r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash eabb7d9ffae717f7305d63c057755470
3b7f0baccfdbb8d9ffefa4a2215d4d6094be454a
ab48f17e54075e1ecf034278e82bcacd2e3689773186cc84fba9b79aac907294
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AB48F17E54075E1ECF034278E82BCACD2E3689773186CC84FBA9B79AAC907294"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5413
Expires: Wed, 05 Oct 2022 20:28:25 GMT
Date: Wed, 05 Oct 2022 18:58:12 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
54.230.111.118200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.118:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8X8G670GxQQjY7xKLlJt6dNYPjlUkhIeNCmoEWCk_GrLrVeqsI7WDA==
Age: 11454
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4ab7d8709d334de0e46dcb86aabfbff1
f221138a8ad9d0bfa3c054370dcdb363a67dc310
b91d37f606eaf448b9c7dfc05566a11de004ce44503409e1a776288ee2622805
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B91D37F606EAF448B9C7DFC05566A11DE004CE44503409E1A776288EE2622805"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7550
Expires: Wed, 05 Oct 2022 21:04:02 GMT
Date: Wed, 05 Oct 2022 18:58:12 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: R3lqwT5IgjPmg0khHopyyIPFdNNy7juJtVfOWuNnYOm2a+9aofM8MY/JA0u6izZBOLrdqJDEcjM=
x-amz-request-id: 76VCNTFT6TNYQRSP
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 05 Oct 2022 18:30:26 GMT
age: 1666
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 05 Oct 2022 18:58:12 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
122.53.86.126/
122.53.86.126200 OK 8.5 kB IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1924), with CRLF, CR, LF line terminators
Hash f459249016dc0c52107996445a2d629f
25a48d1b9328cfe75ac69d615fef15e24ce8e619
de64fb429ac1d87392733ae7cf7b30b110a3bd7ee937bf22f95c199c72d12a9c
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:12 GMT
Server: Apache/2.4.18 (Ubuntu)
Set-Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76; path=/; HttpOnly
Expires: Wed, 17 Aug 2005 00:00:00 GMT
Last-Modified: Wed, 05 Oct 2022 18:58:12 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8484
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.118200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.118:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Wed, 05 Oct 2022 18:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Wed, 05 Oct 2022 18:46:46 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: rlqTeom2qPzAUoLPTsjo0PMdA8PjywebIASCN3P6FmwOdr-VycQvLA==
Age: 1720
122.53.86.126/media/sliders/css/style.min.css?v=7.1.1
122.53.86.126200 OK 1.9 kB URL HTTP/1.1 122.53.86.126/media/sliders/css/style.min.css?v=7.1.1
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type ASCII text, with very long lines (19929), with no line terminators
Hash cd860d7aa6b7557e5c5b4431fec7ec18
c6b45f9c27178ecb7a86e2cd849512e564de9d98
454420d9c39870bd8317d85fb1f60d8c265883c94dd5fbd4ae1f3d95b845ba5d
Analyzer Verdict Alert fortinet Malware
GET /media/sliders/css/style.min.css?v=7.1.1 HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:12 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 15 Jun 2017 23:34:07 GMT
ETag: "4dd9-552081add4804-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1912
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
122.53.86.126/templates/gwt-joomla-2.0/css/foundation.css
122.53.86.126200 OK 19 kB URL HTTP/1.1 122.53.86.126/templates/gwt-joomla-2.0/css/foundation.css
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
Hash 8829b81d9cfc35c7427cbd7fcfcd3d21
4e67efee6d10d3e6b51a560290ff8f1ec2dda22f
3565ae0c4aee20bf64cc033b324fe4dd0df860eb2c2e20fedf7b232a22c24445
GET /templates/gwt-joomla-2.0/css/foundation.css HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:12 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:17:09 GMT
ETag: "2322c-54e219555131a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 18925
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1561c6be7c89d1357a80d12de47b6e74
9a705277922ecca583c867af58b3efce099f83bd
e33dc034dbf4b3b627cd3c1af2d942e2ca5704ec9a4aad5c46ad39eb070e82ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4827
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:58:13 GMT
Last-Modified: Wed, 05 Oct 2022 17:37:46 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
122.53.86.126/templates/gwt-joomla-2.0/style.css
122.53.86.126200 OK 4.0 kB URL HTTP/1.1 122.53.86.126/templates/gwt-joomla-2.0/style.css
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type ASCII text, with CRLF line terminators
Hash cea12e02f41691a70f82d493d226af0a
efd16bac3db349dc4683ed3858c86ff508e64f1a
651ff6e5f420d81d7334dc11ccdb1a5b53e891f829f174940e6b28b0b0d08973
GET /templates/gwt-joomla-2.0/style.css HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:13 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:17:10 GMT
ETag: "4143-54e21955e98a7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3991
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
122.53.86.126/templates/gwt-joomla-2.0/css/responsiveslides.css
122.53.86.126200 OK 730 B URL HTTP/1.1 122.53.86.126/templates/gwt-joomla-2.0/css/responsiveslides.css
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
Hash d660fce093520efe82dcde0b9401a818
bd1f1d3aa8f08631eed724ebe7b24ffef5be41bc
d97cf05a606c2b92070cb18c1ff772aeec82d4a44ed0a5278164e3a99513bf2f
GET /templates/gwt-joomla-2.0/css/responsiveslides.css HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:13 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:17:09 GMT
ETag: "90d-54e21955522ba-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 730
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
122.53.86.126/modules/mod_sdg_facebook_slider/assets/css/style.css
122.53.86.126200 OK 710 B URL HTTP/1.1 122.53.86.126/modules/mod_sdg_facebook_slider/assets/css/style.css
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type ASCII text, with CRLF line terminators
Hash 2df1ffe8c0dc3a9ec37a673d20a5c102
28bb8eebdd26b3556e3aafdbaab12dc95725b9d3
55ac64da65246f9a28ceeb951b7700eecf1068181539f8b3266f41d3d2179629
GET /modules/mod_sdg_facebook_slider/assets/css/style.css HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:13 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Fri, 18 May 2018 02:29:24 GMT
ETag: "7ce-56c71b86ed371-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 710
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
122.53.86.126/modules/mod_visitorcounter/mod_visitorcounter.css
122.53.86.126200 OK 676 B URL HTTP/1.1 122.53.86.126/modules/mod_visitorcounter/mod_visitorcounter.css
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type ASCII text, with CRLF line terminators
Hash ee1fc77c5c54c48693959941b119c688
0f8483eca880ff4922c556e07f1bd3749d8cb139
30c3867844d2291642753a944a9ec38a69bc70d5ffac2c5b9dabc87d01cf5d0e
GET /modules/mod_visitorcounter/mod_visitorcounter.css HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:13 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Wed, 10 May 2017 02:06:27 GMT
ETag: "53c-54f21eb8b56fb-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 676
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
122.53.86.126/media/jui/js/jquery-noconflict.js?ec4a1480db8c2e8e89c09415a5437e01
122.53.86.126200 OK 21 B URL HTTP/1.1 122.53.86.126/media/jui/js/jquery-noconflict.js?ec4a1480db8c2e8e89c09415a5437e01
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
Hash e2060c4e5e5955c824723b13a212d3ec
18420ce484978f8ba3d7371febf1638828bb7a67
5b6cf4e6eda02f7c90b60b3c32413c0851915f8f80a268a913b92929085132a6
GET /media/jui/js/jquery-noconflict.js?ec4a1480db8c2e8e89c09415a5437e01 HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:13 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 07 May 2022 10:05:58 GMT
ETag: "15-5de691f15ad80"
Accept-Ranges: bytes
Content-Length: 21
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
fonts.googleapis.com/css?family=Roboto:400,100,100italic,300,300italic,400italic,500,500italic,700,700italic,900italic,900
142.250.74.10200 OK 1.1 kB URL HTTP/1.1 fonts.googleapis.com/css?family=Roboto:400,100,100italic,300,300italic,400italic,500,500italic,700,700italic,900italic,900
IP 142.250.74.10:0
Hash 17cce38776875efe998ecea591cd7906
7cfadcda2073ada8bc5889ed948193ebbb8ef1c3
a6b4a0dfc642602da0ef34ac6ad86e09b655cecd6fc7eda814754621d683b993
GET /css?family=Roboto:400,100,100italic,300,300italic,400italic,500,500italic,700,700italic,900italic,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Wed, 05 Oct 2022 18:58:13 GMT
Date: Wed, 05 Oct 2022 18:58:13 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
122.53.86.126/media/jui/js/jquery-migrate.min.js?ec4a1480db8c2e8e89c09415a5437e01
122.53.86.126200 OK 4.0 kB URL HTTP/1.1 122.53.86.126/media/jui/js/jquery-migrate.min.js?ec4a1480db8c2e8e89c09415a5437e01
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type ASCII text, with very long lines (9959)
Hash a6c81e2f02bd04160d2de88c4e8f3559
e3f3c91427d785820ca97dabe738f01faf041f36
b734d83af5da0eb627e04d3e62ce652b9eb7de19667a1b91da6b93f0ea5d7ffe
Analyzer Verdict Alert fortinet Malware
GET /media/jui/js/jquery-migrate.min.js?ec4a1480db8c2e8e89c09415a5437e01 HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:13 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 07 May 2022 10:05:58 GMT
ETag: "2748-5de691f15ad80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4014
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
122.53.86.126/media/system/js/caption.js?ec4a1480db8c2e8e89c09415a5437e01
122.53.86.126200 OK 336 B URL HTTP/1.1 122.53.86.126/media/system/js/caption.js?ec4a1480db8c2e8e89c09415a5437e01
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type ASCII text, with very long lines (413)
Hash 6d37e4491c806fe1280ea6af868c307c
76bd49025156b7c2507189bb48cc83142e8177dd
fcdc70db37bd7884b1b94358f4849eb7e6a88bcafe82c93df635913ae03039cb
Analyzer Verdict Alert fortinet Malware
GET /media/system/js/caption.js?ec4a1480db8c2e8e89c09415a5437e01 HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:13 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 07 May 2022 10:05:58 GMT
ETag: "1eb-5de691f15ad80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 336
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
122.53.86.126/media/sliders/js/script.min.js?v=7.1.1
122.53.86.126200 OK 2.5 kB URL HTTP/1.1 122.53.86.126/media/sliders/js/script.min.js?v=7.1.1
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type Unicode text, UTF-8 text, with very long lines (865)
Hash e58a21c7baa0fa5225e10085f7fecd88
67ba4d33042763a4f9bd5d3fab84f13da8af63f8
e0cc2b97df31273e42aeefe0e2d08a26b5dd3b4700852798186af8fee8f09200
GET /media/sliders/js/script.min.js?v=7.1.1 HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:13 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 15 Jun 2017 23:34:07 GMT
ETag: "24c0-552081add4804-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2546
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
122.53.86.126/media/jui/js/bootstrap.min.js?ec4a1480db8c2e8e89c09415a5437e01
122.53.86.126200 OK 7.7 kB URL HTTP/1.1 122.53.86.126/media/jui/js/bootstrap.min.js?ec4a1480db8c2e8e89c09415a5437e01
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type ASCII text, with very long lines (28972)
Hash b332934475ad590347e3386f241697ed
fce0455f58c1e3292eaf206918feeebc283f8009
b3a551f32b7b8f113b7c46efaa38d1ea3f7ee07ae92c27e32f29544b01fad830
Analyzer Verdict Alert fortinet Malware
GET /media/jui/js/bootstrap.min.js?ec4a1480db8c2e8e89c09415a5437e01 HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:13 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 07 May 2022 10:05:58 GMT
ETag: "71c6-5de691f15ad80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7747
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
122.53.86.126/media/com_wrapper/js/iframe-height.min.js?ec4a1480db8c2e8e89c09415a5437e01
122.53.86.126200 OK 194 B URL HTTP/1.1 122.53.86.126/media/com_wrapper/js/iframe-height.min.js?ec4a1480db8c2e8e89c09415a5437e01
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type ASCII text, with very long lines (320)
Hash d9a27ee95a3aaa4afcde530426e8757e
b292c5a9950d13571a3cabd7e0c003d6a3fd6bae
f89ef99e10f3c76bc78d8a8d3e289fa2bd02d768337ee3914cf6910e0fb6ed63
Analyzer Verdict Alert fortinet Malware
GET /media/com_wrapper/js/iframe-height.min.js?ec4a1480db8c2e8e89c09415a5437e01 HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:13 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 07 May 2022 10:05:58 GMT
ETag: "141-5de691f15ad80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 194
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
122.53.86.126/media/jui/js/jquery.min.js?ec4a1480db8c2e8e89c09415a5437e01
122.53.86.126200 OK 34 kB URL HTTP/1.1 122.53.86.126/media/jui/js/jquery.min.js?ec4a1480db8c2e8e89c09415a5437e01
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type ASCII text, with very long lines (65462)
Hash 1e4c4d71727b85c5b25e291f18f71d46
4f5765c8610f20bbb598333f6f89582c7c4392c9
2db97efab7e8c7d66985d945ba302ab4990fb7aee2b98a26a50ed2e74bc58a92
Analyzer Verdict Alert fortinet Malware
GET /media/jui/js/jquery.min.js?ec4a1480db8c2e8e89c09415a5437e01 HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:13 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 07 May 2022 10:05:58 GMT
ETag: "17d6e-5de691f15ad80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 34137
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
push.services.mozilla.com/
34.218.168.248101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.218.168.248:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ydNI6HPNOFwC48RTSKIaGw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Ch/QzOiKk5FOs7cLuF5aZHK8bc4=
122.53.86.126/modules/mod_sdg_facebook_slider/assets/js/main.js
122.53.86.126200 OK 160 B URL HTTP/1.1 122.53.86.126/modules/mod_sdg_facebook_slider/assets/js/main.js
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type ASCII text, with CRLF line terminators
Hash e9e6cc33723b73040bceea70b273d183
29d30c59e493d9a90bb53dced5d6f9340fc413dd
3797c9854b4397ad4158283ef784dc4b12bc5f2a5414c22654514c045d42f88e
Analyzer Verdict Alert fortinet Malware
GET /modules/mod_sdg_facebook_slider/assets/js/main.js HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:13 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Fri, 18 May 2018 02:29:24 GMT
ETag: "177-56c71b86ed371-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 160
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
122.53.86.126/templates/gwt-joomla-2.0/js/vendor/modernizr.js
122.53.86.126200 OK 4.6 kB URL HTTP/1.1 122.53.86.126/templates/gwt-joomla-2.0/js/vendor/modernizr.js
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type HTML document, ASCII text, with very long lines (11074)
Hash 7680ee8766e726bfaf394cf700ffd3b8
48f63336a9f46af0e5593526d4288cd9d7ec0133
96b501b99e3463a7cf7afefdc2dbcc2baa3d645bdbe715ef99993a97e4ef4a02
Analyzer Verdict Alert fortinet Malware
GET /templates/gwt-joomla-2.0/js/vendor/modernizr.js HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:13 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:17:10 GMT
ETag: "2bf4-54e21955e8907-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4624
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
122.53.86.126/templates/gwt-joomla-2.0/js/responsiveslides.min.js
122.53.86.126200 OK 1.5 kB URL HTTP/1.1 122.53.86.126/templates/gwt-joomla-2.0/js/responsiveslides.min.js
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type HTML document, ASCII text, with very long lines (521)
Hash f2a5d032ca139e58a5fc189ef7b0fbdd
d7843b8940a391110ecbc8f37392e69cd84411dd
33e1c462c89ce0f3207a8d267bb5c180db1761989c9828d461eb24a58fd225fd
Analyzer Verdict Alert fortinet Malware
GET /templates/gwt-joomla-2.0/js/responsiveslides.min.js HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:13 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:17:10 GMT
ETag: "d45-54e21955decc6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1472
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
122.53.86.126/templates/gwt-joomla-2.0/js/theme.js
122.53.86.126200 OK 1.5 kB URL HTTP/1.1 122.53.86.126/templates/gwt-joomla-2.0/js/theme.js
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type ASCII text, with CRLF line terminators
Hash c69dc70d02bd3189049dc61e682f2b36
72ee3d5649a086c11bbd01737b5b7881225433d8
befc80d1fea7ef1f93591f59df9609a2693469c5b29019dba66318e46ecddd07
Analyzer Verdict Alert fortinet Malware
GET /templates/gwt-joomla-2.0/js/theme.js HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:13 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:17:10 GMT
ETag: "1681-54e21955decc6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1517
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.e-mailit.com/widget/menu3x/js/button.js
104.21.86.47301 Moved Permanently 0 B URL HTTP/1.1 www.e-mailit.com/widget/menu3x/js/button.js
IP 104.21.86.47:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widget/menu3x/js/button.js HTTP/1.1
Host: www.e-mailit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
HTTP/1.1 301 Moved Permanently
Date: Wed, 05 Oct 2022 18:58:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 05 Oct 2022 19:58:13 GMT
Location: https://www.e-mailit.com/widget/menu3x/js/button.js
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tJ6r6YuMXJKLlIZu4eTIohkh5wE%2FOJkvxiSepWKyhIri7%2FEbgnYsiNMIk5JabMRNnt3Rcc%2B7xGXIa7Mmb8ZJv1DtX%2BISpLWpX6z5S4fBo1SmC9Tv4UP5rbQ8l6SpxkUg8pBh"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75586333c8ea0afe-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f9371f81e2eeeead7fe351a49f3b1c40
ae23d6c6c57dd7cf568c3a74594c377b7bb7df43
03c4ba0faa3199d061d1bb37df5d48ba6d81f77a83e243922075efc4d4acf456
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:58:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
122.53.86.126/templates/gwt-joomla-2.0/js/vendor/jquery.js
122.53.86.126200 OK 30 kB URL HTTP/1.1 122.53.86.126/templates/gwt-joomla-2.0/js/vendor/jquery.js
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type ASCII text, with very long lines (32057)
Hash 8c71aed9a644f3f94aeda06c31065e81
8fda3d8c63ef49c537bcd6b5f9971cf586c08088
f56f541c8da59ad0a7d703f637b633d632aa20615532d230978b7947d0eb416c
Analyzer Verdict Alert fortinet Malware
GET /templates/gwt-joomla-2.0/js/vendor/jquery.js HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:13 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:17:10 GMT
ETag: "14a6b-54e21955e4a86-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 29817
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
122.53.86.126/templates/gwt-joomla-2.0/js/foundation.min.js
122.53.86.126200 OK 24 kB URL HTTP/1.1 122.53.86.126/templates/gwt-joomla-2.0/js/foundation.min.js
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type HTML document text\012- HTML document, ASCII text, with very long lines (32762)
Hash 53d27962054135cd037a7a9327f37a8d
acaa9748529f51f0ed155f619157b797af8ec5ba
7de6b02543e9eac938c177cbc518463fec0fec6ddd65d259cf28dcfae6b70589
Analyzer Verdict Alert fortinet Malware
GET /templates/gwt-joomla-2.0/js/foundation.min.js HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:13 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:17:10 GMT
ETag: "16c8c-54e21955dbde6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 23620
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
122.53.86.126/templates/gwt-joomla-2.0/images/system/printButton.png
122.53.86.126200 OK 2.0 kB URL HTTP/1.1 122.53.86.126/templates/gwt-joomla-2.0/images/system/printButton.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 0026cc98773cfdc0bd22e512f4f2ae36
ed393b0cf94c9b0efec91a42b7fe9c5fc5284f16
cba09f3581b4331e56c2abf1886bf0a88d19fea58aa27ab55ca1c0d64120f90a
GET /templates/gwt-joomla-2.0/images/system/printButton.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/templates/gwt-joomla-2.0/style.css
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:14 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:17:10 GMT
ETag: "7cf-54e21955ce324"
Accept-Ranges: bytes
Content-Length: 1999
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/templates/gwt-joomla-2.0/images/system/emailButton.png
122.53.86.126200 OK 2.1 kB URL HTTP/1.1 122.53.86.126/templates/gwt-joomla-2.0/images/system/emailButton.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 17 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d50c7960d62d86a5e4b09900c19aa59
c61d407e6781ba3b4067b3a90b729d696b20a24a
f1cc4a69bd9fc1f853a187321bbe3fa8615d49ba1802072fc10ced90a4ffbb55
GET /templates/gwt-joomla-2.0/images/system/emailButton.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/templates/gwt-joomla-2.0/style.css
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:14 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:17:10 GMT
ETag: "818-54e21955ce324"
Accept-Ranges: bytes
Content-Length: 2072
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/ncpwlabel.png
122.53.86.126200 OK 17 kB URL HTTP/1.1 122.53.86.126/images/ncpwlabel.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 100 x 115, 8-bit/color RGBA, non-interlaced\012- data
Hash b47681af696293b86d535dd735abe59f
9ce9caab100d5a1c9862950926594d4f5d35d721
46f009af0862a337a9121f19388f2510ca32d5f851855d295d5f359f6e5df578
GET /images/ncpwlabel.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:14 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Jul 2017 07:03:33 GMT
ETag: "4250-5554729afdd39"
Accept-Ranges: bytes
Content-Length: 16976
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/banners/NUTRINETMembers1.png
122.53.86.126200 OK 418 kB URL HTTP/1.1 122.53.86.126/images/banners/NUTRINETMembers1.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 1560 x 480, 8-bit/color RGB, non-interlaced\012- data
Size 418 kB (418091 bytes)
Hash ee7ed29f7815549314b9d1f6bfa59378
651bde4b1d3a270cb52b7a451e5307c9b64c5a02
e244f34ac0581126057496e2117355454e9e79bb251a1d145253fe01b3f76e83
GET /images/banners/NUTRINETMembers1.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:13 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sun, 26 Sep 2021 08:44:42 GMT
ETag: "6612b-5cce1fde48068"
Accept-Ranges: bytes
Content-Length: 418091
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/Member_logo/wlabel/UPHSD-LP-2.png
122.53.86.126200 OK 38 kB URL HTTP/1.1 122.53.86.126/images/Member_logo/wlabel/UPHSD-LP-2.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 131 x 183, 8-bit/color RGBA, non-interlaced\012- data
Hash df1f736ec954ee3b628f39c076a481c9
b92780b36e4ffe36d2c3927abcfe166458459c4f
e7fbedb4d638099a7cc59b4f55537758b0f760de59eadf0f5731d056e89c3d7a
GET /images/Member_logo/wlabel/UPHSD-LP-2.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:14 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sun, 25 Apr 2021 07:09:41 GMT
ETag: "9659-5c0c6b67f5f11"
Accept-Ranges: bytes
Content-Length: 38489
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
calendar.google.com/calendar/embed?showTitle=0&showPrint=0&showTabs=0&height=600&wkst=1&bgcolor=%23FFFFFF&src=nutrinet.secretariat%40gmail.com&color=%231B887A&ctz=Asia%2FManila
142.250.74.14200 OK 6.8 kB URL HTTP/2 calendar.google.com/calendar/embed?showTitle=0&showPrint=0&showTabs=0&height=600&wkst=1&bgcolor=%23FFFFFF&src=nutrinet.secretariat%40gmail.com&color=%231B887A&ctz=Asia%2FManila
IP 142.250.74.14:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (21573)
Hash c8d68f3234e871841208d60e8195adb8
d614354a5b0a06e912fab2dc0db2c2f3dc93f98d
90c237953bd0c637c8426a4a33d9c7a00417211fbb257696070c476894547827
GET /calendar/embed?showTitle=0&showPrint=0&showTabs=0&height=600&wkst=1&bgcolor=%23FFFFFF&src=nutrinet.secretariat%40gmail.com&color=%231B887A&ctz=Asia%2FManila HTTP/1.1
Host: calendar.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://122.53.86.126/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 05 Oct 2022 18:58:14 GMT
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-opener-policy-report-only: same-origin-allow-popups; report-to="calendar_coop_coep"
content-security-policy: script-src 'nonce-SdlyyR6qT0F1AkjDoCZwUw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /calendar/cspreport
cross-origin-embedder-policy-report-only: require-corp; report-to="calendar_coop_coep"
report-to: {"group":"calendar_coop_coep","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/calendar"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
set-cookie: NID=511=MvW67i89LLJx569bFmCfrdRVaqeNKuTm2fsJdrkMtCT2hVuBCVsp1BdtqqER8SARGg38oqPENuJh43Sui34INA7a2aDnTFlX3UlMfB4gCQGOxF0ke1QWEo_GAcCWuDi6VP4CLSsdbSxdjNfdAlVagyAYTDeSiNNbI-ZyQtIhT0M; expires=Thu, 06-Apr-2023 18:58:13 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
calendar.google.com/calendar/_/web/calendar-static/_/js/k=calendar-web.embed.no.UuZJsrHjD74.es5.O/d=1/rs=ABFko39D7HfIXRH2zLfXyA9OQEEkWnDsAw/m=embed
142.250.74.14200 OK 80 kB URL HTTP/2 calendar.google.com/calendar/_/web/calendar-static/_/js/k=calendar-web.embed.no.UuZJsrHjD74.es5.O/d=1/rs=ABFko39D7HfIXRH2zLfXyA9OQEEkWnDsAw/m=embed
IP 142.250.74.14:0
File type ASCII text, with very long lines (560)
Hash 66ba9326641c95ef3262188e64ce6edd
e99801a33c40e168f05e569d5d4304e02f25c4c8
816be2fff8d6ed9c0b92864e3746af7cb4af4514dfef285bd24fd31a330fd4a4
GET /calendar/_/web/calendar-static/_/js/k=calendar-web.embed.no.UuZJsrHjD74.es5.O/d=1/rs=ABFko39D7HfIXRH2zLfXyA9OQEEkWnDsAw/m=embed HTTP/1.1
Host: calendar.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://calendar.google.com/calendar/embed?showTitle=0&showPrint=0&showTabs=0&height=600&wkst=1&bgcolor=%23FFFFFF&src=nutrinet.secretariat%40gmail.com&color=%231B887A&ctz=Asia%2FManila
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/calendar-dev
cross-origin-opener-policy: same-origin; report-to="calendar-dev"
report-to: {"group":"calendar-dev","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/calendar-dev"}]}
content-length: 80430
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 09:23:04 GMT
expires: Tue, 03 Oct 2023 09:23:04 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 29 Sep 2022 08:57:50 GMT
content-type: text/javascript; charset=UTF-8
age: 207310
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f9371f81e2eeeead7fe351a49f3b1c40
ae23d6c6c57dd7cf568c3a74594c377b7bb7df43
03c4ba0faa3199d061d1bb37df5d48ba6d81f77a83e243922075efc4d4acf456
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:58:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 047374e90c9a1e02eb7294c0a9a316a2
3d043355314c0c408f547f1faafd3acd6d481f63
e01b0fb379931c35fd707f8cc75e2d6079f77fd5174c30b75934e130d68ed2a5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:58:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/client.js?onload=clientLibraryLoaded
142.250.74.174200 OK 5.6 kB URL HTTP/2 apis.google.com/js/client.js?onload=clientLibraryLoaded
IP 142.250.74.174:0
File type ASCII text, with very long lines (2046)
Hash 43dda59ac05225202091d905083c64b4
391154e8635e9176ee8b204ed9c446665e5d73fc
acb0564377f5ab0ece2350c472877c5e76e07557b7676514bdcd4b4414def8fb
GET /js/client.js?onload=clientLibraryLoaded HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://calendar.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 5572
date: Wed, 05 Oct 2022 18:58:14 GMT
expires: Wed, 05 Oct 2022 18:58:14 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "b765605c0767adb9"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6389
Expires: Wed, 05 Oct 2022 20:44:43 GMT
Date: Wed, 05 Oct 2022 18:58:14 GMT
Connection: keep-alive
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs
142.250.74.174200 OK 107 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs
IP 142.250.74.174:0
File type ASCII text, with very long lines (580)
Size 107 kB (107108 bytes)
Hash 714614ee541d28091141a264371b7124
f6dcce98cfb0e7f8e1e405ccaea9eb61e0e94bac
170de65b4b02c61abec74f7b09afa97752aa9f4dfbf52d5007c8e2c55194c2f8
GET /_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://calendar.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 107108
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 00:13:12 GMT
expires: Thu, 05 Oct 2023 00:13:12 GMT
cache-control: public, max-age=31536000
age: 67502
last-modified: Sat, 30 Jul 2022 15:17:53 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6389
Expires: Wed, 05 Oct 2022 20:44:43 GMT
Date: Wed, 05 Oct 2022 18:58:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6389
Expires: Wed, 05 Oct 2022 20:44:43 GMT
Date: Wed, 05 Oct 2022 18:58:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6389
Expires: Wed, 05 Oct 2022 20:44:43 GMT
Date: Wed, 05 Oct 2022 18:58:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6389
Expires: Wed, 05 Oct 2022 20:44:43 GMT
Date: Wed, 05 Oct 2022 18:58:14 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23595c4d-609a-48f3-a52f-e88e478d7653.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23595c4d-609a-48f3-a52f-e88e478d7653.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3257b782efae9b64e6e18a547866ec50
4daf0c001e86af8477fb097e8ca932edb8e5f981
899f9692e86405aa288d88dd285a6fe26bedab1a2ca4693212476063890b01a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23595c4d-609a-48f3-a52f-e88e478d7653.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5832
x-amzn-requestid: c4427edd-3d71-47d0-a2d3-b3bfed089535
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zf8s1FuUoAMFhBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ca7eb-46ddff150da4141d23fc0d8a;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 21:38:51 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: WWClzLGprno--c75q63i1TFi8oBEdAYW-J4lCk9V8IELQXe6q0A05A==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 21:42:34 GMT
age: 76540
etag: "4daf0c001e86af8477fb097e8ca932edb8e5f981"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3de74da8-9c15-4010-a6fb-c1e0b5fd8804.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3de74da8-9c15-4010-a6fb-c1e0b5fd8804.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 42ab91a02aa34dbcc6d56e75fd0d7fc5
32a3ebb440b3d770c446bef75c39ce788ffeb034
397373a17846231eb149c3a207574b79c5ca6c7832ffd48da9c8f1e8e0aa9f69
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3de74da8-9c15-4010-a6fb-c1e0b5fd8804.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13615
x-amzn-requestid: 3aaef924-99ea-407a-acc6-ec7d294952a3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaHG_GDcoAMFfuQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a522c-488613591ddf46181bdded50;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 03:08:28 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: uyOCZ14wsmvXHf7WVXJhESTAdTGzTVYCudS3o8n-yTMg6Gd_gSOd4w==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 04:29:06 GMT
age: 52148
etag: "32a3ebb440b3d770c446bef75c39ce788ffeb034"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb178720-854c-4c9e-85c1-58cb5419ca69.jpeg
34.120.237.76200 OK 3.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb178720-854c-4c9e-85c1-58cb5419ca69.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d7d7df8d4c440f9db445c3d99e818d6
612b6dbd4ba895c167964ff7e6d9263013b52b0a
bf527a814c78f9e010cce4ba593c9146d54a2137d1f147f7a6250fbad81956ac
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb178720-854c-4c9e-85c1-58cb5419ca69.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3585
x-amzn-requestid: ccb6f0c8-4d9b-48b8-aaf6-16781dc4c86b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaHFlEcFoAMFS3g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a5223-5c9276c873efee993ba54667;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 03:08:19 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: T8m1q2L45TWDVRBa-R2W70yq9BauBK3G4IX54AGIxdRhG736T974kg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 04:05:29 GMT
age: 53565
etag: "612b6dbd4ba895c167964ff7e6d9263013b52b0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4fc2ddd86450d64d3fb659ab4e78be58
bbe71936b78a8c34d03ab87948dc840b35c6948f
84a760397a5912bd05f61bc8a953c13a88a677e2d17fbbf74bdf7d7ff4d3942f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10158
x-amzn-requestid: def1fc7e-8008-466f-9271-20fa1ab0fa5a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaqZCH7doAMFcPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a8aa0-7fd2fb1249366f2277d719d6;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 07:09:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: szhtD9f4RuQaDKXe7LElSR0yOKo9cYa1i2YMeG3eSpBXP8ePcdzQig==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 07:29:32 GMT
age: 41322
etag: "bbe71936b78a8c34d03ab87948dc840b35c6948f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5704624d-eb81-4a5b-bcb7-08db5681c677.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5704624d-eb81-4a5b-bcb7-08db5681c677.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1de7c17a0ba9295135e7f8b490b6a8d3
70e8d1589f3daf71378965dd197934e220fb6aa4
ee559ce3166479e2b930be7d18525f5c2d164aed8ca005302ddaf3bfe37eec24
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5704624d-eb81-4a5b-bcb7-08db5681c677.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8926
x-amzn-requestid: 27fc8976-af8d-40a3-b701-0642fa135ec4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zf8s1GSbIAMFTiw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ca7eb-4d4c7837576e0fdb5828fe3b;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 21:38:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YzVofPSJC-YVU1Q1V9AnjNeQTa1BQEh6ZiH2HjSeeX5RygysFP7oAA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 21:42:34 GMT
age: 76540
etag: "70e8d1589f3daf71378965dd197934e220fb6aa4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
122.53.86.126/images/banners/NUTRINET35thAnniv.png
122.53.86.126200 OK 848 kB URL HTTP/1.1 122.53.86.126/images/banners/NUTRINET35thAnniv.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 1353 x 416, 8-bit/color RGB, non-interlaced\012- data
Size 848 kB (847488 bytes)
Hash b820212176836e05a3225b0c8c79d722
082292fccdac102c8b3e95e14ad979d299673baa
5adbeeeee8fd36f6895c151523958e13978325ad87a6e61780f5fcaa2fdc1bd4
GET /images/banners/NUTRINET35thAnniv.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:13 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Fri, 12 Aug 2022 15:14:58 GMT
ETag: "cee80-5e60cbec8e7fd"
Accept-Ranges: bytes
Content-Length: 847488
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/Member_logo/wlabel/EARIST-Logo.png
122.53.86.126200 OK 195 kB URL HTTP/1.1 122.53.86.126/images/Member_logo/wlabel/EARIST-Logo.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 369 x 369, 8-bit/color RGBA, non-interlaced\012- data
Size 195 kB (195045 bytes)
Hash 594f30a336cdb7083d8452045acb9abb
11d41496c04acfab845a39ce23ca461980f3d701
39a662e676cad7a8c5676c9ea247bfde52f53df3368c904a7407d3cd8a317f25
GET /images/Member_logo/wlabel/EARIST-Logo.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:14 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sun, 25 Apr 2021 07:19:30 GMT
ETag: "2f9e5-5c0c6d99d053b"
Accept-Ranges: bytes
Content-Length: 195045
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/Member_logo/wlabel/WebPHINMAwlabel.png
122.53.86.126200 OK 268 kB URL HTTP/1.1 122.53.86.126/images/Member_logo/wlabel/WebPHINMAwlabel.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size 268 kB (268101 bytes)
Hash e33698801509609cc09b594837192cd6
359ae5c3aa8a4c248d8ec6c11fa09e2bf5d30f9c
69ea1b57476fd3c4b8362ff2a38d8ab3da4d95171d7f9192826bae4a322c06b2
GET /images/Member_logo/wlabel/WebPHINMAwlabel.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:14 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 25 Sep 2021 10:49:15 GMT
ETag: "41745-5cccf9d6e2204"
Accept-Ranges: bytes
Content-Length: 268101
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
gwhs.i.gov.ph/gwt-footer/footer.js
202.90.154.133302 Found 0 B URL HTTP/1.0 gwhs.i.gov.ph/gwt-footer/footer.js
IP 202.90.154.133:0
ASN #9821 Department of Science and Technology
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /gwt-footer/footer.js HTTP/1.1
Host: gwhs.i.gov.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
HTTP/1.0 302 Found
Location: https://gwhs.i.gov.ph/gwt-footer/footer.js
Connection: Keep-Alive
Content-Length: 0
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:58:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_46x16dp.png
142.250.74.163200 OK 1.1 kB URL HTTP/2 www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_46x16dp.png
IP 142.250.74.163:0
File type PNG image data, 46 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash dd45d75f398654ac976fe7e0924732cf
e17f4d34cad5997a42daacc4301747f6deb1aa43
281a4afa0686c5e3b70f560d07fe1e786ca76b3f08fdff69841564ab229e2ab9
GET /images/branding/googlelogo/1x/googlelogo_color_46x16dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://calendar.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1053
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 01:41:31 GMT
expires: Sun, 01 Oct 2023 01:41:31 GMT
cache-control: public, max-age=31536000
age: 407803
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:58:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
clients6.google.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__
142.250.74.142200 OK 275 B URL HTTP/2 clients6.google.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__
IP 142.250.74.142:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b7ca757549fd0cd975d38a4e1bd479a7
d67e60df776e398efee5a9fe332d63b66df27f23
63b04fd23ec6fe8291930605e5a80502461c0cfe4224df2553bdf4a0b68a16e3
GET /static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__ HTTP/1.1
Host: clients6.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://calendar.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/html
content-security-policy: script-src 'nonce-ZJJy6EEHqZHL8vg2ZKLxMw' 'report-sample' 'strict-dynamic' 'unsafe-eval' 'unsafe-inline' http: https:; object-src 'none'; report-uri https://csp.withgoogle.com/csp/apiserving; base-uri 'none'
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apiserving"
report-to: {"group":"apiserving","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apiserving"}]}
content-length: 275
date: Wed, 05 Oct 2022 18:58:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
last-modified: Fri, 17 Jul 2020 22:45:00 GMT
x-content-type-options: nosniff
cross-origin-embedder-policy: require-corp; report-to="apiserving"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
122.53.86.126/images/Member_logo/wlabel/WebPhilRicewlabel.png
122.53.86.126200 OK 117 kB URL HTTP/1.1 122.53.86.126/images/Member_logo/wlabel/WebPhilRicewlabel.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size 117 kB (116658 bytes)
Hash 7b242cbfbbbcf401f278124510aea7f3
f182ab7eedb50762548c8a7abb44b0af05f42419
5a5f24a55d0224a312f57a646c306dae1f311986a04c434a54737cdd15929957
GET /images/Member_logo/wlabel/WebPhilRicewlabel.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:14 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sun, 25 Jul 2021 09:44:47 GMT
ETag: "1c7b2-5c7ef7cbf738e"
Accept-Ranges: bytes
Content-Length: 116658
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/Member_logo/wlabel/WebSLSUwlabel-removebg-preview.png
122.53.86.126200 OK 288 kB URL HTTP/1.1 122.53.86.126/images/Member_logo/wlabel/WebSLSUwlabel-removebg-preview.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size 288 kB (288156 bytes)
Hash 2d30a482aa2b93b167732028fd67be72
790ebe456603389bd4a1d261b9f6d1b1b5c20d5e
8ee4d69152382da11dadbe2ed3a063ff750d60d4508cb363d2adef003f825b87
GET /images/Member_logo/wlabel/WebSLSUwlabel-removebg-preview.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:14 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sun, 15 May 2022 07:04:04 GMT
ETag: "4659c-5df078358b671"
Accept-Ranges: bytes
Content-Length: 288156
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/banners/NUTRINETZoominar2.png
122.53.86.126200 OK 1.6 MB URL HTTP/1.1 122.53.86.126/images/banners/NUTRINETZoominar2.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 1872 x 576, 8-bit/color RGB, non-interlaced\012- data
Size 1.6 MB (1632175 bytes)
Hash 6d3077ba4358f38f96ad29124205de55
024d718f593a6be120b8afd3b9be0171f2893d8d
20ae22123370350fadca03f56a6fe974ce5a3e69c8c0f0433787522598915f3c
GET /images/banners/NUTRINETZoominar2.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:13 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sun, 15 May 2022 05:57:28 GMT
ETag: "18e7af-5df0695224bfd"
Accept-Ranges: bytes
Content-Length: 1632175
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/Member_logo/wlabel/WebUERMwlabel.png
122.53.86.126200 OK 331 kB URL HTTP/1.1 122.53.86.126/images/Member_logo/wlabel/WebUERMwlabel.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size 331 kB (330806 bytes)
Hash 9592a0f77e5313ec6dfd68532c1a3497
718db8f751a3a2abccfd231fdbdb6b0e2f449e97
7cd39ce65b2f5184d784edfdfdd780010db15067e4ec7e1e69d9e48851d67bfc
GET /images/Member_logo/wlabel/WebUERMwlabel.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:14 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sun, 25 Jul 2021 09:47:47 GMT
ETag: "50c36-5c7ef87726822"
Accept-Ranges: bytes
Content-Length: 330806
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/icon_like.png
122.53.86.126200 OK 28 kB URL HTTP/1.1 122.53.86.126/images/icon_like.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 640 x 426, 8-bit/color RGBA, non-interlaced\012- data
Hash 425b15c12ddc8d35eadf8d23535fe498
b7d4a5ac76b119ede2098124c5b3465b8ec6c9c8
ac72b89327f6aa54ab4ee3de52b5eb254b0462b7ba6fc25ddc2240c44441a646
GET /images/icon_like.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:15 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:16:31 GMT
ETag: "6e60-54e21930d621f"
Accept-Ranges: bytes
Content-Length: 28256
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
nutrinet.fnri.dost.gov.ph/index.php?option=com_yendifvideoshare&view=video&id=7&tmpl=component
122.53.86.126200 OK 738 B URL HTTP/1.1 nutrinet.fnri.dost.gov.ph/index.php?option=com_yendifvideoshare&view=video&id=7&tmpl=component
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1204), with CRLF line terminators
Hash a5fddc59769bb000f748c16d36cef8b3
0a9fd4440bb80d1ef26a14a4b9699f3573e772db
89b19d853180c0b6e1898be055904b9c4b80416b2f5870bbf6e5b95a4df11c03
GET /index.php?option=com_yendifvideoshare&view=video&id=7&tmpl=component HTTP/1.1
Host: nutrinet.fnri.dost.gov.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:15 GMT
Server: Apache/2.4.18 (Ubuntu)
Set-Cookie: 43d53b93687a0347eada48a272bfd44c=up5d0o710k58r4kuvt4qkfruj4; path=/; HttpOnly
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 738
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
122.53.86.126/images/banners/5SandFoodSafety.png
122.53.86.126200 OK 1.9 MB URL HTTP/1.1 122.53.86.126/images/banners/5SandFoodSafety.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 1950 x 600, 8-bit/color RGB, non-interlaced\012- data
Size 1.9 MB (1891337 bytes)
Hash 46bacf0dfb81bd50ae3711004c78a3de
1abe874d678f9d9e6b943bebbcc7dabd06d03c1a
5de39099fbf19aaa85d45b331a0fa4fa6d6e35a11db1d5a55d46b72a5374186c
GET /images/banners/5SandFoodSafety.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:13 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 09 Sep 2021 13:00:19 GMT
ETag: "1cdc09-5cb8f94b5e21a"
Accept-Ranges: bytes
Content-Length: 1891337
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/NewsArticlesCoverImages/NUTRINETZoominar1.png
122.53.86.126200 OK 800 kB URL HTTP/1.1 122.53.86.126/images/NewsArticlesCoverImages/NUTRINETZoominar1.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 1560 x 480, 8-bit/color RGB, non-interlaced\012- data
Size 800 kB (800123 bytes)
Hash f1c565001250d4d08c0435378946ebca
ac82a4a28e0050f23ef2b71a00b7124bcb9c1d3d
592b58f70a462b71962ec2ca9522dcee871fb2dfce271a6015c7babfd460dd22
GET /images/NewsArticlesCoverImages/NUTRINETZoominar1.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:15 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 30 Oct 2021 03:27:39 GMT
ETag: "c357b-5cf8986a089e0"
Accept-Ranges: bytes
Content-Length: 800123
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/newsletter/2022/Jan-June2022cover.png
122.53.86.126200 OK 883 kB URL HTTP/1.1 122.53.86.126/images/newsletter/2022/Jan-June2022cover.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 1449 x 1875, 8-bit/color RGB, non-interlaced\012- data
Size 883 kB (882967 bytes)
Hash b215f6295c19c7c95de36d13f506d0bb
b96da662152f90cc416aed4e5bf4b17b9cfdbdf3
d3f78dff2e4bbd32fbb2d6ece16a72ae5cc504c02eefcc3aad35a39dabb086be
GET /images/newsletter/2022/Jan-June2022cover.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:15 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 29 Sep 2022 00:26:24 GMT
ETag: "d7917-5e9c5ed70e4ec"
Accept-Ranges: bytes
Content-Length: 882967
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/eventgallery/NUTRINETZoominar2/Zoominar-2%206.png
122.53.86.126200 OK 1.8 MB URL HTTP/1.1 122.53.86.126/images/eventgallery/NUTRINETZoominar2/Zoominar-2%206.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 1769 x 960, 8-bit/color RGB, non-interlaced\012- data
Size 1.8 MB (1802692 bytes)
Hash ed13bfc6ae6424e1a25819477b8a14e5
4469869fc8e85f53604c11e5a2dbd1d111a864f6
54f854684abf63a1745be4e508cdee8639bac742fff55e2296614833c24478e7
GET /images/eventgallery/NUTRINETZoominar2/Zoominar-2%206.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:14 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Mon, 16 May 2022 03:20:53 GMT
ETag: "1b81c4-5df1882fb3535"
Accept-Ranges: bytes
Content-Length: 1802692
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/banners/nutriban.png
122.53.86.126200 OK 10 kB URL HTTP/1.1 122.53.86.126/images/banners/nutriban.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 1700 x 409, 8-bit/color RGBA, non-interlaced\012- data
Hash 73b13736a37368f3a7c855aa92225ec5
8f0648863b16d43a82443664f326c7c00e3b7b29
57cc4fa4b684e3d93e80c40d797f499df071cc5cfb4ad7f95e97510c8d3ff302
GET /images/banners/nutriban.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:15 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:16:31 GMT
ETag: "291f-54e2193080318"
Accept-Ranges: bytes
Content-Length: 10527
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/templates/gwt-joomla-2.0/images/responsiveslides/slider-sprites.png
122.53.86.126200 OK 1.4 kB URL HTTP/1.1 122.53.86.126/templates/gwt-joomla-2.0/images/responsiveslides/slider-sprites.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 70 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash 8e92f2d9defe04bf933dc3c4548d9906
028a5c13fff77f13ba360790ba75fcd2d7032f9a
43d3ea359faf310569bff95fd18e387c3d9d4489208d7b78fea382dbed63446c
GET /templates/gwt-joomla-2.0/images/responsiveslides/slider-sprites.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/templates/gwt-joomla-2.0/css/responsiveslides.css
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:15 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:17:10 GMT
ETag: "594-54e21955ce324"
Accept-Ranges: bytes
Content-Length: 1428
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b0e8a79f3e381ab34a44278947ac7c7e
70d01e6fdc8565c661b6ae8c5a043ddf2da16530
885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:58:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 728 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash ae5a4af4df1d4773baa95151dda6abcd
1df2bc0202aa003630fa83dbe21a776bea375e1a
be7587ebc770f43100cfdf53cd4e47600cce21cd0f86ce979efd3ad235d01ee0
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:15 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Sun, 02 Oct 2022 21:18:43 GMT
Expires: Sun, 09 Oct 2022 21:18:42 GMT
Etag: "1df2bc0202aa003630fa83dbe21a776bea375e1a"
Cache-Control: max-age=353426,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7558633f3a85fac8-OSL
ajax.googleapis.com/ajax/libs/jquery/1/jquery.min.js
216.58.211.10200 OK 33 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1/jquery.min.js
IP 216.58.211.10:0
File type ASCII text, with very long lines (32086)
Hash 430e927c980ad4079de727fa59dd93f2
891aaada9a55a91292999f6d50fd300439905982
e8728df8617340bd8c10bc8d27d3a725a48871a269c850e8598689938ec6e2ed
GET /ajax/libs/jquery/1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://nutrinet.fnri.dost.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33434
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 13:06:02 GMT
expires: Thu, 05 Oct 2023 13:06:02 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 21133
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b0e8a79f3e381ab34a44278947ac7c7e
70d01e6fdc8565c661b6ae8c5a043ddf2da16530
885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:58:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
122.53.86.126/templates/gwt-joomla-2.0/images/responsiveslides/bg_control_nav.png
122.53.86.126200 OK 1.4 kB URL HTTP/1.1 122.53.86.126/templates/gwt-joomla-2.0/images/responsiveslides/bg_control_nav.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 13 x 39, 8-bit/color RGBA, non-interlaced\012- data
Hash d6aed993d6a238639b640350e9d479c5
ef9542d7d90ee09f9bf1397e905e3621f35fc315
41ac0999b4399c98dfa946ed59723edca0754690e3f0f56eeb2e3f258863ef60
GET /templates/gwt-joomla-2.0/images/responsiveslides/bg_control_nav.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/templates/gwt-joomla-2.0/css/responsiveslides.css
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:15 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:17:10 GMT
ETag: "562-54e21955ce324"
Accept-Ranges: bytes
Content-Length: 1378
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
nutrinet.fnri.dost.gov.ph/media/yendifvideoshare/player/yendifplayer.css
122.53.86.126200 OK 4.1 kB URL HTTP/1.1 nutrinet.fnri.dost.gov.ph/media/yendifvideoshare/player/yendifplayer.css
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type ASCII text, with very long lines (1577), with CRLF line terminators
Hash b8f07675ea0e8094fc00da067d18aab6
ea0f1a1f1724c99f45042e862594a11be133036c
5f52b9bcec16f7bd631adb4ba6d2db47d4d0143689e0705e49879627d4d579db
GET /media/yendifvideoshare/player/yendifplayer.css HTTP/1.1
Host: nutrinet.fnri.dost.gov.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nutrinet.fnri.dost.gov.ph/index.php?option=com_yendifvideoshare&view=video&id=7&tmpl=component
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:15 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Wed, 02 Aug 2017 07:07:16 GMT
ETag: "6a6d-555bfea06d931-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4105
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
122.53.86.126/images/headers/nutriban_TEXT.png
122.53.86.126200 OK 35 kB URL HTTP/1.1 122.53.86.126/images/headers/nutriban_TEXT.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 1700 x 311, 8-bit/color RGBA, non-interlaced\012- data
Hash 89d73b0ff1bb218ac0069ebf8318b70c
4a0fd4920295f2d1352d34c9f5aab9f576d25f9a
8474938ad8c8e87be4771395252b3efa3ea7754ea99ab27b7d740a3a6ac88d0b
GET /images/headers/nutriban_TEXT.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:15 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:17:00 GMT
ETag: "87bc-54e2194c11f50"
Accept-Ranges: bytes
Content-Length: 34748
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/banners/membernobg.png
122.53.86.126200 OK 1.2 kB URL HTTP/1.1 122.53.86.126/images/banners/membernobg.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 250 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash c4e9bc8b63b980ecc32a717c4ad07c8b
2295ca41f2516d8b105b870a5f05bfe65cde3b58
7cdacae4588416ea7d1ff3b8a8fd80320e5777167017aaa6df4c93a58e7ee146
GET /images/banners/membernobg.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:15 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:16:31 GMT
ETag: "4b6-54e2193080318"
Accept-Ranges: bytes
Content-Length: 1206
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/Sources/logowlabel/FNRIwlabel.png
122.53.86.126200 OK 16 kB URL HTTP/1.1 122.53.86.126/images/Sources/logowlabel/FNRIwlabel.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 100 x 115, 8-bit/color RGBA, non-interlaced\012- data
Hash d40acd483e19aed932312d721d134bae
478bd9fd956f29112a6769fbdf11e65e617b1421
aba6a8019bd446e74e402b2a77a4ec2f2a3d00dcf918aef28cde06de05fab249
GET /images/Sources/logowlabel/FNRIwlabel.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:15 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:17:02 GMT
ETag: "3d10-54e2194ebf84b"
Accept-Ranges: bytes
Content-Length: 15632
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/banners/NUTRINETForum.png
122.53.86.126200 OK 1.4 MB URL HTTP/1.1 122.53.86.126/images/banners/NUTRINETForum.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 1950 x 600, 8-bit/color RGB, non-interlaced\012- data
Size 1.4 MB (1410554 bytes)
Hash d2a11fcab816a37980a934783b5cb90c
f0b47eac3f9bb5bf05f080f2c99bb7df066c1c65
114f76151f82077f50a49262ef53e6de7a71f29787101e3c4b110801eb6d2afc
GET /images/banners/NUTRINETForum.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:15 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 09 Sep 2021 13:01:14 GMT
ETag: "1585fa-5cb8f9801f585"
Accept-Ranges: bytes
Content-Length: 1410554
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/DA-ATI-new.png
122.53.86.126200 OK 12 kB URL HTTP/1.1 122.53.86.126/images/DA-ATI-new.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 100 x 115, 8-bit/color RGBA, non-interlaced\012- data
Hash d95b25add06ac961f7fb500345c9fb2d
713eaf2c82b5d4aa9a9b0a2dcd1b8519f5a39e16
a18ff0e1ccd33c235aaa8a93b28a399588fe7006f2a6ef427d2a6a00029113ee
GET /images/DA-ATI-new.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:15 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Wed, 16 May 2018 09:18:31 GMT
ETag: "30c0-56c4f33d0af26"
Accept-Ranges: bytes
Content-Length: 12480
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
nutrinet.fnri.dost.gov.ph/media/yendifvideoshare/assets/site/css/yendifvideoshare.css
122.53.86.126200 OK 2.4 kB URL HTTP/1.1 nutrinet.fnri.dost.gov.ph/media/yendifvideoshare/assets/site/css/yendifvideoshare.css
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type ASCII text, with CRLF line terminators
Hash 4434fc74e61d1a2a434c4b0b7920683f
12606eee94e664119a1a7b3e78926f786c45bef5
cc54f1f60fa3fdb6180317db722b8edebf677a1d4e1074eeb811891bae861e4a
GET /media/yendifvideoshare/assets/site/css/yendifvideoshare.css HTTP/1.1
Host: nutrinet.fnri.dost.gov.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nutrinet.fnri.dost.gov.ph/index.php?option=com_yendifvideoshare&view=video&id=7&tmpl=component
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:15 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Wed, 02 Aug 2017 07:07:16 GMT
ETag: "2c19-555bfea06c991-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2355
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
oras.pagasa.dost.gov.ph/widget.shtml
121.58.193.124301 Moved Permanently 185 B URL HTTP/1.1 oras.pagasa.dost.gov.ph/widget.shtml
IP 121.58.193.124:0
ASN #17639 Converge ICT Solutions Inc.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash a107aba61c93cdf7882a9c6750a4b8fc
8b9bea8c8373e3f0386e14134443c1873e3cf219
69758c97903bb258a8ccdea130baf19bb258861c475667b5320454d143bcbd3a
GET /widget.shtml HTTP/1.1
Host: oras.pagasa.dost.gov.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.14.1
Date: Wed, 05 Oct 2022 18:58:15 GMT
Content-Type: text/html
Content-Length: 185
Connection: keep-alive
Location: https://oras.pagasa.dost.gov.ph/widget.shtml
nutrinet.fnri.dost.gov.ph/media/yendifvideoshare/player/yendifplayer.js
122.53.86.126200 OK 13 kB URL HTTP/1.1 nutrinet.fnri.dost.gov.ph/media/yendifvideoshare/player/yendifplayer.js
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type ASCII text, with very long lines (553), with CRLF line terminators
Hash 4b52bc42b6873f50c42dc524ad32f93b
c11fabe727a1d3a3c20e09bdea8d869d933fdb02
e72462d9c638621cde1bcf479053ae5bfa4e625c26691213fb958b8add0ee2d9
GET /media/yendifvideoshare/player/yendifplayer.js HTTP/1.1
Host: nutrinet.fnri.dost.gov.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nutrinet.fnri.dost.gov.ph/index.php?option=com_yendifvideoshare&view=video&id=7&tmpl=component
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:15 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Wed, 02 Aug 2017 07:07:16 GMT
ETag: "b404-555bfea06d931-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13439
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
122.53.86.126/images/Sources/logowlabel/ITDIwlabel.png
122.53.86.126200 OK 14 kB URL HTTP/1.1 122.53.86.126/images/Sources/logowlabel/ITDIwlabel.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 98 x 115, 8-bit/color RGBA, non-interlaced\012- data
Hash a751f126cabadf8db241152b87de558f
a54d998324089c2fc9a42152685aee67cef99482
1ba0e28055fa41e50cc289aa076283d583c73f8fefe72705c0f790c15dcb5834
GET /images/Sources/logowlabel/ITDIwlabel.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:15 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:17:02 GMT
ETag: "368c-54e2194ec466b"
Accept-Ranges: bytes
Content-Length: 13964
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/banners/NUTRINETZoominar1.png
122.53.86.126200 OK 800 kB URL HTTP/1.1 122.53.86.126/images/banners/NUTRINETZoominar1.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 1560 x 480, 8-bit/color RGB, non-interlaced\012- data
Size 800 kB (800123 bytes)
Hash f1c565001250d4d08c0435378946ebca
ac82a4a28e0050f23ef2b71a00b7124bcb9c1d3d
592b58f70a462b71962ec2ca9522dcee871fb2dfce271a6015c7babfd460dd22
GET /images/banners/NUTRINETZoominar1.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:15 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 09 Oct 2021 03:21:11 GMT
ETag: "c357b-5cde2fcd1842c"
Accept-Ranges: bytes
Content-Length: 800123
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/Sources/logowlabel/nncwlabel.png
122.53.86.126200 OK 24 kB URL HTTP/1.1 122.53.86.126/images/Sources/logowlabel/nncwlabel.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 100 x 115, 8-bit/color RGBA, non-interlaced\012- data
Hash d66e148f7939584e098bcb747ec592e9
944531886500c19475e4e321872711c2a64aab7d
c334c1ea3e41a4cac6717af622f373ddb5e9633f5bbbb94916575a753345996f
GET /images/Sources/logowlabel/nncwlabel.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:15 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:17:02 GMT
ETag: "5dc4-54e2194ec560b"
Accept-Ranges: bytes
Content-Length: 24004
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/Sources/logowlabel/STIIwlabel.png
122.53.86.126200 OK 18 kB URL HTTP/1.1 122.53.86.126/images/Sources/logowlabel/STIIwlabel.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 100 x 115, 8-bit/color RGBA, non-interlaced\012- data
Hash cc6c77c6037b4fe8e1919084336d69a2
dbb633c28a24adee5c4774fe4745601526f6bc65
16f2d085b18852bd37a398a7fc75aa986a741d4eef066e53a3da8183bdd5ba0e
GET /images/Sources/logowlabel/STIIwlabel.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:15 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:17:02 GMT
ETag: "47f3-54e2194ec560b"
Accept-Ranges: bytes
Content-Length: 18419
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/Sources/logowlabel/DSWD.png
122.53.86.126200 OK 9.7 kB URL HTTP/1.1 122.53.86.126/images/Sources/logowlabel/DSWD.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 100 x 115, 8-bit/color RGBA, non-interlaced\012- data
Hash 1a940b2bc1d3e0f02e7ab5a5c9d3dcd2
fb1007381e2dfb5d3771b1a6c127d8043c8a17cd
96083085ab54206b34aa1820df2032439ddbd6eb45a10b0ab462fae2da529c52
GET /images/Sources/logowlabel/DSWD.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:15 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:17:02 GMT
ETag: "25f4-54e2194eb9a8a"
Accept-Ranges: bytes
Content-Length: 9716
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
gwhs.i.gov.ph/gwt-footer/footer.js
202.90.154.133200 OK 6.0 kB URL HTTP/1.1 gwhs.i.gov.ph/gwt-footer/footer.js
IP 202.90.154.133:0
ASN #9821 Department of Science and Technology
File type ASCII text, with very long lines (5171)
Hash 7f3dcb41856b38f036f9bc0268ec5fef
b6ef252435dcf2c0380094c72a832870b4df503e
f693b667acebfeadb6e4acf408e4e4c75197cfd96d6542118fb548130b297351
GET /gwt-footer/footer.js HTTP/1.1
Host: gwhs.i.gov.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://122.53.86.126/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 03:33:44 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.40
ETag: "179f-5725d9151b3a9"
Expires: Wed, 19 Oct 2022 03:33:44 GMT
Cache-Control: max-age=86400, public, must-revalidate
X-Content-Type-Options: nosniff
Last-Modified: Wed, 01 Aug 2018 10:57:59 GMT
Content-Length: 6047
Content-Type: application/javascript
X-Varnish: 6010382 1070361372
Age: 55470
Via: 1.1 varnish (Varnish/5.2)
Accept-Ranges: bytes
Connection: keep-alive
122.53.86.126/images/Sources/logowlabel/DOH.png
122.53.86.126200 OK 27 kB URL HTTP/1.1 122.53.86.126/images/Sources/logowlabel/DOH.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 100 x 115, 8-bit/color RGBA, non-interlaced\012- data
Hash 38994c4f4bd490c0a998b926745e9b76
7b7c700d24aa4828a879a1ed4bc6d00f76666452
9a89080a44eba2c377b52eeae874cc8e3d67a34aa15388ea8ce11e83f83262eb
GET /images/Sources/logowlabel/DOH.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:15 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:17:02 GMT
ETag: "68e6-54e2194eb9a8a"
Accept-Ranges: bytes
Content-Length: 26854
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/Sources/logowlabel/UPM-CM.png
122.53.86.126200 OK 26 kB URL HTTP/1.1 122.53.86.126/images/Sources/logowlabel/UPM-CM.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 100 x 115, 8-bit/color RGBA, non-interlaced\012- data
Hash 4be4c77f2236c72ad5300c7e71cf5497
2816547b608a4a10afc318ec6eb4f3a538eee4f3
52abb686b1029d69bd043d3b919d10c8a9a1509b457a3cd3bb84e5bba4482002
GET /images/Sources/logowlabel/UPM-CM.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:16 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:17:03 GMT
ETag: "6556-54e2194ed406c"
Accept-Ranges: bytes
Content-Length: 25942
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/Sources/logowlabel/UPLB_chewlabel.png
122.53.86.126200 OK 20 kB URL HTTP/1.1 122.53.86.126/images/Sources/logowlabel/UPLB_chewlabel.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 100 x 115, 8-bit/color RGBA, non-interlaced\012- data
Hash bdfa17dfded3627571d3fdff1ff0aed3
171c3074eac3798389ec0b48604f95d6e8fd3388
1ae5dc6bdc0e321c897d5b6ccc71d73e14db1a21d144a0e094898038e815325c
GET /images/Sources/logowlabel/UPLB_chewlabel.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:16 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:17:03 GMT
ETag: "4e8e-54e2194ed118c"
Accept-Ranges: bytes
Content-Length: 20110
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/uphscihmndwlabel.png
122.53.86.126200 OK 21 kB URL HTTP/1.1 122.53.86.126/images/uphscihmndwlabel.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 100 x 115, 8-bit/color RGBA, non-interlaced\012- data
Hash dd1ba618a8052eb89a3a531bd97d0a5a
57268c6cffad520bc6c7c752a2cc5eac8b4794b8
706eaf5c25a2fecb19584302153df8a26c38c1540980125a77b903fd2dfb6676
GET /images/uphscihmndwlabel.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:16 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Wed, 26 Jul 2017 23:47:34 GMT
ETag: "53c4-555411272234d"
Accept-Ranges: bytes
Content-Length: 21444
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/Sources/logowlabel/UPD-CHE.png
122.53.86.126200 OK 22 kB URL HTTP/1.1 122.53.86.126/images/Sources/logowlabel/UPD-CHE.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 100 x 115, 8-bit/color RGBA, non-interlaced\012- data
Hash 166b48093857ddb318c146fd16d00a46
ac2fc1d606bf04f283a147111decd86d7321d06c
de6a32d18250294b43db62e9426b8ea55f9edaf361786af1354f51f4c634ed34
GET /images/Sources/logowlabel/UPD-CHE.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:16 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:17:02 GMT
ETag: "5734-54e2194ece2ac"
Accept-Ranges: bytes
Content-Length: 22324
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/Sources/logowlabel/UPHDJGTMUWLABEL.png
122.53.86.126200 OK 21 kB URL HTTP/1.1 122.53.86.126/images/Sources/logowlabel/UPHDJGTMUWLABEL.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 100 x 115, 8-bit/color RGBA, non-interlaced\012- data
Hash a6aa1babc833eb5eaacce604c79a72a3
e5fa03cb46a7627db0b2e885a38c1ef884fbddeb
12cc0525f75bf982a4286334bb84d2f24bf41c717d4a4af1bf7e57a24b3dde2f
GET /images/Sources/logowlabel/UPHDJGTMUWLABEL.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:16 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:17:02 GMT
ETag: "5246-54e2194ece2ac"
Accept-Ranges: bytes
Content-Length: 21062
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/Sources/logowlabel/nfpwlabel.png
122.53.86.126200 OK 25 kB URL HTTP/1.1 122.53.86.126/images/Sources/logowlabel/nfpwlabel.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 100 x 115, 8-bit/color RGBA, non-interlaced\012- data
Hash 82d579fdfcfa91b701179b7088fceefa
e1fbd00af8e77c481b538527d188a92537b0a5a8
5bde3ea32407da0ce684717632cb551b26ffcba128e4308489b55e5f5c4b31f4
GET /images/Sources/logowlabel/nfpwlabel.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:16 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:17:02 GMT
ETag: "62c7-54e2194ec466b"
Accept-Ranges: bytes
Content-Length: 25287
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
gwhs.i.gov.ph/gwt-footer/footer-source.html
202.90.154.133302 Found 0 B URL HTTP/1.0 gwhs.i.gov.ph/gwt-footer/footer-source.html
IP 202.90.154.133:0
ASN #9821 Department of Science and Technology
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /gwt-footer/footer-source.html HTTP/1.1
Host: gwhs.i.gov.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Upgrade-Insecure-Requests: 1
HTTP/1.0 302 Found
Location: https://gwhs.i.gov.ph/gwt-footer/footer-source.html
Connection: Keep-Alive
Content-Length: 0
122.53.86.126/images/Sources/logowlabel/umpcph.png
122.53.86.126200 OK 23 kB URL HTTP/1.1 122.53.86.126/images/Sources/logowlabel/umpcph.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 100 x 115, 8-bit/color RGBA, non-interlaced\012- data
Hash 7b78a041eb80487bb8cfdfa99ae4eb19
08e3acff9eb2f859cb0c6ee36f3bf7abc931125b
054180f58d6b9b21d73cf9492eb86366d98cdcd80e1cb8379055580418ff4508
GET /images/Sources/logowlabel/umpcph.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:16 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:17:02 GMT
ETag: "5b02-54e2194ec84eb"
Accept-Ranges: bytes
Content-Length: 23298
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/Sources/logowlabel/CCA.png
122.53.86.126200 OK 14 kB URL HTTP/1.1 122.53.86.126/images/Sources/logowlabel/CCA.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 100 x 115, 8-bit/color RGBA, non-interlaced\012- data
Hash 8f8142a452ab74669e8d8a140d89e7e4
c8a5e0c23168ea5c7755185f5773f462df73e4e9
194e1e749f153be52afa35c2cf62e7d3e7b087b6324239659405a82b0362523b
GET /images/Sources/logowlabel/CCA.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:16 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:17:02 GMT
ETag: "3703-54e2194eb4c6a"
Accept-Ranges: bytes
Content-Length: 14083
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/Member_logo/wlabel/WebASMPHwlabel.png
122.53.86.126200 OK 11 kB URL HTTP/1.1 122.53.86.126/images/Member_logo/wlabel/WebASMPHwlabel.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 192 x 95, 8-bit/color RGBA, non-interlaced\012- data
Hash febeb772f0ba5e34474461cc5efab5a0
7447e99dafe30a3e525623368d649d61b5907d72
ad48e427baf693e5456abd14dbcbfa940360137044bdb6e4584020c6f77b25f1
GET /images/Member_logo/wlabel/WebASMPHwlabel.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:16 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Wed, 09 Mar 2022 07:29:02 GMT
ETag: "2bfe-5d9c40d428388"
Accept-Ranges: bytes
Content-Length: 11262
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/Sources/logowlabel/unilabwlabel.png
122.53.86.126200 OK 17 kB URL HTTP/1.1 122.53.86.126/images/Sources/logowlabel/unilabwlabel.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 100 x 115, 8-bit/color RGBA, non-interlaced\012- data
Hash fbd7c001b58059cc8a6f62543334baaf
89e3b552dd029afc3180da3e957b69ff45098d60
e1e612736c403418a59dcb50f57e68ef779ff61a44534379e62641766327e506
GET /images/Sources/logowlabel/unilabwlabel.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:16 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:17:02 GMT
ETag: "4172-54e2194ecb3cc"
Accept-Ranges: bytes
Content-Length: 16754
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/modules/mod_sdg_facebook_slider/assets/img/ficon3.png
122.53.86.126200 OK 4.4 kB URL HTTP/1.1 122.53.86.126/modules/mod_sdg_facebook_slider/assets/img/ficon3.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 40 x 131, 8-bit/color RGBA, non-interlaced\012- data
Hash f95114bf2b77cb1f1b43a1b8cb9e5b4b
9b678be88d53230e7b282cf19571fa109c51c8f6
97513f24ea5ec104415c444c60caf9e4073e4f9875099d0a2ecc3e2ccdecfa54
GET /modules/mod_sdg_facebook_slider/assets/img/ficon3.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:16 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Fri, 18 May 2018 02:29:24 GMT
ETag: "111f-56c71b86ed371"
Accept-Ranges: bytes
Content-Length: 4383
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/banners/newsletternobg.png
122.53.86.126200 OK 1.1 kB URL HTTP/1.1 122.53.86.126/images/banners/newsletternobg.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 250 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash b4ddb41c97769e4103daed919bd3498a
3697321466e7460f6f33b3e22d6ff0bef863abfb
09c5d62b05849563f8bc20eb77db9bfd66b1103e3621d7f8e8d27d10cebb88c5
GET /images/banners/newsletternobg.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:16 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:16:31 GMT
ETag: "449-54e2193080318"
Accept-Ranges: bytes
Content-Length: 1097
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/newsletter/July-Dec2021cover.png
122.53.86.126200 OK 596 kB URL HTTP/1.1 122.53.86.126/images/newsletter/July-Dec2021cover.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 1198 x 1550, 8-bit/color RGB, non-interlaced\012- data
Size 596 kB (595585 bytes)
Hash 1c8360b96c9cbe1796d33e87ef71b998
935190228613f60619262220f8bfe32463448654
75e4781dd61e574ade00794036fc55ff01eed298a7d5902d82fe14635bf15ff1
GET /images/newsletter/July-Dec2021cover.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:16 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sun, 30 Jan 2022 05:11:29 GMT
ETag: "91681-5d6c5b361e40b"
Accept-Ranges: bytes
Content-Length: 595585
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/png
gwhs.i.gov.ph/gwt-footer/footer-source.html
202.90.154.133200 OK 4.7 kB URL HTTP/1.1 gwhs.i.gov.ph/gwt-footer/footer-source.html
IP 202.90.154.133:0
ASN #9821 Department of Science and Technology
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (472)
Hash e874b54df6bed53533eeb3f67ee3cd80
facd41470c92fee1eb6638411eef193521f6d79b
6aaa6bc1a030fc4b3139fe242c9892345b9d645289a20e944101db8f3ecae5e3
GET /gwt-footer/footer-source.html HTTP/1.1
Host: gwhs.i.gov.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://122.53.86.126/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 03:33:35 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.40
ETag: "123c-577d97b0c2373"
Expires: Wed, 19 Oct 2022 03:33:35 GMT
Cache-Control: max-age=86400, public, must-revalidate
X-Content-Type-Options: nosniff
Last-Modified: Wed, 10 Oct 2018 05:53:59 GMT
Content-Length: 4668
Content-Type: text/html; charset=UTF-8
X-Varnish: 6010388 1071027008
Age: 55480
Via: 1.1 varnish (Varnish/5.2)
Accept-Ranges: bytes
Connection: keep-alive
122.53.86.126/images/banners/calendarnobg.png
122.53.86.126200 OK 1.3 kB URL HTTP/1.1 122.53.86.126/images/banners/calendarnobg.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 250 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash 4e503fe407b4d18f91ff133aad45624d
86d6e2f5a89f7d13cb25412208cb6139b1a88c4b
14889cb917033e711328774dc93aa8c03a87583d7c8176c07f42ef8e704d9ea3
GET /images/banners/calendarnobg.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:16 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:16:31 GMT
ETag: "51b-54e219307f378"
Accept-Ranges: bytes
Content-Length: 1307
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/newsletter/NLvol27no1-cover.png
122.53.86.126200 OK 530 kB URL HTTP/1.1 122.53.86.126/images/newsletter/NLvol27no1-cover.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 895 x 1158, 8-bit/color RGB, non-interlaced\012- data
Size 530 kB (530273 bytes)
Hash a3fc29bd6fbacf645e081218bc0c45e5
c80819a56160332ecfebc61b4b7d920d7fb145e7
7932d834300ac177393541c468c2711345618a24846543c4e0f45d7d93dc23b8
GET /images/newsletter/NLvol27no1-cover.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:16 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Mon, 26 Apr 2021 02:38:10 GMT
ETag: "81761-5c0d7095a305e"
Accept-Ranges: bytes
Content-Length: 530273
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f763a685d14b05b6ced9792151da30b8
b25be5359245be857ffa1bddcb197cb771a36a45
505ad6dc6417d58207f0d68862c4423f4611660ccc6afe165fd3ec2ccb1c893d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:58:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
122.53.86.126/images/banners/visitornobg.png
122.53.86.126200 OK 819 B URL HTTP/1.1 122.53.86.126/images/banners/visitornobg.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 250 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash 8433e92d96a514865bb157416a178c85
dfa823d4001188882c9f9d16cfd4b6a8ad6c1797
e89b3027e66f89df4afa5636f919acee2087b3504731e532488e6babd9f66343
GET /images/banners/visitornobg.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:16 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:16:31 GMT
ETag: "333-54e2193088019"
Accept-Ranges: bytes
Content-Length: 819
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
www.googletagmanager.com/gtag/js?id=UA-107134498-3
142.250.74.168200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-107134498-3
IP 142.250.74.168:0
File type ASCII text, with very long lines (2039)
Hash 78017023a345eab3b644040e98de486f
c98419d8e45bf7fac55a98a90b84f51fb6de71ac
d370c54fae25538e8747ed9f5c770e47e7fe650df717b242a7d7d330a9b68139
GET /gtag/js?id=UA-107134498-3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gwhs.i.gov.ph/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 05 Oct 2022 18:58:16 GMT
expires: Wed, 05 Oct 2022 18:58:16 GMT
cache-control: private, max-age=900
last-modified: Wed, 05 Oct 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42409
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 933e35760e5f9be264967a0600f01f85
45893b8c0c877230e3f191e3ccf76ceb701fb0dd
701a15dcd5c9f8427085ae717783f687dcd4442b48ca18eab57a206b072600bb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "701A15DCD5C9F8427085AE717783F687DCD4442B48CA18EAB57A206B072600BB"
Last-Modified: Wed, 05 Oct 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21545
Expires: Thu, 06 Oct 2022 00:57:21 GMT
Date: Wed, 05 Oct 2022 18:58:16 GMT
Connection: keep-alive
nutrinet.fnri.dost.gov.ph/media/yendifvideoshare/player/images/share.png
122.53.86.126200 OK 209 B URL HTTP/1.1 nutrinet.fnri.dost.gov.ph/media/yendifvideoshare/player/images/share.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 848126a017638e23c96e07b370bf8a02
7ad24a42377e491062857b8d25483f843f4609d0
738fae02600d9eae914366fcafe2825926ce3bd54578a1e50c7cc142595526a1
GET /media/yendifvideoshare/player/images/share.png HTTP/1.1
Host: nutrinet.fnri.dost.gov.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nutrinet.fnri.dost.gov.ph/media/yendifvideoshare/player/yendifplayer.css
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:16 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Wed, 02 Aug 2017 07:07:16 GMT
ETag: "d1-555bfea06d931"
Accept-Ranges: bytes
Content-Length: 209
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
nutrinet.fnri.dost.gov.ph/media/yendifvideoshare/player/images/icons_black.png
122.53.86.126200 OK 634 B URL HTTP/1.1 nutrinet.fnri.dost.gov.ph/media/yendifvideoshare/player/images/icons_black.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 25 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 3f878ffdfc8ea10b16928375e1fc1596
6185b841f21477f83b0b049db4edd984f7f78155
4f194b9be543a37c7d0da153ae880b2bd7d9093436ee1dcf39ee82e977d9d310
GET /media/yendifvideoshare/player/images/icons_black.png HTTP/1.1
Host: nutrinet.fnri.dost.gov.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nutrinet.fnri.dost.gov.ph/media/yendifvideoshare/player/yendifplayer.css
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:16 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Wed, 02 Aug 2017 07:07:16 GMT
ETag: "27a-555bfea06d931"
Accept-Ranges: bytes
Content-Length: 634
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f763a685d14b05b6ced9792151da30b8
b25be5359245be857ffa1bddcb197cb771a36a45
505ad6dc6417d58207f0d68862c4423f4611660ccc6afe165fd3ec2ccb1c893d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:58:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 00:48:31 GMT
expires: Sat, 30 Sep 2023 00:48:31 GMT
cache-control: public, max-age=31536000
age: 497385
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 12:31:58 GMT
expires: Sun, 01 Oct 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 368778
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
122.53.86.126/images/newsletter/Jan-June2021cover.png
122.53.86.126200 OK 1.6 MB URL HTTP/1.1 122.53.86.126/images/newsletter/Jan-June2021cover.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 1711 x 2214, 8-bit/color RGB, non-interlaced\012- data
Size 1.6 MB (1608576 bytes)
Hash d2711f9ce811f496490ad628f8fb5455
3d4ad70deb8a52eaedaf7e3402eeb25ed37697cb
74808250bdeca59b983e1150979da2b1624be7b51a29f5c668e1d19e402f5cbb
GET /images/newsletter/Jan-June2021cover.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:16 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 07 Oct 2021 22:01:27 GMT
ETag: "188b80-5cdca678b0b75"
Accept-Ranges: bytes
Content-Length: 1608576
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
122.53.86.126/images/newsletter/NLvol27no2-cover.png
122.53.86.126200 OK 534 kB URL HTTP/1.1 122.53.86.126/images/newsletter/NLvol27no2-cover.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type PNG image data, 895 x 1158, 8-bit/color RGB, non-interlaced\012- data
Size 534 kB (533574 bytes)
Hash 9080d04b21e78d617f97074f07a1d6d0
b9edda620ef5bed744f174aa0d8c97b9871366f3
01e01dd86ba4cec72048d3c3b2cca82324b8df715089a19d10ac0fca9becb118
GET /images/newsletter/NLvol27no2-cover.png HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:16 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Mon, 26 Apr 2021 02:38:11 GMT
ETag: "82446-5c0d7095d6c83"
Accept-Ranges: bytes
Content-Length: 533574
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/png
gwhs.i.gov.ph/gwt-footer/foundation/normalize.css
202.90.154.133200 OK 7.6 kB URL HTTP/1.1 gwhs.i.gov.ph/gwt-footer/foundation/normalize.css
IP 202.90.154.133:0
ASN #9821 Department of Science and Technology
Hash 99e7c93691dfe6f3a676b5ac098f465a
4eeede1ef282b02a95939a30cfd6c17f3368de18
b94438d2f6494a5b1ed3b1de0fe5ce8242fd1bf93358812e5812afd51ba84f72
GET /gwt-footer/foundation/normalize.css HTTP/1.1
Host: gwhs.i.gov.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gwhs.i.gov.ph/gwt-footer/footer-source.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 03:33:36 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.40
ETag: "1d9f-5725d91578bba"
Expires: Wed, 19 Oct 2022 03:33:36 GMT
Cache-Control: max-age=86400, public, must-revalidate
X-Content-Type-Options: nosniff
Last-Modified: Wed, 01 Aug 2018 10:57:59 GMT
Content-Length: 7583
Content-Type: text/css
X-Varnish: 5986479 1070679755
Age: 55479
Via: 1.1 varnish (Varnish/5.2)
Accept-Ranges: bytes
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b3791fae35fa0754166a153c17b4d33c
2416c0ebeb59a5dbb874c88a747242fa03e32bb6
6ed8a41c16f75035977b43d3574fc577c3473b46db106480c4a64ca72462458a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5878
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:58:17 GMT
Last-Modified: Wed, 05 Oct 2022 17:20:19 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js
216.58.211.10200 OK 34 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js
IP 216.58.211.10:0
File type ASCII text, with very long lines (32038)
Hash 103708790db3586027df27ded660f8ef
d3f58fbe6e02cb4b8b34c6fd510e011cb325bc70
fdba876856bb6c2783df94cacb0f17b53fe33f1907135539272c0127b4270ffe
GET /ajax/libs/jquery/1.11.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 33507
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 04 Oct 2022 06:27:43 GMT
Expires: Wed, 04 Oct 2023 06:27:43 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Age: 131433
connect.facebook.net/en_GB/sdk.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_GB/sdk.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1961)
Hash 83425f6ad4b711da86e829ab41b45baf
27494242c3acff62d40103861cfe453df0bad51b
adb769f5cdb97db4ba193c403c8dc3d1b5a2a2cc4165afd55b75d0b945742f5d
GET /en_GB/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://122.53.86.126/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 2e6c9e434c59ca70dc6190d075e6e006
etag: "c6873591e6899309ba17c6b8f2ec3881"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 05 Oct 2022 19:01:49 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: g0JfatS3EdqG6CmrQbRbrw==
x-fb-debug: /kz0AWvvW6PMx9pO2KeEHaoFgEhD8B8rsGHpWyfQjITwcdHEKFytDsB+iGB944VhkZyWD2nb2/6h0gi7jDoJpA==
content-length: 1686
x-fb-trip-id: 1904183273
date: Wed, 05 Oct 2022 18:58:17 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b3791fae35fa0754166a153c17b4d33c
2416c0ebeb59a5dbb874c88a747242fa03e32bb6
6ed8a41c16f75035977b43d3574fc577c3473b46db106480c4a64ca72462458a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5878
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:58:17 GMT
Last-Modified: Wed, 05 Oct 2022 17:20:19 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_GB/sdk.js?hash=779ae9447e9b08ddd748521dbee659fa
31.13.72.12200 OK 88 kB URL HTTP/2 connect.facebook.net/en_GB/sdk.js?hash=779ae9447e9b08ddd748521dbee659fa
IP 31.13.72.12:0
File type ASCII text, with very long lines (18530)
Hash 529751f596103ac13e6d96016281adc1
f9ddb9becbce3e61380e79578c13fcc58b00636a
ec510e9d5cd5011d9a72c7ce7c93c108b5d25d650bd90abdb50c684e43462c28
GET /en_GB/sdk.js?hash=779ae9447e9b08ddd748521dbee659fa HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://122.53.86.126
Connection: keep-alive
Referer: http://122.53.86.126/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: af1c07808990ae790b40fa82f0ef9d28
etag: "9ea1c183e0da7e47ab8b3cf21e7b7f2c"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Thu, 05 Oct 2023 18:08:53 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: UpdR9ZYQOsE+bZYBYoGtwQ==
x-fb-debug: JoqOBvAgYkZ9PWgSdqqlvoomuV/aIjHZ0qyBFLCI4Z+6QnXGd3L/pQ0U4+/J6f4r4hRyIT8VkPEB6ChbHJ8OEQ==
content-length: 88402
x-fb-trip-id: 1904183273
date: Wed, 05 Oct 2022 18:58:17 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
oras.pagasa.dost.gov.ph/widget.shtml
121.58.193.124200 OK 6.4 kB URL HTTP/1.1 oras.pagasa.dost.gov.ph/widget.shtml
IP 121.58.193.124:0
ASN #17639 Converge ICT Solutions Inc.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (802)
Hash b94afbed9bcd15d460443c6bbb7d5d13
97e57ce95e6c3a0b9008b510c85e6e97680b23cd
d8a59d8065dbcb3481057803c6a05a70c943eb60431a5539a430fdd1e8b5a394
GET /widget.shtml HTTP/1.1
Host: oras.pagasa.dost.gov.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://122.53.86.126/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 05 Oct 2022 18:58:16 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: none
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f24f49dce99bf22d6f1834c2f702f1f4
5c683d0f6be8cd1a60d95a0cb892007f4363005a
3b3e804ba36f52b1aaad872cd62a8b1f67d59a41c62a68c96d13605103329ff1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:58:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.166200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.166:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 18:57:37 GMT
expires: Wed, 05 Oct 2022 19:12:37 GMT
cache-control: public, max-age=900
age: 40
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
172.217.21.170200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 172.217.21.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 05 Oct 2022 18:58:17 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eac86f868b3967f1946c7f5fc712b25f
e2ae8eb09715a0af0791c085eb35bf66e0548e30
bceb14e7a478c0e34a0f1d8286eb954566c62051e996bc36189de922a76a6e06
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:58:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
172.217.21.170200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 172.217.21.170:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 8017b0a71a463d99915b31c4fcf72752
86b18e419c44e7ec3ccb0b180990a67866ead47c
447b9f8928966f8f24747a1da4751506f5fc85be2b11ffa71d6233d20928989d
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 05 Oct 2022 18:58:17 GMT
server: ESF
cache-control: private
content-length: 31072
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 40a4de06678d96242b71d5318f2fd4ef
546a7d1d92df81916f14155943427b5453ae3924
aed9af25ae57c181702a137d48cb00f5b30297180161451de3b628359dc9ec6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:58:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/id
142.250.74.34302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Wed, 05 Oct 2022 18:58:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/js/th/qs_eGd-h9f3_frMeplByuCjrJjGTr5iyl3j-JE2Mo0s.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/qs_eGd-h9f3_frMeplByuCjrJjGTr5iyl3j-JE2Mo0s.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (36351)
Hash fca4c84446cae474dbf63fcf44f061ca
399275019a515b324eb48ac6f2042f30dd15cd18
86a4021c55d56c050bc7e8de79f895d7555279bccbc8777f975f0945a5a2a4f2
GET /js/th/qs_eGd-h9f3_frMeplByuCjrJjGTr5iyl3j-JE2Mo0s.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14350
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 16:28:36 GMT
expires: Thu, 05 Oct 2023 16:28:36 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 27 Sep 2022 17:00:00 GMT
content-type: text/javascript
age: 8981
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f24f49dce99bf22d6f1834c2f702f1f4
5c683d0f6be8cd1a60d95a0cb892007f4363005a
3b3e804ba36f52b1aaad872cd62a8b1f67d59a41c62a68c96d13605103329ff1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:58:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 58ac1b886710ef98c8b70a37dcc2b855
ed76f180385d65285525c3426857e1880e2817c8
7fd9a97b66875a6c87413705781a8800ab15e8faaeb821364914ca2d0dd9c890
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:58:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/id?slf_rd=1
142.250.74.34200 OK 120 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id?slf_rd=1
IP 142.250.74.34:0
Hash 719a950a6a92268861c40f0da8af16c7
124d28eb0192cde3338a81772b3250dfb33fc026
4de786f58fcd849daa276b298c6202f3374fdeafc283cfc25bcaf551f032c557
GET /pagead/id?slf_rd=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Referer: https://www.youtube.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
content-type: application/json; charset=UTF-8
date: Wed, 05 Oct 2022 18:58:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 120
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eac86f868b3967f1946c7f5fc712b25f
e2ae8eb09715a0af0791c085eb35bf66e0548e30
bceb14e7a478c0e34a0f1d8286eb954566c62051e996bc36189de922a76a6e06
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:58:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
oras.pagasa.dost.gov.ph/css/widget.css
121.58.193.124200 OK 764 B URL HTTP/1.1 oras.pagasa.dost.gov.ph/css/widget.css
IP 121.58.193.124:0
ASN #17639 Converge ICT Solutions Inc.
Hash 6abc9920dd949f830bb66ff4a8186ec3
a05a14dd141be2904b7362f334411f8f8972026c
f99a442fe94e778b9b63f3adb72aee47953bba86e13ceb4dd0464bacd8356262
GET /css/widget.css HTTP/1.1
Host: oras.pagasa.dost.gov.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oras.pagasa.dost.gov.ph/widget.shtml
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 05 Oct 2022 18:58:17 GMT
Content-Type: text/css
Content-Length: 764
Last-Modified: Wed, 06 Aug 2014 13:17:19 GMT
Connection: keep-alive
ETag: "53e22adf-2fc"
Accept-Ranges: none, bytes
122.53.86.126/templates/gwt-joomla-2.0/favicon.ico
122.53.86.126200 OK 5.5 MB URL HTTP/1.1 122.53.86.126/templates/gwt-joomla-2.0/favicon.ico
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, -128x-128, 32 bits/pixel\012- data
Size 5.5 MB (5475510 bytes)
Hash 70f759a7fb50f3f06dae6b57199580f8
653ae8a02fd1c7a6d0968f7ad5511f2fc06b95cf
4a04329b277be99a7b2d4368a440e0fefaf8caadbd2fc685c3059a0026eb460f
GET /templates/gwt-joomla-2.0/favicon.ico HTTP/1.1
Host: 122.53.86.126
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
Cookie: 43d53b93687a0347eada48a272bfd44c=46s12j6e7vtu5r87htspanhf76
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:17 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 27 Apr 2017 08:17:09 GMT
ETag: "538cb6-54e2195568a1c"
Accept-Ranges: bytes
Content-Length: 5475510
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/vnd.microsoft.icon
yt3.ggpht.com/5ufAduJbifGQKSN233pRxQ6_puKZ-k5IeOZuosyRr6Em3zJFxH80THsDQaJdb3eDjrvVr-fo=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 3.8 kB URL HTTP/2 yt3.ggpht.com/5ufAduJbifGQKSN233pRxQ6_puKZ-k5IeOZuosyRr6Em3zJFxH80THsDQaJdb3eDjrvVr-fo=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash d1f312ad16685d208d3391b0224340e2
2a1c3ad216b10d397fe9a80532881e1bdca11b25
7d6bcb4b80a98fe1dc3d963de611c435be45def1506c0847037e1ea5e7efc8c3
GET /5ufAduJbifGQKSN233pRxQ6_puKZ-k5IeOZuosyRr6Em3zJFxH80THsDQaJdb3eDjrvVr-fo=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Thu, 06 Oct 2022 18:58:17 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="channels4_profile.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 05 Oct 2022 18:58:17 GMT
server: fife
content-length: 3770
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
nutrinet.fnri.dost.gov.ph/media/yendifvideoshare/videos/7/Backdrop.png
122.53.86.126200 OK 25 kB URL HTTP/1.1 nutrinet.fnri.dost.gov.ph/media/yendifvideoshare/videos/7/Backdrop.png
IP 122.53.86.126:0
ASN #9299 Philippine Long Distance Telephone Company
Hash f4e53b511abc507280f951fa0ace5be9
2f8645ae63502c70639cb85906d8e80577b6c7c7
2aa751da87e4eb4916a82a3e82be6d97d080730236baebf613a233298ae5d556
GET /media/yendifvideoshare/videos/7/Backdrop.png HTTP/1.1
Host: nutrinet.fnri.dost.gov.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nutrinet.fnri.dost.gov.ph/index.php?option=com_yendifvideoshare&view=video&id=7&tmpl=component
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 18:58:16 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 11 Aug 2022 12:58:47 GMT
ETag: "e514f-5e5f6b9e7d2c3"
Accept-Ranges: bytes
Content-Length: 938319
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
gwhs.i.gov.ph/gwt-footer/js/iframeResizer.contentWindow.min.js
202.90.154.133200 OK 6.6 kB URL HTTP/1.1 gwhs.i.gov.ph/gwt-footer/js/iframeResizer.contentWindow.min.js
IP 202.90.154.133:0
ASN #9821 Department of Science and Technology
File type ASCII text, with very long lines (6238)
Hash 78f18084b7f5ea86cafde9a36c4837c0
78e03741b50903e3feb15aaede8d2a1b61726815
78b87eebd986538b72f8a0f2da7b372854f6a9bf19285099e868c8d6fb28095d
GET /gwt-footer/js/iframeResizer.contentWindow.min.js HTTP/1.1
Host: gwhs.i.gov.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gwhs.i.gov.ph/gwt-footer/footer-source.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 03:33:35 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.40
ETag: "19eb-5725d9159a6c7"
Expires: Wed, 19 Oct 2022 03:33:35 GMT
Cache-Control: max-age=86400, public, must-revalidate
X-Content-Type-Options: nosniff
Last-Modified: Wed, 01 Aug 2018 10:57:59 GMT
Content-Length: 6635
Content-Type: application/javascript
X-Varnish: 6010390 1070424334
Age: 55481
Via: 1.1 varnish (Varnish/5.2)
Accept-Ranges: bytes
Connection: keep-alive
oras.pagasa.dost.gov.ph/images/phil_flag.png
121.58.193.124200 OK 5.0 kB URL HTTP/1.1 oras.pagasa.dost.gov.ph/images/phil_flag.png
IP 121.58.193.124:0
ASN #17639 Converge ICT Solutions Inc.
File type PNG image data, 200 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash f0162185917339debf64f8db5a45f4b6
b21bcadc2e20a44bbe72c518c74f1033ef926579
c1a47427a1b01025cc55b8f106a7a60cae6e0250f622a665e29b668216126339
GET /images/phil_flag.png HTTP/1.1
Host: oras.pagasa.dost.gov.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oras.pagasa.dost.gov.ph/widget.shtml
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 05 Oct 2022 18:58:17 GMT
Content-Type: image/png
Content-Length: 5037
Last-Modified: Mon, 04 Aug 2014 13:04:07 GMT
Connection: keep-alive
ETag: "53df84c7-13ad"
Accept-Ranges: none, bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5aefa5825a9953cc0f3a2f2b7f98326c
b44b32cfff75db2d57787521b71de22f1b78112f
fb292e1206bc5e97d040fa36bbb007a80d31a2df08e67dff72f2bb750b2f9b59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:58:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5aefa5825a9953cc0f3a2f2b7f98326c
b44b32cfff75db2d57787521b71de22f1b78112f
fb292e1206bc5e97d040fa36bbb007a80d31a2df08e67dff72f2bb750b2f9b59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:58:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1665017897&ei=ydM9Y9beFp2z7AT44ZmADg&ip=91.90.42.154&id=o-ABHZCcqcyHK8kkRoYynwrsJul1pqdTxR3a4mt681ahww&itag=251&source=youtube&requiressl=yes&mh=Af&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7k&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=778750&spc=yR2vp1wKyuGnKNfVMrjxBgrKR-8WYaw&vprv=1&mime=audio%2Fwebm&ns=ZEWYO7oPXdk4Efw2dUAfiNgI&gir=yes&clen=8123224&otfp=1&dur=463.901&lmt=1659934963951630&mt=1664995776&fvip=5&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=6211224&n=IU8kislGZSbo6g&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAPLIqUWVpyXtN-jMouw96ahUd8MjHnIDjoHEymg0hCe6AiArcU0vOEnmN9WFHqEZQACm949-7KIcEkSOi8GVldo0NQ%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIhANfab8NnfJofdJk14r8UNFrazdbrERlzGQcI0H3-yYrXAiAeECY8GPbDr8DHdmFqoOoCTpaXR2Mdv-Vedp65oLuvng%3D%3D&alr=yes&cpn=pqG6QpO79rKlDlLw&cver=1.20221002.00.00&range=0-66597&rn=2&rbuf=0
91.90.45.172200 OK 1.0 kB URL HTTP/1.1 rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1665017897&ei=ydM9Y9beFp2z7AT44ZmADg&ip=91.90.42.154&id=o-ABHZCcqcyHK8kkRoYynwrsJul1pqdTxR3a4mt681ahww&itag=251&source=youtube&requiressl=yes&mh=Af&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7k&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=778750&spc=yR2vp1wKyuGnKNfVMrjxBgrKR-8WYaw&vprv=1&mime=audio%2Fwebm&ns=ZEWYO7oPXdk4Efw2dUAfiNgI&gir=yes&clen=8123224&otfp=1&dur=463.901&lmt=1659934963951630&mt=1664995776&fvip=5&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=6211224&n=IU8kislGZSbo6g&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAPLIqUWVpyXtN-jMouw96ahUd8MjHnIDjoHEymg0hCe6AiArcU0vOEnmN9WFHqEZQACm949-7KIcEkSOi8GVldo0NQ%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIhANfab8NnfJofdJk14r8UNFrazdbrERlzGQcI0H3-yYrXAiAeECY8GPbDr8DHdmFqoOoCTpaXR2Mdv-Vedp65oLuvng%3D%3D&alr=yes&cpn=pqG6QpO79rKlDlLw&cver=1.20221002.00.00&range=0-66597&rn=2&rbuf=0
IP 91.90.45.172:0
ASN #50304 Blix Solutions AS
File type ASCII text, with very long lines (1038), with no line terminators
Hash 4511fb9f8a71b9c283d33d01810ad240
bca817a5c9d6b2dbc6f15834821c0fb6738a984c
2f6d97f7194f16260fd8be48054f789b38dfdc4a54bcb84e04766962846749db
POST /videoplayback?expire=1665017897&ei=ydM9Y9beFp2z7AT44ZmADg&ip=91.90.42.154&id=o-ABHZCcqcyHK8kkRoYynwrsJul1pqdTxR3a4mt681ahww&itag=251&source=youtube&requiressl=yes&mh=Af&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7k&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=778750&spc=yR2vp1wKyuGnKNfVMrjxBgrKR-8WYaw&vprv=1&mime=audio%2Fwebm&ns=ZEWYO7oPXdk4Efw2dUAfiNgI&gir=yes&clen=8123224&otfp=1&dur=463.901&lmt=1659934963951630&mt=1664995776&fvip=5&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=6211224&n=IU8kislGZSbo6g&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAPLIqUWVpyXtN-jMouw96ahUd8MjHnIDjoHEymg0hCe6AiArcU0vOEnmN9WFHqEZQACm949-7KIcEkSOi8GVldo0NQ%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIhANfab8NnfJofdJk14r8UNFrazdbrERlzGQcI0H3-yYrXAiAeECY8GPbDr8DHdmFqoOoCTpaXR2Mdv-Vedp65oLuvng%3D%3D&alr=yes&cpn=pqG6QpO79rKlDlLw&cver=1.20221002.00.00&range=0-66597&rn=2&rbuf=0 HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Wed, 05 Oct 2022 18:58:17 GMT
Expires: Wed, 05 Oct 2022 18:58:17 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 1038
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1665017897&ei=ydM9Y9beFp2z7AT44ZmADg&ip=91.90.42.154&id=o-ABHZCcqcyHK8kkRoYynwrsJul1pqdTxR3a4mt681ahww&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&mh=Af&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7k&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=778750&spc=yR2vp1wKyuGnKNfVMrjxBgrKR-8WYaw&vprv=1&mime=video%2Fwebm&ns=ZEWYO7oPXdk4Efw2dUAfiNgI&otf=1&otfp=1&dur=0.000&lmt=1659935010153977&mt=1664995776&fvip=5&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=6210224&n=IU8kislGZSbo6g&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIgWsTY-jyGHys9tK3lQVA9cn5XDhdflm7RIt9hZVpUVQECIQDl_u-szwiQmNBZdwxZVklAyhjMwJm67jrRAuhw_1neTA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIhANfab8NnfJofdJk14r8UNFrazdbrERlzGQcI0H3-yYrXAiAeECY8GPbDr8DHdmFqoOoCTpaXR2Mdv-Vedp65oLuvng%3D%3D&alr=yes&cpn=pqG6QpO79rKlDlLw&cver=1.20221002.00.00&sq=0&rn=1&rbuf=0
91.90.45.172200 OK 1.1 kB URL HTTP/1.1 rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1665017897&ei=ydM9Y9beFp2z7AT44ZmADg&ip=91.90.42.154&id=o-ABHZCcqcyHK8kkRoYynwrsJul1pqdTxR3a4mt681ahww&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&mh=Af&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7k&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=778750&spc=yR2vp1wKyuGnKNfVMrjxBgrKR-8WYaw&vprv=1&mime=video%2Fwebm&ns=ZEWYO7oPXdk4Efw2dUAfiNgI&otf=1&otfp=1&dur=0.000&lmt=1659935010153977&mt=1664995776&fvip=5&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=6210224&n=IU8kislGZSbo6g&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIgWsTY-jyGHys9tK3lQVA9cn5XDhdflm7RIt9hZVpUVQECIQDl_u-szwiQmNBZdwxZVklAyhjMwJm67jrRAuhw_1neTA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIhANfab8NnfJofdJk14r8UNFrazdbrERlzGQcI0H3-yYrXAiAeECY8GPbDr8DHdmFqoOoCTpaXR2Mdv-Vedp65oLuvng%3D%3D&alr=yes&cpn=pqG6QpO79rKlDlLw&cver=1.20221002.00.00&sq=0&rn=1&rbuf=0
IP 91.90.45.172:0
ASN #50304 Blix Solutions AS
File type ASCII text, with very long lines (1083), with no line terminators
Hash 01cc8b55a44478a7f790c40fee6e5cf7
e6f0bbbf42cd90f2e609d304c1830a707cd44101
f07967fe1458d2d94a75e9b0890c7e3ca8ffd1a29c3d502e92a00f8f5b345549
POST /videoplayback?expire=1665017897&ei=ydM9Y9beFp2z7AT44ZmADg&ip=91.90.42.154&id=o-ABHZCcqcyHK8kkRoYynwrsJul1pqdTxR3a4mt681ahww&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&mh=Af&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7k&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=778750&spc=yR2vp1wKyuGnKNfVMrjxBgrKR-8WYaw&vprv=1&mime=video%2Fwebm&ns=ZEWYO7oPXdk4Efw2dUAfiNgI&otf=1&otfp=1&dur=0.000&lmt=1659935010153977&mt=1664995776&fvip=5&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=6210224&n=IU8kislGZSbo6g&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIgWsTY-jyGHys9tK3lQVA9cn5XDhdflm7RIt9hZVpUVQECIQDl_u-szwiQmNBZdwxZVklAyhjMwJm67jrRAuhw_1neTA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIhANfab8NnfJofdJk14r8UNFrazdbrERlzGQcI0H3-yYrXAiAeECY8GPbDr8DHdmFqoOoCTpaXR2Mdv-Vedp65oLuvng%3D%3D&alr=yes&cpn=pqG6QpO79rKlDlLw&cver=1.20221002.00.00&sq=0&rn=1&rbuf=0 HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Wed, 05 Oct 2022 18:58:17 GMT
Expires: Wed, 05 Oct 2022 18:58:17 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 1083
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 58ac1b886710ef98c8b70a37dcc2b855
ed76f180385d65285525c3426857e1880e2817c8
7fd9a97b66875a6c87413705781a8800ab15e8faaeb821364914ca2d0dd9c890
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:58:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5aefa5825a9953cc0f3a2f2b7f98326c
b44b32cfff75db2d57787521b71de22f1b78112f
fb292e1206bc5e97d040fa36bbb007a80d31a2df08e67dff72f2bb750b2f9b59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:58:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gwhs.i.gov.ph/gwt-footer/foundation/foundation.min.css
202.90.154.133200 OK 112 kB URL HTTP/1.1 gwhs.i.gov.ph/gwt-footer/foundation/foundation.min.css
IP 202.90.154.133:0
ASN #9821 Department of Science and Technology
File type ASCII text, with very long lines (65536), with no line terminators
Size 112 kB (112157 bytes)
Hash 6dd836f9bfe43c4680ea9d8d414a6544
6c404247f9e514bf4143e6631c6bee7dcb0c5aef
5013df91cc4809aa5123d30f40937caca0019d3a031b98d0e373f7bab1f468ff
GET /gwt-footer/foundation/foundation.min.css HTTP/1.1
Host: gwhs.i.gov.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gwhs.i.gov.ph/gwt-footer/footer-source.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 03:33:36 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.40
ETag: "1b61d-5725d91577c1a"
Expires: Wed, 19 Oct 2022 03:33:36 GMT
Cache-Control: max-age=86400, public, must-revalidate
X-Content-Type-Options: nosniff
Last-Modified: Wed, 01 Aug 2018 10:57:59 GMT
Content-Length: 112157
Content-Type: text/css
X-Varnish: 6167901 1070679751
Age: 55479
Via: 1.1 varnish (Varnish/5.2)
Accept-Ranges: bytes
Connection: keep-alive
oras.pagasa.dost.gov.ph/images/pagasa_logo.png
121.58.193.124200 OK 20 kB URL HTTP/1.1 oras.pagasa.dost.gov.ph/images/pagasa_logo.png
IP 121.58.193.124:0
ASN #17639 Converge ICT Solutions Inc.
File type PNG image data, 177 x 177, 8-bit/color RGBA, non-interlaced\012- data
Hash cb520b51ac547146d776559933918fc1
6522c569f29dae5506b59752915eb78948dbae9e
51fcb60ae8b63d710310ff1497b0d3c227503b44be49ce4b1a0cb4f5dc79ccbb
GET /images/pagasa_logo.png HTTP/1.1
Host: oras.pagasa.dost.gov.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://oras.pagasa.dost.gov.ph/widget.shtml
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 05 Oct 2022 18:58:17 GMT
Content-Type: image/png
Content-Length: 20281
Last-Modified: Mon, 04 Aug 2014 13:02:07 GMT
Connection: keep-alive
ETag: "53df844f-4f39"
Accept-Ranges: none, bytes
gwhs.i.gov.ph/gwt-footer/govph-seal-mono-footer.jpg
202.90.154.133200 OK 2.9 kB URL HTTP/1.1 gwhs.i.gov.ph/gwt-footer/govph-seal-mono-footer.jpg
IP 202.90.154.133:0
ASN #9821 Department of Science and Technology
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 280x280, components 3\012- data
Hash 563532582b1e6a794c474b3409f508fd
aee014f7356c5d2ce9cfd5ad4bbe487078d4df75
9e3d87d7aaa6d36cda1288703453d4fce632be77be14acd1bceaac5ac0bbdb18
GET /gwt-footer/govph-seal-mono-footer.jpg HTTP/1.1
Host: gwhs.i.gov.ph
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gwhs.i.gov.ph/gwt-footer/footer-source.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 03:33:37 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.40
ETag: "b46-5725d91524819"
Expires: Wed, 19 Oct 2022 03:33:37 GMT
Cache-Control: max-age=86400, public, must-revalidate
X-Content-Type-Options: nosniff
Last-Modified: Wed, 01 Aug 2018 10:57:59 GMT
Content-Length: 2886
Content-Type: image/jpeg
X-Varnish: 5951920 1071027038
Age: 55480
Via: 1.1 varnish (Varnish/5.2)
Accept-Ranges: bytes
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 130ee302a2d581b152c8beccdc64866e
41fba8278d61fd6638376868fbe50c752f858b44
5345486b353cd67707512700d28f5937d9ad53f23b590e82cb624f1e509c1943
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:58:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi_webp/Fv9TCJsJTd4/sddefault.webp
172.217.21.182200 OK 23 kB URL HTTP/2 i.ytimg.com/vi_webp/Fv9TCJsJTd4/sddefault.webp
IP 172.217.21.182:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2d66ea3f8b5f7bf5378a46b24b6ffd35
990a7e1975a68571338a474eb63a870a3f0a59a6
35fd1ff86c677168c965b8c1025a95c00360347769a991d25ab37a91b34c9adc
GET /vi_webp/Fv9TCJsJTd4/sddefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 22976
date: Wed, 05 Oct 2022 18:58:18 GMT
expires: Wed, 05 Oct 2022 20:58:18 GMT
cache-control: public, max-age=7200
etag: "1659935030"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 130ee302a2d581b152c8beccdc64866e
41fba8278d61fd6638376868fbe50c752f858b44
5345486b353cd67707512700d28f5937d9ad53f23b590e82cb624f1e509c1943
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:58:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gwhs.i.gov.ph
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:34:08 GMT
expires: Thu, 28 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 602651
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
172.217.21.170200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 172.217.21.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 05 Oct 2022 18:58:19 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
172.217.21.170200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 172.217.21.170:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 52c6f6921b943d6a16148bfdb68c317b
9789a2688ac9a75dbec6d57bbe622a9ffe70a3db
186fe3cb90ad19bc6af050a2b06cb07fd0c82d477163889ce1e2e6509e8ec45f
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1132
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 05 Oct 2022 18:58:19 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a7b0171100e64adfbc2c025e52d695f1
8eeeabf4b27c6f1dadc4bfb9dbcea9c453c45b38
ce4a99f292100b06ebd1ddc18806e8622de2c4ead0963b0cb89c8e0a1735cfe6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:58:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a7b0171100e64adfbc2c025e52d695f1
8eeeabf4b27c6f1dadc4bfb9dbcea9c453c45b38
ce4a99f292100b06ebd1ddc18806e8622de2c4ead0963b0cb89c8e0a1735cfe6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:58:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr1---sn-5go7ynez.googlevideo.com/videoplayback?expire=1665017897&ei=ydM9Y9beFp2z7AT44ZmADg&ip=91.90.42.154&id=o-ABHZCcqcyHK8kkRoYynwrsJul1pqdTxR3a4mt681ahww&itag=251&source=youtube&requiressl=yes&spc=yR2vp1wKyuGnKNfVMrjxBgrKR-8WYaw&vprv=1&mime=audio%2Fwebm&ns=ZEWYO7oPXdk4Efw2dUAfiNgI&gir=yes&clen=8123224&otfp=1&dur=463.901&lmt=1659934963951630&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=6211224&n=IU8kislGZSbo6g&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAPLIqUWVpyXtN-jMouw96ahUd8MjHnIDjoHEymg0hCe6AiArcU0vOEnmN9WFHqEZQACm949-7KIcEkSOi8GVldo0NQ%3D%3D&alr=yes&cpn=pqG6QpO79rKlDlLw&cver=1.20221002.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=Af&mm=29&mn=sn-5go7ynez&ms=rdu&mt=1664995994&mv=m&mvi=1&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRAIgRvKLVDmtUPtHyX-4qVAOxbsxwV3Ub5GvtqW5Kf6jebYCIHxaKorppEH5m3yG7hMULbu1EYEQq1gyeBUAsXjwckQu&range=0-66597&rn=3&rbuf=0
173.194.163.87200 OK 1.1 kB URL HTTP/1.1 rr1---sn-5go7ynez.googlevideo.com/videoplayback?expire=1665017897&ei=ydM9Y9beFp2z7AT44ZmADg&ip=91.90.42.154&id=o-ABHZCcqcyHK8kkRoYynwrsJul1pqdTxR3a4mt681ahww&itag=251&source=youtube&requiressl=yes&spc=yR2vp1wKyuGnKNfVMrjxBgrKR-8WYaw&vprv=1&mime=audio%2Fwebm&ns=ZEWYO7oPXdk4Efw2dUAfiNgI&gir=yes&clen=8123224&otfp=1&dur=463.901&lmt=1659934963951630&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=6211224&n=IU8kislGZSbo6g&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAPLIqUWVpyXtN-jMouw96ahUd8MjHnIDjoHEymg0hCe6AiArcU0vOEnmN9WFHqEZQACm949-7KIcEkSOi8GVldo0NQ%3D%3D&alr=yes&cpn=pqG6QpO79rKlDlLw&cver=1.20221002.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=Af&mm=29&mn=sn-5go7ynez&ms=rdu&mt=1664995994&mv=m&mvi=1&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRAIgRvKLVDmtUPtHyX-4qVAOxbsxwV3Ub5GvtqW5Kf6jebYCIHxaKorppEH5m3yG7hMULbu1EYEQq1gyeBUAsXjwckQu&range=0-66597&rn=3&rbuf=0
IP 173.194.163.87:0
File type ASCII text, with very long lines (1057), with no line terminators
Hash c8ba3de429b418f258ae1afdb056ada6
7b0ab354ed682f7a054cb73f15bc2814672f78b7
a470316a3331e38789045b998c61afaa24280df7637e19b61bd49f3f3227f6f9
POST /videoplayback?expire=1665017897&ei=ydM9Y9beFp2z7AT44ZmADg&ip=91.90.42.154&id=o-ABHZCcqcyHK8kkRoYynwrsJul1pqdTxR3a4mt681ahww&itag=251&source=youtube&requiressl=yes&spc=yR2vp1wKyuGnKNfVMrjxBgrKR-8WYaw&vprv=1&mime=audio%2Fwebm&ns=ZEWYO7oPXdk4Efw2dUAfiNgI&gir=yes&clen=8123224&otfp=1&dur=463.901&lmt=1659934963951630&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=6211224&n=IU8kislGZSbo6g&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAPLIqUWVpyXtN-jMouw96ahUd8MjHnIDjoHEymg0hCe6AiArcU0vOEnmN9WFHqEZQACm949-7KIcEkSOi8GVldo0NQ%3D%3D&alr=yes&cpn=pqG6QpO79rKlDlLw&cver=1.20221002.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=Af&mm=29&mn=sn-5go7ynez&ms=rdu&mt=1664995994&mv=m&mvi=1&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRAIgRvKLVDmtUPtHyX-4qVAOxbsxwV3Ub5GvtqW5Kf6jebYCIHxaKorppEH5m3yG7hMULbu1EYEQq1gyeBUAsXjwckQu&range=0-66597&rn=3&rbuf=0 HTTP/1.1
Host: rr1---sn-5go7ynez.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Wed, 05 Oct 2022 18:58:19 GMT
Expires: Wed, 05 Oct 2022 18:58:19 GMT
Cache-Control: private, max-age=21298
Accept-Ranges: bytes
Content-Length: 1057
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr1---sn-5go7ynez.googlevideo.com/videoplayback?expire=1665017897&ei=ydM9Y9beFp2z7AT44ZmADg&ip=91.90.42.154&id=o-ABHZCcqcyHK8kkRoYynwrsJul1pqdTxR3a4mt681ahww&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&spc=yR2vp1wKyuGnKNfVMrjxBgrKR-8WYaw&vprv=1&mime=video%2Fwebm&ns=ZEWYO7oPXdk4Efw2dUAfiNgI&otf=1&otfp=1&dur=0.000&lmt=1659935010153977&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=6210224&n=IU8kislGZSbo6g&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIgWsTY-jyGHys9tK3lQVA9cn5XDhdflm7RIt9hZVpUVQECIQDl_u-szwiQmNBZdwxZVklAyhjMwJm67jrRAuhw_1neTA%3D%3D&alr=yes&cpn=pqG6QpO79rKlDlLw&cver=1.20221002.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=Af&mm=29&mn=sn-5go7ynez&ms=rdu&mt=1664995994&mv=m&mvi=1&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRAIgUjr4numKL12maix26nBeP0zDZCkACRiN7n68lXWGb40CIElxtRFF985ONPgZ70kZ9DGlDkEI-IAr-cmupI3dkm0u&sq=0&rn=4&rbuf=0
173.194.163.87200 OK 1.1 kB URL HTTP/1.1 rr1---sn-5go7ynez.googlevideo.com/videoplayback?expire=1665017897&ei=ydM9Y9beFp2z7AT44ZmADg&ip=91.90.42.154&id=o-ABHZCcqcyHK8kkRoYynwrsJul1pqdTxR3a4mt681ahww&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&spc=yR2vp1wKyuGnKNfVMrjxBgrKR-8WYaw&vprv=1&mime=video%2Fwebm&ns=ZEWYO7oPXdk4Efw2dUAfiNgI&otf=1&otfp=1&dur=0.000&lmt=1659935010153977&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=6210224&n=IU8kislGZSbo6g&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIgWsTY-jyGHys9tK3lQVA9cn5XDhdflm7RIt9hZVpUVQECIQDl_u-szwiQmNBZdwxZVklAyhjMwJm67jrRAuhw_1neTA%3D%3D&alr=yes&cpn=pqG6QpO79rKlDlLw&cver=1.20221002.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=Af&mm=29&mn=sn-5go7ynez&ms=rdu&mt=1664995994&mv=m&mvi=1&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRAIgUjr4numKL12maix26nBeP0zDZCkACRiN7n68lXWGb40CIElxtRFF985ONPgZ70kZ9DGlDkEI-IAr-cmupI3dkm0u&sq=0&rn=4&rbuf=0
IP 173.194.163.87:0
File type ASCII text, with very long lines (1100), with no line terminators
Hash 4383d4ec2794cf889b27cca1b2c7de3f
bdb6ec21b269fc2b0b62b3e3b0aa7275f273cfa4
4346543bb18e15a19371c4927fc35f51f4a7a38f98ae31eea62c6f5a688ef75d
POST /videoplayback?expire=1665017897&ei=ydM9Y9beFp2z7AT44ZmADg&ip=91.90.42.154&id=o-ABHZCcqcyHK8kkRoYynwrsJul1pqdTxR3a4mt681ahww&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&spc=yR2vp1wKyuGnKNfVMrjxBgrKR-8WYaw&vprv=1&mime=video%2Fwebm&ns=ZEWYO7oPXdk4Efw2dUAfiNgI&otf=1&otfp=1&dur=0.000&lmt=1659935010153977&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=6210224&n=IU8kislGZSbo6g&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIgWsTY-jyGHys9tK3lQVA9cn5XDhdflm7RIt9hZVpUVQECIQDl_u-szwiQmNBZdwxZVklAyhjMwJm67jrRAuhw_1neTA%3D%3D&alr=yes&cpn=pqG6QpO79rKlDlLw&cver=1.20221002.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=Af&mm=29&mn=sn-5go7ynez&ms=rdu&mt=1664995994&mv=m&mvi=1&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRAIgUjr4numKL12maix26nBeP0zDZCkACRiN7n68lXWGb40CIElxtRFF985ONPgZ70kZ9DGlDkEI-IAr-cmupI3dkm0u&sq=0&rn=4&rbuf=0 HTTP/1.1
Host: rr1---sn-5go7ynez.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Wed, 05 Oct 2022 18:58:19 GMT
Expires: Wed, 05 Oct 2022 18:58:19 GMT
Cache-Control: private, max-age=21298
Accept-Ranges: bytes
Content-Length: 1100
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
www.e-mailit.com/widget/menu3x/js/button.js
104.21.86.47200 OK 109 kB URL HTTP/2 www.e-mailit.com/widget/menu3x/js/button.js
IP 104.21.86.47:0
File type HTML document, ASCII text, with very long lines (63887)
Size 109 kB (109343 bytes)
Hash 1e691c63036feaf4398cd07c0723cc81
d257f480419616e34e4edf04c36738cb2a5586ca
6add2c40bcd36aa599f976e39d15a64eb0f91b69ad028638d87b5685deef240c
GET /widget/menu3x/js/button.js HTTP/1.1
Host: www.e-mailit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://122.53.86.126/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 05 Oct 2022 18:58:13 GMT
content-type: application/javascript
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=337553
expires: Thu, 06 Oct 2022 05:59:14 GMT
last-modified: Fri, 01 Jul 2022 22:11:27 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: HIT
age: 46737
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JAL5uuEVnbb%2BsE62sVdKrtBGvm%2B4xY13GmxXkKDjchC879sFos2QpQAWvdlTMIRXL3rLUKPaCwnoZcDJvcveUKlSyU%2FTGJIQnUwB9X4A5PMJ%2B8UFyXa0269qgNOB07FgoT2E"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75586334bd5f1c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a7b0171100e64adfbc2c025e52d695f1
8eeeabf4b27c6f1dadc4bfb9dbcea9c453c45b38
ce4a99f292100b06ebd1ddc18806e8622de2c4ead0963b0cb89c8e0a1735cfe6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:58:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.e-mailit.com/widget/menu3x/js/partners.js
104.21.86.47301 Moved Permanently 0 B URL HTTP/1.1 www.e-mailit.com/widget/menu3x/js/partners.js
IP 104.21.86.47:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widget/menu3x/js/partners.js HTTP/1.1
Host: www.e-mailit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
HTTP/1.1 301 Moved Permanently
Date: Wed, 05 Oct 2022 18:58:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 05 Oct 2022 19:58:20 GMT
Location: https://www.e-mailit.com/widget/menu3x/js/partners.js
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=su7EA%2Fs7BsGx%2BMA%2FCHC5rE5jImN%2Fw0jNdez%2B9Z9AwrnSv2a44cmw6QD1ii4Qogxe312L83JRyU0zpG%2BPkbBILfOPu5qqLkqUQw48aSCwlqu1cr%2BWd9aeMCd967EZw2gZBaO2"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7558635b480a0afe-OSL
alt-svc: h2=":443"; ma=60
rr1---sn-5hne6nzd.googlevideo.com/videoplayback?expire=1665017897&ei=ydM9Y9beFp2z7AT44ZmADg&ip=91.90.42.154&id=o-ABHZCcqcyHK8kkRoYynwrsJul1pqdTxR3a4mt681ahww&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&spc=yR2vp1wKyuGnKNfVMrjxBgrKR-8WYaw&vprv=1&mime=video%2Fwebm&ns=ZEWYO7oPXdk4Efw2dUAfiNgI&otf=1&otfp=1&dur=0.000&lmt=1659935010153977&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=6210224&n=IU8kislGZSbo6g&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIgWsTY-jyGHys9tK3lQVA9cn5XDhdflm7RIt9hZVpUVQECIQDl_u-szwiQmNBZdwxZVklAyhjMwJm67jrRAuhw_1neTA%3D%3D&alr=yes&cpn=pqG6QpO79rKlDlLw&cver=1.20221002.00.00&cm2rm=sn-capm-vnae7e,sn-5goey7e&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=Af&mm=34&mn=sn-5hne6nzd&ms=ltu&mt=1664995971&mv=m&mvi=1&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhAK8X8MrqIUlBKydA8I03dBkhmm3R0Rv3kYa4X3u5yI1AAiEAyLpWOIJ77Q_1MjxUCeFX-7v7DAFcYxTrYTXfU5KKPog%3D&sq=0&rn=6&rbuf=0&pot=Dy0a1UjXVNVJLSFAwvKbXVi5BiRhRz55PZEy44QCNBrFYGmBvaje-dIojlRW-yefz0Mf9mG-AMiwEYO4zBwdqTj-QRk_riAtoD_9oEaRxlBUWc2unf2eIH2UvFBrXcn2ArZ0txLBi1o=
74.125.100.230200 OK 278 B URL HTTP/1.1 rr1---sn-5hne6nzd.googlevideo.com/videoplayback?expire=1665017897&ei=ydM9Y9beFp2z7AT44ZmADg&ip=91.90.42.154&id=o-ABHZCcqcyHK8kkRoYynwrsJul1pqdTxR3a4mt681ahww&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&spc=yR2vp1wKyuGnKNfVMrjxBgrKR-8WYaw&vprv=1&mime=video%2Fwebm&ns=ZEWYO7oPXdk4Efw2dUAfiNgI&otf=1&otfp=1&dur=0.000&lmt=1659935010153977&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=6210224&n=IU8kislGZSbo6g&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIgWsTY-jyGHys9tK3lQVA9cn5XDhdflm7RIt9hZVpUVQECIQDl_u-szwiQmNBZdwxZVklAyhjMwJm67jrRAuhw_1neTA%3D%3D&alr=yes&cpn=pqG6QpO79rKlDlLw&cver=1.20221002.00.00&cm2rm=sn-capm-vnae7e,sn-5goey7e&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=Af&mm=34&mn=sn-5hne6nzd&ms=ltu&mt=1664995971&mv=m&mvi=1&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhAK8X8MrqIUlBKydA8I03dBkhmm3R0Rv3kYa4X3u5yI1AAiEAyLpWOIJ77Q_1MjxUCeFX-7v7DAFcYxTrYTXfU5KKPog%3D&sq=0&rn=6&rbuf=0&pot=Dy0a1UjXVNVJLSFAwvKbXVi5BiRhRz55PZEy44QCNBrFYGmBvaje-dIojlRW-yefz0Mf9mG-AMiwEYO4zBwdqTj-QRk_riAtoD_9oEaRxlBUWc2unf2eIH2UvFBrXcn2ArZ0txLBi1o=
IP 74.125.100.230:0
File type WebM\012- EBML file, creator webmB\20\012- data
Hash 3ccb0cc3b582af7a15df0028995bf4d3
32d34ccf4bbd11abd75139302798bf225b4e8e60
56d8e0177532e8982a89ebd5963d3dc5dbf9ab23844556ceeb52ffc2784c363a
POST /videoplayback?expire=1665017897&ei=ydM9Y9beFp2z7AT44ZmADg&ip=91.90.42.154&id=o-ABHZCcqcyHK8kkRoYynwrsJul1pqdTxR3a4mt681ahww&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&spc=yR2vp1wKyuGnKNfVMrjxBgrKR-8WYaw&vprv=1&mime=video%2Fwebm&ns=ZEWYO7oPXdk4Efw2dUAfiNgI&otf=1&otfp=1&dur=0.000&lmt=1659935010153977&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=6210224&n=IU8kislGZSbo6g&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&sig=AOq0QJ8wRQIgWsTY-jyGHys9tK3lQVA9cn5XDhdflm7RIt9hZVpUVQECIQDl_u-szwiQmNBZdwxZVklAyhjMwJm67jrRAuhw_1neTA%3D%3D&alr=yes&cpn=pqG6QpO79rKlDlLw&cver=1.20221002.00.00&cm2rm=sn-capm-vnae7e,sn-5goey7e&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=Af&mm=34&mn=sn-5hne6nzd&ms=ltu&mt=1664995971&mv=m&mvi=1&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhAK8X8MrqIUlBKydA8I03dBkhmm3R0Rv3kYa4X3u5yI1AAiEAyLpWOIJ77Q_1MjxUCeFX-7v7DAFcYxTrYTXfU5KKPog%3D&sq=0&rn=6&rbuf=0&pot=Dy0a1UjXVNVJLSFAwvKbXVi5BiRhRz55PZEy44QCNBrFYGmBvaje-dIojlRW-yefz0Mf9mG-AMiwEYO4zBwdqTj-QRk_riAtoD_9oEaRxlBUWc2unf2eIH2UvFBrXcn2ArZ0txLBi1o= HTTP/1.1
Host: rr1---sn-5hne6nzd.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Fri, 23 Sep 2022 07:14:30 GMT
Content-Type: video/webm
Date: Wed, 05 Oct 2022 18:58:20 GMT
Expires: Wed, 05 Oct 2022 18:58:20 GMT
Cache-Control: private, max-age=21297
Transfer-Encoding: chunked
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/1.1 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.53.86.126/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 20039
Date: Wed, 05 Oct 2022 18:22:02 GMT
Expires: Wed, 05 Oct 2022 20:22:02 GMT
Cache-Control: public, max-age=7200
Age: 2178
Last-Modified: Tue, 27 Sep 2022 22:01:05 GMT
Content-Type: text/javascript
static.xx.fbcdn.net/rsrc.php/v3/yi/l/0,cross/jmwFw7cFwXx.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 4.8 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yi/l/0,cross/jmwFw7cFwXx.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (4093)
Hash 41d7703b07edba4edf92d1f4f49af4c2
bab657ebb9062d102db8b7944bf1a9c67f8f35c3
6eb8123090b728466c3c6d0386d1aa9812093adb0fec10b88ea9995186916834
GET /rsrc.php/v3/yi/l/0,cross/jmwFw7cFwXx.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 05 Oct 2023 16:40:35 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: QddwOwftuk7fktH09Jr0wg==
x-fb-debug: +KTqVyecixO46hYZgWtHk9Ea8duyzgSvOwlA70TJof3dapenHOjOxc+GTEDrtxXNTlreduXi6NGH6wEtSoQciw==
priority: u=2
content-length: 4828
x-fb-trip-id: 1904183273
date: Wed, 05 Oct 2022 18:58:20 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 827 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (724)
Hash 29973cf3b0ef9f16fe31ed981b2f6573
f22eb80b89b5e0ae9ace854aab6676d56eaef6a1
476822c80e0a0ee078edb7a74db59378f8b1d43d2de844e28a9e9c2f68a4c8d8
GET /rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 01 Oct 2023 02:34:12 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: KZc887Dvnxb+Me2YGy9lcw==
x-fb-debug: Mg7Nl07Xeql2UYYfQ6U/d1jn84nc3Q4LytEgVL7Xk+CBl4lQzTK7FILgs4ua4Ua/O6TCYVesBEj5iKDSf2WZUw==
content-length: 827
x-fb-trip-id: 1904183273
date: Wed, 05 Oct 2022 18:58:20 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yZ/r/LJu2mihPMDN.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 91 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yZ/r/LJu2mihPMDN.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (18608)
Hash 42af5d090c6ba39f7761508b43ae64f3
343d3bce6a64b3feeb271acd42cccd9766e02416
72790ccd3fe154c0b2c4694d80020585273a24fe409d1482648bda7f487812e8
GET /rsrc.php/v3/yZ/r/LJu2mihPMDN.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 04 Oct 2023 07:27:23 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Qq9dCQxro593YVCLQ65k8w==
x-fb-debug: iShsTIZ7M6IVOSO4z7sY3uSWpMIfa4fWLEz1ri2hVTQXnrWpB/zdViJjOgYKEjV08CHx1IbIObGMC3lEDSb6jQ==
priority: u=2
content-length: 91069
x-fb-trip-id: 1904183273
date: Wed, 05 Oct 2022 18:58:20 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yi/r/iiDbYMCPtB3.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 1.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yi/r/iiDbYMCPtB3.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (1982)
Hash 533ff4519e2c7f77fac72ef04457f8f3
2df2b7ede2f719967e46649159d1068204ba11b3
2a960abb70d73b54902cb06087d6fdb584931d7759a838437560c266191c8cb4
GET /rsrc.php/v3/yi/r/iiDbYMCPtB3.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 29 Sep 2023 07:15:56 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Uz/0UZ4sf3f6xy7wRFf48w==
x-fb-debug: aDXKn+pbatKB5FH6OY3oX1n7+GvoWbD2oAhUknkAqpOfUF8ldWBh6JfJMXKyV52QOW69WkPAOfZ5OWZUL3sECA==
priority: u=3,i
content-length: 1657
x-fb-trip-id: 1904183273
date: Wed, 05 Oct 2022 18:58:20 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yU/r/q6VzhXzzuec.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yU/r/q6VzhXzzuec.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type C source, ASCII text, with very long lines (8258)
Hash bed6f1c97375602a8f8498010934286f
7b209330b2ddc87f0818681e7901a0945367c02c
bb35559f9d7e20bd535239de676ef530aece43abf2fa748ed1c9af4220297118
GET /rsrc.php/v3/yU/r/q6VzhXzzuec.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 30 Sep 2023 04:48:13 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: vtbxyXN1YCqPhJgBCTQobw==
x-fb-debug: 8Pd1cRV6dx95GTudaHeGI5LZA2/bhGzvy3idl7RH6O0ZCAN8+x+BwBcdJLwJgUG+XVXKLpRMD+38mthuipKQKg==
content-length: 16189
x-fb-trip-id: 1904183273
date: Wed, 05 Oct 2022 18:58:20 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iLl54/y6/l/en_GB/irCgPB7CJbM.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 8.4 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iLl54/y6/l/en_GB/irCgPB7CJbM.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (2903)
Hash e38454d74d48882c6d38e85e7be816a4
105acd596d49b1677ab825168f547306d879f533
d69f603fb44e68d655ae98c5db858b15bd0c35357beecb91c3588fc48496f9eb
GET /rsrc.php/v3iLl54/y6/l/en_GB/irCgPB7CJbM.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 30 Sep 2023 04:53:04 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 44RU101IiCxtOOhee+gWpA==
x-fb-debug: MTB3byhVCNLVISZHoYIsH9HM/yU88qSw2ImW3rTs02uwDYE4dpwkOzNZcRe3GPU8+xNmSQTlG77uoNJ0Z0hXLg==
priority: u=3,i
content-length: 8360
x-fb-trip-id: 1904183273
date: Wed, 05 Oct 2022 18:58:20 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yD/r/O36OTUossXS.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 8.9 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yD/r/O36OTUossXS.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (9783)
Hash 38f9fc2a4e41e3aeb165e331b4a34638
eab41c7263ad01f69c8a77520d479065e64f0bca
f67edbeb7ffe7b96657bbb7282d012c2638d7631dd3d17380365312566861ce8
GET /rsrc.php/v3/yD/r/O36OTUossXS.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 05 Oct 2023 13:21:35 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: OPn8Kk5B466xZeMxtKNGOA==
x-fb-debug: ersfnZ470dOjqQy3v+h3ZA0PAZj+I61MER7DTF4lg1xYuddN9/pl4Z7R3sxqpJWFL5VLtpmbBhWvIEHeN0w6EA==
priority: u=3,i
content-length: 8944
x-fb-trip-id: 1904183273
date: Wed, 05 Oct 2022 18:58:20 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y8/r/SixM03AXEw8.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 336 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y8/r/SixM03AXEw8.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (325)
Hash f82d8f615a2484f0c5c4e4e0f55e8b5d
c1c8ea5d697e2286b0a2bac7b3515a29b7f4cb28
91041f394721520d4dd5a33b28525d50da16e0fda08e102d971148fef1609dd2
GET /rsrc.php/v3/y8/r/SixM03AXEw8.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 05 Oct 2023 14:33:27 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: +C2PYVokhPDFxOTg9V6LXQ==
x-fb-debug: Y2H9hi09oTXHdXtY0vN+bFnJO2F5pPHwvi1i5huflEdchxACsJ6zRIDqFO5WU7k6ERCegG7MkslKxkAxO3MKTA==
priority: u=3,i
content-length: 336
x-fb-trip-id: 1904183273
date: Wed, 05 Oct 2022 18:58:20 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3i7244/yV/l/en_GB/YJojGYumZIr.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 23 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3i7244/yV/l/en_GB/YJojGYumZIr.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (41976)
Hash 8f99f5c52517ed7c8b9af582820d424a
9bf9e50b667fcc6a486efafb534f9312288d40c4
b9bed8e820e5d0cc0929a7794fecbb586ac3778bb642618ff16c131b224e65c1
GET /rsrc.php/v3i7244/yV/l/en_GB/YJojGYumZIr.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 30 Sep 2023 04:50:04 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: j5n1xSUX7XyLmvWCgg1CSg==
x-fb-debug: KDl9EYcAaQIIZ8G0KlMdtDw/lVBPk3dR5i34YZttKh6LAyq/Nv8hZ81o/ZaLqGTzU6xP0VGm38AL43gs/C+uFg==
content-length: 23293
x-fb-trip-id: 1904183273
date: Wed, 05 Oct 2022 18:58:20 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yV/r/1lYRIUv3fB9.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 7.2 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yV/r/1lYRIUv3fB9.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (4059)
Hash e4f221c6642e6c519ca2462027a15712
6a7225c3221331d35773a252b6dbfb87f214b834
7eafaf8c19afe0e16ea9b18ee23cf0c7b391cfc4dd0fa2d52dd81f0f32348ada
GET /rsrc.php/v3/yV/r/1lYRIUv3fB9.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 29 Sep 2023 07:15:56 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 5PIhxmQubFGcokYgJ6FXEg==
x-fb-debug: ch3RzVu63qNzJ7/QB4DTXCq/LUe9uNqEq4lZq6+4MIjIHS0EOpwGmrNtYa7NEz1aIrs7fgqLNLgks1GHtmWXAw==
content-length: 7237
x-fb-trip-id: 1904183273
date: Wed, 05 Oct 2022 18:58:20 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-6640442-5&cid=849581773.1664996301&jid=73257425&gjid=1976101284&_gid=1659163975.1664996301&_u=IEBAAEAACAAAACAAI~&z=1499369093
108.177.14.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-6640442-5&cid=849581773.1664996301&jid=73257425&gjid=1976101284&_gid=1659163975.1664996301&_u=IEBAAEAACAAAACAAI~&z=1499369093
IP 108.177.14.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-6640442-5&cid=849581773.1664996301&jid=73257425&gjid=1976101284&_gid=1659163975.1664996301&_u=IEBAAEAACAAAACAAI~&z=1499369093 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://122.53.86.126
Connection: keep-alive
Referer: http://122.53.86.126/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://122.53.86.126
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 05 Oct 2022 18:58:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1d4c3917173bd92c4b3208cdf2c7c345
726a9aa16eef5844afde825f9faf1b505d31e69b
572eebfaf735eb8aa1b3563d0317d52f5d22e9e83e5f5b6723f65da83fb15f22
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:58:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-6640442-5&cid=849581773.1664996301&jid=73257425&_u=IEBAAEAACAAAACAAI~&z=910465389
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-6640442-5&cid=849581773.1664996301&jid=73257425&_u=IEBAAEAACAAAACAAI~&z=910465389
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-6640442-5&cid=849581773.1664996301&jid=73257425&_u=IEBAAEAACAAAACAAI~&z=910465389 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://122.53.86.126/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 05 Oct 2022 18:58:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y1/r/ymC3P2k-AXW.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 47 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y1/r/ymC3P2k-AXW.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (65290)
Hash e44dfe605d945df59a070806aa675e28
a288a3f459c1419eef354f426662f5337ba10810
9b86afe3c1b7453f0af0e0a963dcd784d1517d622e72bb1b6db5dec5322fbf9f
GET /rsrc.php/v3/y1/r/ymC3P2k-AXW.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 05 Oct 2023 16:39:15 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 5E3+YF2UXfWaBwgGqmdeKA==
x-fb-debug: 1iKPL5fR3qyX60LlVA/G/OZClOyEEIwDz9BioTYPawwxAjTtNd/LJFea2ir7cSWqr4j7KYzwnZAgPwArcm4M2w==
priority: u=3,i
content-length: 47324
x-fb-trip-id: 1904183273
date: Wed, 05 Oct 2022 18:58:21 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1d4c3917173bd92c4b3208cdf2c7c345
726a9aa16eef5844afde825f9faf1b505d31e69b
572eebfaf735eb8aa1b3563d0317d52f5d22e9e83e5f5b6723f65da83fb15f22
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:58:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.xx.fbcdn.net/rsrc.php/v3/yy/l/0,cross/UWsdBIKSBcK.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 4.6 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yy/l/0,cross/UWsdBIKSBcK.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type assembler source, ASCII text, with very long lines (2642)
Hash 6129c1970714487ee08a6dc8f42a9c53
b2d946d53a2da8713b326188f9b5228ef22bc6e4
5063846d4875cf4b569e244a03d855c8688b93adcf28e0242320f0e034821537
GET /rsrc.php/v3/yy/l/0,cross/UWsdBIKSBcK.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 30 Sep 2023 17:43:13 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: YSnBlwcUSH7gim3I9CqcUw==
x-fb-debug: ObR1ZwLufXbbqP4wlUBk2zqhMaFJEK9M/ZKgCGOA07hkZHvF9vzbpXhvrI6CVOeb1SN6L6fCrb/g1y9b1OA8ew==
priority: u=3,i
content-length: 4586
x-fb-trip-id: 1904183273
date: Wed, 05 Oct 2022 18:58:21 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yb/l/0,cross/cwBc1FhMd71.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 4.4 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yb/l/0,cross/cwBc1FhMd71.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (10262)
Hash 42a4a3e1cf28058bc22eb837b4f7d394
94a1e3b3ef7b5b78bc4212044f67677eb3b91c48
4b8a4e5210ff0605bf57f43ea41b0ca2af6ca9aac060626a5457150810db8f2a
GET /rsrc.php/v3/yb/l/0,cross/cwBc1FhMd71.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 30 Sep 2023 23:56:58 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-fb-rlafr: 0
content-md5: QqSj4c8oBYvCLrg3tPfTlA==
x-fb-debug: Kalp1tv2nY5/rXI2QUuMLF8h/KyzkdIOHwcCzQV2LahNOm5z4FAjZ8AR7vCCi/F3jYkTmDs15jSdF4MtQ4yKpA==
priority: u=3,i
content-length: 4392
x-fb-trip-id: 1904183273
date: Wed, 05 Oct 2022 18:58:21 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y5/l/0,cross/0rmJfK7zYQ7.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 9.1 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y5/l/0,cross/0rmJfK7zYQ7.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (14181)
Hash 65d4599cd6c7185d7cd2ea05b4266fb9
b890bae9a7aefa4a82547f664657df2b90fb703c
8bf5a2b9edeb821ae1e0db4da2543149e8d08d51dab245b9cc19be79fba2d913
GET /rsrc.php/v3/y5/l/0,cross/0rmJfK7zYQ7.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 05 Oct 2023 16:49:57 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-fb-rlafr: 0
content-md5: ZdRZnNbHGF180uoFtCZvuQ==
x-fb-debug: iea+LZG5RNWFDxc4tDJ+UeZC12jf8ZUSmFUIuqJwFNB3UFRYJZ3a+RscTbqHY1UxzbEdPrWdNbU1DMbzOriYHA==
priority: u=2
content-length: 9063
x-fb-trip-id: 1904183273
date: Wed, 05 Oct 2022 18:58:21 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yI/l/0,cross/SkorN68f_KJ.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 4.5 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yI/l/0,cross/SkorN68f_KJ.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (4583)
Hash 6bf2166f353fe64fdfe46a78b2f39487
e71df2bd8aebef1e689082bbd5391b80f2bc661f
93d97664ae1c7cd12b1709363eb17efffeb49d682bb8e3d75c683ba951dfcb98
GET /rsrc.php/v3/yI/l/0,cross/SkorN68f_KJ.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 30 Sep 2023 17:36:05 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: a/IWbzU/5k/f5Gp4svOUhw==
x-fb-debug: qeAb9CX7PZigcaK8Zph7/LmWtLYlGsmQ+/jEb3i2zsPGhGcQ4crL+r7mCB+ifkjECXQswNCeBqviyhcecyPAqA==
content-length: 4464
x-fb-trip-id: 1904183273
date: Wed, 05 Oct 2022 18:58:21 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yY/r/MkVcCW5Kzr9.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 8.9 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yY/r/MkVcCW5Kzr9.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with no line terminators
Hash d130563f9e160e45090093920b9ed618
4b733025eeb71dee8d25c83018c80ffad3c01fd1
eb475634cc159a92ebff3f48e12ebe62dce90a3038c0d9af659b39baa0140394
GET /rsrc.php/v3/yY/r/MkVcCW5Kzr9.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 05 Oct 2023 16:39:15 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: +uIDvfQs7IUa1ijAzABDuw==
x-fb-debug: bNlA+3xShhD7YAC/U8YSbezGdK0jnCZHv4hXhwhOVrk3EmuDYWnX9uS+vpw6SxbJMtT/U5uoE9Er1hzMARJ+fg==
priority: u=3,i
content-length: 8783
x-fb-trip-id: 1904183273
date: Wed, 05 Oct 2022 18:58:21 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y8/r/3dOgMOBrGR6.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 4.8 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y8/r/3dOgMOBrGR6.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type C source, ASCII text, with very long lines (10492)
Hash b21702afdd5d83ce0083d1678c4db3ed
fad4b103ec0b7fde5a5704baf8c7d8084465bd97
a7007e9b90c2df11d826db526a9f1e265eb7a20519c40c6b80788cda34f06f01
GET /rsrc.php/v3/y8/r/3dOgMOBrGR6.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 05 Oct 2023 16:39:15 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: shcCr91dg84Ag9FnjE2z7Q==
x-fb-debug: nZ1BCz/Hl9IFipixU2CkE4vGjXH77VsSyj2QF2NhqnPFm6jJ7yzVeX1VQsZlmY8Yzf6t55x63M1Cfj2I1eaNDw==
priority: u=3,i
content-length: 4840
x-fb-trip-id: 1904183273
date: Wed, 05 Oct 2022 18:58:21 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yw/r/JJlvtKKOBzX.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 7.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yw/r/JJlvtKKOBzX.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type C source, ASCII text, with very long lines (9260)
Hash ce371c4c9276ab16c654442312771b71
2c5b3e87f0e2709eeda7d0cd221b31340a497336
7faedf03884ef8c09e2cbca60c0573680775a8ae2dcb823372d6dec8af88c9ad
GET /rsrc.php/v3/yw/r/JJlvtKKOBzX.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 30 Sep 2023 04:52:39 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: zjccTJJ2qxbGVEQjEncbcQ==
x-fb-debug: QABj4Hucl5s5KRBiRJmxqWmlSkfn5I1nB0VZ0JTT8N+IAiYYkGXc02LizbjJ+t8WC5Lh2W625a8hgkQ7ItazCA==
priority: u=3,i
content-length: 7705
x-fb-trip-id: 1904183273
date: Wed, 05 Oct 2022 18:58:21 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yQ/r/urinFwKapiT.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 48 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yQ/r/urinFwKapiT.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type C source, ASCII text, with very long lines (5066)
Hash 6f8d98ff8d85ae3793caa648fc67138c
a950ebe1d1fdcdb89ad8e7710c49bb5a4712d2ab
429b60c7ad7ae77794077fbc94b15ef20411f72a153bdda1e42e01b45842abba
GET /rsrc.php/v3/yQ/r/urinFwKapiT.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 30 Sep 2023 04:48:58 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: b42Y/42FrjeTyqZI/GcTjA==
x-fb-debug: I0v9o+nrRZ9p5C0l1qxMQEUhlHmiKlZO5gSoABWdFLJKm2TST2L9+yvs6ujkhOBwLIcKjv57dHx3b0i2n1SDog==
content-length: 47894
x-fb-trip-id: 1904183273
date: Wed, 05 Oct 2022 18:58:21 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/ys/r/6NWFpg-EZsH.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/ys/r/6NWFpg-EZsH.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (15783)
Hash a4d817a57bcaa5d5d7825468f93d2e9a
3b62d71931131de980ed4304b376282da14b365c
7397ecf4b3c42bc7682659b16b54dc817b7df5dc77e2ae6277cf1278b1171f71
GET /rsrc.php/v3/ys/r/6NWFpg-EZsH.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 30 Sep 2023 04:49:59 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: pNgXpXvKpdXXglRo+T0umg==
x-fb-debug: HlYtsDEn/R1tm5geHvjOEl8M0nonYH9GBCiY3XqkUe91Xwma47GYHkJrdwa1HLFHzNoinEhknMIi853X4xFuGQ==
priority: u=3,i
content-length: 16319
x-fb-trip-id: 1904183273
date: Wed, 05 Oct 2022 18:58:21 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3ibcU4/y2/l/en_GB/Nq8nSHiYqQL.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 8.5 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3ibcU4/y2/l/en_GB/Nq8nSHiYqQL.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (5960)
Hash 8b480359f95b424f8b86161eab72c324
b5bfa57e59d3259f0ee22e1ee591490782bcd462
bc0f5d430f7a87768a417f5ec8ef2de7dc3cbd8af11351a4b903eb57e95cdf63
GET /rsrc.php/v3ibcU4/y2/l/en_GB/Nq8nSHiYqQL.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 30 Sep 2023 04:53:04 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: i0gDWflbQk+LhhYeq3LDJA==
x-fb-debug: SuwjxQcX6y1ybHHLmJLR/WWT6r6bbhZGwpHPCn6qVvZ7JVQ5HyID/VghtM5Au/WZrA/Sh263VVE1oDQj9TlFXQ==
content-length: 8454
x-fb-trip-id: 1904183273
date: Wed, 05 Oct 2022 18:58:21 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yr/r/ihjLACFC70L.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 5.5 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yr/r/ihjLACFC70L.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type C source, ASCII text, with very long lines (4649)
Hash 00c248acec266cf739382aabd2a635ad
f2931dc851591701f382f59770a2769d23b49921
34dca338bd8a8cf12558e3b69db4b9c111489d854f3babaaa8a913c812d08b55
GET /rsrc.php/v3/yr/r/ihjLACFC70L.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 30 Sep 2023 04:48:37 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: AMJIrOwmbPc5OCqr0qY1rQ==
x-fb-debug: 8goybuogSg8/qB6U4t5QK8nbzW8+u4EYVfFMPHT7xtkR3PDD69eZLQgZ1HaoMyAS8SuMov4DbAqbu221HtisCg==
priority: u=3,i
content-length: 5516
x-fb-trip-id: 1904183273
date: Wed, 05 Oct 2022 18:58:21 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y0/r/kllmdWKFTV2.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 1.3 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y0/r/kllmdWKFTV2.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (1489)
Hash 0a5916578e6a30694e81e1aaedb95e99
fb36fc0746a573409e104b79937aeee5b960456d
3f4dfa177e01c3b21630f00cc5dc745323887835d9cf3e074d2c2c3ed9c867ab
GET /rsrc.php/v3/y0/r/kllmdWKFTV2.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 30 Sep 2023 04:52:15 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: ClkWV45qMGlOgeGq7blemQ==
x-fb-debug: lbOf+sQOGemoT5VLsevO2B1mDsdNIhfQvmO3F2gMPhuYo/gFaTeJnc0okaZm88iOe9J8ug7kbWnH6eDjUKsY7A==
priority: u=3,i
content-length: 1285
x-fb-trip-id: 1904183273
date: Wed, 05 Oct 2022 18:58:21 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78bf691d-76e8-4176-884d-dbc06604dded.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78bf691d-76e8-4176-884d-dbc06604dded.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 100559d746bedd7c3802661c875c35ee
5261a6c2ee6d6cc87e91ee82e32d8be234db393e
ff06f31267ddcc9a0d84ddc68932872bfed29d072783c3a1dd3790d41c280aec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78bf691d-76e8-4176-884d-dbc06604dded.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8816
x-amzn-requestid: b9f3ec8a-f478-4405-b275-e21f2d7d89d4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZKK7gFPJIAMF-7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6333f1e3-250348e6140f3c74762263ea;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 07:04:03 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: F1ZWwxLKhRC6oSh6gnUxEm5AnYcY-mezJw9mNJ8GmNWnATAKx1JxSg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 22:42:26 GMT
age: 72955
etag: "5261a6c2ee6d6cc87e91ee82e32d8be234db393e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.facebook.com/v2.11/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Dfb7cf49f4f0d3e%26domain%3D122.53.86.126%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252F122.53.86.126%252Ff4b8ef2bfa3b96%26relation%3Dparent.parent&container_width=216&height=556&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fnutrinet.ph%2F&locale=en_GB&sdk=joey&show_facepile=true&show_posts=true&small_header=false&width=250
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/v2.11/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Dfb7cf49f4f0d3e%26domain%3D122.53.86.126%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252F122.53.86.126%252Ff4b8ef2bfa3b96%26relation%3Dparent.parent&container_width=216&height=556&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fnutrinet.ph%2F&locale=en_GB&sdk=joey&show_facepile=true&show_posts=true&small_header=false&width=250
IP 31.13.72.36:0
GET /v2.11/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Dfb7cf49f4f0d3e%26domain%3D122.53.86.126%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252F122.53.86.126%252Ff4b8ef2bfa3b96%26relation%3Dparent.parent&container_width=216&height=556&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fnutrinet.ph%2F&locale=en_GB&sdk=joey&show_facepile=true&show_posts=true&small_header=false&width=250 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://122.53.86.126/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
facebook-api-version: v8.0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: GCn5HaBncszHpoEShuwsrnoK6NMzrcP1FdbpVp79q217N4++jGw+dxmKVSWW/MWAq3JKwhTC8daOWvvEIvCLlA==
date: Wed, 05 Oct 2022 18:58:21 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:400,100,100italic,300,300italic,400italic,500,500italic,700,700italic,900italic,900
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:400,100,100italic,300,300italic,400italic,500,500italic,700,700italic,900italic,900
IP 142.250.74.10:0
GET /css?family=Roboto:400,100,100italic,300,300italic,400italic,500,500italic,700,700italic,900italic,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gwhs.i.gov.ph/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 05 Oct 2022 18:58:16 GMT
date: Wed, 05 Oct 2022 18:58:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.facebook.com/v2.11/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df7a7e7abfaab56%26domain%3D122.53.86.126%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252F122.53.86.126%252Ff4b8ef2bfa3b96%26relation%3Dparent.parent&container_width=329&height=550&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fnutrinet.ph%2F&locale=en_GB&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=450
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/v2.11/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df7a7e7abfaab56%26domain%3D122.53.86.126%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252F122.53.86.126%252Ff4b8ef2bfa3b96%26relation%3Dparent.parent&container_width=329&height=550&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fnutrinet.ph%2F&locale=en_GB&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=450
IP 31.13.72.36:0
GET /v2.11/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df7a7e7abfaab56%26domain%3D122.53.86.126%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252F122.53.86.126%252Ff4b8ef2bfa3b96%26relation%3Dparent.parent&container_width=329&height=550&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fnutrinet.ph%2F&locale=en_GB&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=450 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://122.53.86.126/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
facebook-api-version: v8.0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: cKIhmz5pwTQkW5zCUqCXr1lna1QHjajZNWdaCyDVsHVjCeESlTT8CDx0IT4lNNfQZRo3eVcSKjyhV8Us+pkV9Q==
date: Wed, 05 Oct 2022 18:58:20 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2