bcfd3490cf77a5d174c00c38220805f23be3a73f279f00178f2d91a9f4160
GET /ytc/AL5GRJUOcZrFL3EPG5eR4XeyOnlfpW7-RLObak8o6utO-A=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "vc5"
expires: Sat, 01 Apr 2023 21:59:32 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Fri, 31 Mar 2023 21:59:32 GMT
server: fife
content-length: 2912
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0a48144d6cda73ca7d9de96dd6a73409
d6892e6fb892edaab9a53eb240de03553efa3cb1
0da835f0eafe277c7480efdfd80f52d73aeab2894db42827c120423bb7a187be
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 21:59:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/embed/X26iZM53Xug
216.58.211.14200 OK 0 B URL HTTP/2 www.youtube.com/embed/X26iZM53Xug
IP 216.58.211.14:0
GET /embed/X26iZM53Xug HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://185.10.202.137/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 31 Mar 2023 21:59:30 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=d5fC26P8o_E; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=BazMHZt_k_Y; Domain=.youtube.com; Expires=Wed, 27-Sep-2023 21:59:30 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+907; expires=Sun, 30-Mar-2025 21:59:30 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2