firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 19 Sep 2022 19:12:48 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: BU9F_LDmQd87eyWq4RtPQXbLlrAtTRS1UaU6VFynSBqsNyv9x2gMjQ==
Age: 3281
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 861cfa99de956423d917ed0ddbea4b9c
ad65dbc394b48b04a45c205f56af296c8d008db4
5c706b2718b1698995f4feb91223779aef4bf6dc967c31f9ef9a93873197d5f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C706B2718B1698995F4FEB91223779AEF4BF6DC967C31F9EF9A93873197D5F9"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9793
Expires: Mon, 19 Sep 2022 22:50:42 GMT
Date: Mon, 19 Sep 2022 20:07:29 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 19 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: X-3e2s5Llu1ZCZ7KlU6hJuGTV0bnqdUaXCymQBeGlSVHcbgK8TRn-w==
age: 55936
X-Firefox-Spdy: h2
musicadda.net/discovery-plus-premium-coupon-code.html
172.105.33.133200 OK 7.4 kB URL HTTP/1.1 musicadda.net/discovery-plus-premium-coupon-code.html
IP 172.105.33.133:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1948), with CRLF line terminators
Hash d0701389951cfe9984535b9c8309a8fb
b0bae1054c6a7e39eb87d8159db9d1865a825f85
edf92f0aeff80fb5430891724c261879c52dd0a94eec78af62f02fd39acc4f43
GET /discovery-plus-premium-coupon-code.html HTTP/1.1
Host: musicadda.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
last-modified: Sun, 18 Sep 2022 12:32:16 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 7394
date: Mon, 19 Sep 2022 20:07:29 GMT
server: LiteSpeed
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 20:07:29 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 56433b6932f28a949ac82fec1caa9e99
017c5a1ccc0f6e68fd60a9d0658c0526b81b4156
a6fe9208db3d30b3a81378a59aa588480ab2080c33f1d0921752c2dfdc76d1fd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 20:07:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 26fcf8aea27805b4a6a29e3e2a4ba19b
f920fd6c5a79a4adb2f456edcee678757ff1602c
7aa63d03f514e4f51190e85f167f747563f980e0e6fdee6cce9393321dff1038
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 20:07:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-10193151-9
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-10193151-9
IP 142.250.74.72:0
File type ASCII text, with very long lines (1720)
Hash 0bed816e515e93c302563343a39c3021
55bfa1e8af465f787725932b6e5b1ef777b6bff5
ebdb11c288af6d0a1cf5f3944ec76d504de5d5e2a5c2c95f34d4e96bb4c0fb32
GET /gtag/js?id=UA-10193151-9 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 19 Sep 2022 20:07:29 GMT
expires: Mon, 19 Sep 2022 20:07:29 GMT
cache-control: private, max-age=900
last-modified: Mon, 19 Sep 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42360
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 45f95aa258ab932ac2f8a33ff7944ffe
8f52b66e897dab7cb160d481886805ea216f407f
de4fd2aaa566b601e82c38806ec8ea84110b1d63f15efe48186f5bcf70847488
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 20:07:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/s/player/a97e97de/www-player.css
172.217.21.174200 OK 49 kB URL HTTP/2 www.youtube.com/s/player/a97e97de/www-player.css
IP 172.217.21.174:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3a057d9fa48ad6b735e91c1f7fd7909a
e6a67ab82ccccef2ff9c2a9675549db921d86a4d
62ace094defa260545fd5dad61759df34fe0ae1a8dc1f0cf40a70d28a04ea905
GET /s/player/a97e97de/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/YC5q_PYBUgM?feature=oembed
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 49363
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 03:04:24 GMT
expires: Sat, 16 Sep 2023 03:04:24 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Sep 2022 21:54:27 GMT
content-type: text/css
age: 320585
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/a97e97de/www-embed-player.vflset/www-embed-player.js
172.217.21.174200 OK 98 kB URL HTTP/2 www.youtube.com/s/player/a97e97de/www-embed-player.vflset/www-embed-player.js
IP 172.217.21.174:0
File type ASCII text, with very long lines (570)
Hash 66779b8011cd9ebfa3cb7a6de301d00d
a85da451fc25564d8b0a7287ea67e644790d1a3e
75228478dd647670e9d3aeae17d741abd5f5a07d739127dfbfeded437927d7fa
GET /s/player/a97e97de/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/YC5q_PYBUgM?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 97939
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 03:04:24 GMT
expires: Sat, 16 Sep 2023 03:04:24 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Sep 2022 21:54:27 GMT
content-type: text/javascript
age: 320585
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/a97e97de/fetch-polyfill.vflset/fetch-polyfill.js
172.217.21.174200 OK 2.8 kB URL HTTP/2 www.youtube.com/s/player/a97e97de/fetch-polyfill.vflset/fetch-polyfill.js
IP 172.217.21.174:0
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (555)
Hash 80fe2d229007996c8397073b00755dc7
121f82c77bcf2a297a1085e3b092415c463fcafe
033dfa8941482c82d4f1aaa4a9172fb379b9e46a02d5b36297c5476bbbfdea2c
GET /s/player/a97e97de/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/YC5q_PYBUgM?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 03:04:24 GMT
expires: Sat, 16 Sep 2023 03:04:24 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Sep 2022 21:54:27 GMT
content-type: text/javascript
age: 320585
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/a97e97de/player_ias.vflset/en_US/base.js
172.217.21.174200 OK 590 kB URL HTTP/2 www.youtube.com/s/player/a97e97de/player_ias.vflset/en_US/base.js
IP 172.217.21.174:0
File type ASCII text, with very long lines (554)
Size 590 kB (589794 bytes)
Hash 2cf72d6908c8dfac7e8c8c5debe1bba0
69aef6123882a5df7a9460f8b69e16ef4312d757
b2beac7d81227b7916417f65959a82092770b53ab9f3add4d2603fbcf6838375
GET /s/player/a97e97de/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/YC5q_PYBUgM?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding, Origin
content-encoding: br
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 589794
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 03:14:52 GMT
expires: Sat, 16 Sep 2023 03:14:52 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Sep 2022 21:54:27 GMT
content-type: text/javascript
age: 319957
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 81fa7001b4b94f54d2ab4f3237ecaabb
e21bb07f34d9bed91f5caac3f9a83e9600a5652c
0ecbe6e0c5198d792a0eeb4197c88ec1d3a9f8b215efae7a6bb87776f7673b6a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 20:07:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a9323cf0781cad0d5ac23f0c81c105b1
772d0218be53da9f875bb96a287c904976c296da
5c808b03cd8dd26275f12a850d8a36b467246c1461ea65a4c717acb04f2ca722
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 20:07:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
my.rtmark.net/p.js?f=sync&lr=1&partner=2b4a318c7d51811737d134be11b9252db4de04c890239a24655f3447709d7072
139.45.195.8200 OK 697 B URL HTTP/2 my.rtmark.net/p.js?f=sync&lr=1&partner=2b4a318c7d51811737d134be11b9252db4de04c890239a24655f3447709d7072
IP 139.45.195.8:0
Hash 834289a61a27d692734d00a4d84a9550
b6c2a5849649b9174acade1069bd51dd4d60c1ed
144e83b6af30300bbb53e86d6addb54ed39042c3066840cbecbcbf025532dd11
GET /p.js?f=sync&lr=1&partner=2b4a318c7d51811737d134be11b9252db4de04c890239a24655f3447709d7072 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 20:07:29 GMT
content-type: text/javascript
content-length: 697
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f5180e6651455bc8443945fb5b6860c
01457b8648200c9d274b2790b95274b1dc855aaf
39301cccc2805993f794301cb01a70a954e7c8a8e5d6779acc4888f77d7282c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 20:07:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 19 Sep 2022 20:03:22 GMT
Cache-Control: max-age=3600
Expires: Mon, 19 Sep 2022 20:30:03 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: bBqs5AIgepWNKN4bcUspUFeNM089Y2zrdUH7h4Fqqwa-fVP5nF5FlQ==
Age: 247
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d2c3fc46c7794dba5a952bf021293e47
b3d9846c7364bb0714bd5b508b5d99236e489a3e
67f9e6f46b2856ff1e65c5577b67703f63df387768941ce08b4849f0179f85a7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "67F9E6F46B2856FF1E65C5577B67703F63DF387768941CE08B4849F0179F85A7"
Last-Modified: Mon, 19 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14853
Expires: Tue, 20 Sep 2022 00:15:03 GMT
Date: Mon, 19 Sep 2022 20:07:30 GMT
Connection: keep-alive
propeller-tracking.com/fv.js?t=102123
139.45.197.240200 OK 2.6 kB URL HTTP/2 propeller-tracking.com/fv.js?t=102123
IP 139.45.197.240:0
Hash 457f30af31539304e0d1e23aedc9a9de
866a1a11a89346cb0cb16a7076ef105e2e9c4794
0811dbd17bd3e61e81e524458fd409a636c86e3a2140551c32427993c2579627
GET /fv.js?t=102123 HTTP/1.1
Host: propeller-tracking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 20:07:29 GMT
content-type: text/javascript; charset=utf8
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: f841a54934503c2b0510ee6913bca6fb
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
unphionetor.com/vctx?t=102123
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vctx?t=102123
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /vctx?t=102123 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://musicadda.net
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Mon, 19 Sep 2022 20:07:30 GMT
access-control-allow-origin: http://musicadda.net
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: b3e6ffd3c86c351f0b72fd298412cc6d
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-5414070771498127
142.250.74.34200 OK 59 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-5414070771498127
IP 142.250.74.34:0
File type ASCII text, with very long lines (2903)
Hash e7a901905791c953a0d2c4afb960c320
365c823ea62b1aa725f9eefd8d8b3dca14cd6593
6b5ca7bd32de8cfb631adfd10ef014825c0585d2cdb5e91c3c1f7d34e3c2f6c3
GET /pagead/js/adsbygoogle.js?client=ca-pub-5414070771498127 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://musicadda.net
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
date: Mon, 19 Sep 2022 20:07:30 GMT
expires: Mon, 19 Sep 2022 20:07:30 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 7326725680164737988
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 59111
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6f0747f732f05e110f9fe9938de620d3
d4e9a55014187d0d2af174e5c27d03cc10c6cb05
32a866308c9d930c425a8ced1974039a409528cb4a0bd07bfbe4d8cd39be9742
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 20:07:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5c817aa82ca8ed4a4257fd1e1628b423
7905c62b6bbc582860c07b75eddae371a4b8d02b
dce1783ecfe50c83d30878b48d60e1cf3fe42a3fa4090fb5d318194de73e53d6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3520
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 20:07:30 GMT
Last-Modified: Mon, 19 Sep 2022 19:08:50 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
musicadda.net/favicon.ico
172.105.33.133200 OK 518 B URL HTTP/1.1 musicadda.net/favicon.ico
IP 172.105.33.133:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7fbe97e07630227d053408a4ebd4e23b
22a5ddc3917f286af417be2eaa9422b5f68d4676
e3f776b3c5fe7ed2691878741de58d63c8fc9c69608d766e7d1b38839abbeb27
GET /favicon.ico HTTP/1.1
Host: musicadda.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://musicadda.net/discovery-plus-premium-coupon-code.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 26 Sep 2022 20:07:30 GMT
content-type: image/x-icon
last-modified: Tue, 05 Oct 2021 10:40:39 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 518
date: Mon, 19 Sep 2022 20:07:30 GMT
server: LiteSpeed
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3146bb0aaba22619df206969792ed383
07db3170920b9ba82ecf00e6135eecf08f167942
cba7793fa0a6de6486e3515f886a42efeb21f3b4c84d5e7395f6468a5925d27f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 20:07:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
216.58.207.230200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 216.58.207.230:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 19:59:23 GMT
expires: Mon, 19 Sep 2022 20:14:23 GMT
cache-control: public, max-age=900
age: 487
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eaa8b4aa123f9dd7237c5c51d2f848d9
1082f5f6ef7229ec76f94f3d236f273b26294563
d1ad33dae2fcab5c7d66875f0e7a01cc30e0b3a031606917fa5448c54f84e20d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 20:07:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e34f594c2e3b9b6a81e4ae9fef80f363
b7f65f5fb0df328d3c863af6c9351923205645f2
bcedda132b602d90a62a5fbe07e7c37f69cce319fb4b84e1bed40b1200e9898b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 20:07:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3146bb0aaba22619df206969792ed383
07db3170920b9ba82ecf00e6135eecf08f167942
cba7793fa0a6de6486e3515f886a42efeb21f3b4c84d5e7395f6468a5925d27f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 20:07:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.138200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Mon, 19 Sep 2022 20:07:30 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4ee5c6443c11da4a5cf7ea801cd0c62f
e742a7ee1cbedf1a23a82361f3873dbc165f927c
e3682e49ed03efcf590a500154380807b54433f8344923e9017994bdf0d46924
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 20:07:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 70f9595d3ff69b7cd89b24b56abdd7cc
09027fbaa6dfd33a97e836cd136c840f9ee763a2
44a5ee6a5a97426191dbbaf4e7a3d0ee154e1f192dd3c3cb3a11d74a702061eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 20:07:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5cd63cb6d6ee0c229d42c30cea96385b
39b42291f5264020f2bb6f40bff517618aae0bcd
078d712d379fb57dce7db2075f83a1f4c65571e520f2cdbeccac3ddc008b05a4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 20:07:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.138200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.138:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 61a741633f7bb493453f97d163814e7e
b9e65da18874b4e0bfed902ca950a313bd2d3bec
99c3c55e574e1c7bcfb953dcd348ae6669a23583b01c46f866ff868b6e2acd3d
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Mon, 19 Sep 2022 20:07:30 GMT
server: ESF
cache-control: private
content-length: 30597
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.215.91.121101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.215.91.121:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Fo2WsE9CqBBPjX/J594kBw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: pF7tn7fGAZTBYFgV7GssI1tL2wE=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eaa8b4aa123f9dd7237c5c51d2f848d9
1082f5f6ef7229ec76f94f3d236f273b26294563
d1ad33dae2fcab5c7d66875f0e7a01cc30e0b3a031606917fa5448c54f84e20d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 20:07:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=musicadda.net&callback=_gfp_s_&client=ca-pub-5414070771498127
172.217.21.162200 OK 202 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=musicadda.net&callback=_gfp_s_&client=ca-pub-5414070771498127
IP 172.217.21.162:0
File type ASCII text, with no line terminators
Hash 4f6fc031d633375baa09af4b9f23e8ae
3d1bccf4e9adec6b58c67260cc583c7be699b2ed
733bd054de5c4b426b02be6bc429cda61b87ca76f6b5a203ad8bfda9000f57c6
GET /gampad/cookie.js?domain=musicadda.net&callback=_gfp_s_&client=ca-pub-5414070771498127 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 20:07:30 GMT
server: cafe
cache-control: private
content-length: 202
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=musicadda.net
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=musicadda.net
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=musicadda.net HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 20:07:30 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.ytimg.com/vi_webp/YC5q_PYBUgM/maxresdefault.webp
216.58.207.246200 OK 52 kB URL HTTP/2 i.ytimg.com/vi_webp/YC5q_PYBUgM/maxresdefault.webp
IP 216.58.207.246:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ffff7aec0d84da2f77ca37ebca11d976
3dc8ba322eb87b8233a7680cd4153356925529bb
222b38319204f7b4f45c30b42601f26f7d53768645674fc0736be2629bc03c8d
GET /vi_webp/YC5q_PYBUgM/maxresdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 52270
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 20:07:30 GMT
expires: Mon, 19 Sep 2022 22:07:30 GMT
cache-control: public, max-age=7200
etag: "1609638413"
content-type: image/webp
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
my.rtmark.net/img.gif?f=sync&partner=2b4a318c7d51811737d134be11b9252db4de04c890239a24655f3447709d7072&ttl=&rurl=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html
139.45.195.8200 OK 43 B URL HTTP/2 my.rtmark.net/img.gif?f=sync&partner=2b4a318c7d51811737d134be11b9252db4de04c890239a24655f3447709d7072&ttl=&rurl=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html
IP 139.45.195.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=sync&partner=2b4a318c7d51811737d134be11b9252db4de04c890239a24655f3447709d7072&ttl=&rurl=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 20:07:30 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=dd03108eaabe4ec3bcf413ff316f31fa; expires=Tue, 19 Sep 2023 20:07:30 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash fd6f5d48a8eb6a76f7c699a235f6ed95
6dfe5af37fa0c7a6ed073d73d8be6e23ec4e1cc4
a7239c791a93ecf634d1afef2a09feae30f46decdbfa039403bd10394e444d56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 20:07:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4aebec42ca2e6505dc8921d4e374fb5e
e43838649932d95af63c651d94b8ca67845156ef
01edca4a2f977f1dc6c0a068f97fd17e04dc96d88d9664107af3b2ffb6f18ffb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 20:07:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 326d2cd6174e531247a5b0179349e69b
565f6aef70d7c28da0c7c9fd2da55220ba5d4224
33f85741b0155af18ec5a002dfb06075ea81c44b3a59bbe17d9a9cb277244652
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 20:07:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/ytc/AMLnZu8bsu05GxMz5jmQzx9Xp7a1tHyWkHpKK-49a8M1=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 3.9 kB URL HTTP/2 yt3.ggpht.com/ytc/AMLnZu8bsu05GxMz5jmQzx9Xp7a1tHyWkHpKK-49a8M1=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash 3586c7226022a1a763d81e391b25bc2d
77a89cb0ba9465ce4f1c8e1bd702598ce95815e7
5e8fb9fafd0abfafd523eeb90dfe362fdcac3a75ea079e7f1539b424ba5f9f5e
GET /ytc/AMLnZu8bsu05GxMz5jmQzx9Xp7a1tHyWkHpKK-49a8M1=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 3947
x-xss-protection: 0
date: Mon, 19 Sep 2022 17:09:58 GMT
expires: Sun, 31 Jul 2022 16:58:44 GMT
cache-control: public, max-age=86400, no-transform
age: 10652
etag: "vd"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 70f9595d3ff69b7cd89b24b56abdd7cc
09027fbaa6dfd33a97e836cd136c840f9ee763a2
44a5ee6a5a97426191dbbaf4e7a3d0ee154e1f192dd3c3cb3a11d74a702061eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 20:07:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=musicadda.net
142.250.74.66200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=musicadda.net
IP 142.250.74.66:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=musicadda.net HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 20:07:30 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/js/th/0Q0sPaTf27KkVV0qBrYI7cmJeSJkpG4CF1zVddAZEjs.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/0Q0sPaTf27KkVV0qBrYI7cmJeSJkpG4CF1zVddAZEjs.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (36110)
Hash d348ea7c67cf70cc27add8ec15920c5f
46b2db74425f5c6c10c69831277b83c76c8c24b8
e9198b139add4e4683e04549366c63b57000c4e9d719c0e5820124d63d0fccff
GET /js/th/0Q0sPaTf27KkVV0qBrYI7cmJeSJkpG4CF1zVddAZEjs.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14308
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 05:09:26 GMT
expires: Thu, 14 Sep 2023 05:09:26 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 13 Sep 2022 11:00:00 GMT
content-type: text/javascript
age: 485884
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash fd6f5d48a8eb6a76f7c699a235f6ed95
6dfe5af37fa0c7a6ed073d73d8be6e23ec4e1cc4
a7239c791a93ecf634d1afef2a09feae30f46decdbfa039403bd10394e444d56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 20:07:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4aebec42ca2e6505dc8921d4e374fb5e
e43838649932d95af63c651d94b8ca67845156ef
01edca4a2f977f1dc6c0a068f97fd17e04dc96d88d9664107af3b2ffb6f18ffb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 20:07:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 15f2e4d43b738892fbb148aa4080c353
82339187aa5d216091d6ef61be63ed476aed8773
fd0178eb6ee7fed2113f20dc523431c0126de3e47d10065044f1fc58246df7aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 20:07:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 15f2e4d43b738892fbb148aa4080c353
82339187aa5d216091d6ef61be63ed476aed8773
fd0178eb6ee7fed2113f20dc523431c0126de3e47d10065044f1fc58246df7aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 20:07:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/qs_click_protection_fy2021.js
142.250.74.33200 OK 7.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/qs_click_protection_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1494)
Hash c6ef0dcf21169e17aaffa059d38c2d49
2be7fa5127d37589157427293c2acededdbc009c
a2734b2074e51f52a7e9c604170acd71b311146d99d1640192f015f070b7df7f
GET /pagead/js/r20220914/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 7552
x-xss-protection: 0
date: Mon, 19 Sep 2022 19:38:29 GMT
expires: Mon, 03 Oct 2022 19:38:29 GMT
cache-control: public, max-age=1209600
etag: 1588701280721430806
content-type: text/javascript; charset=UTF-8
age: 1742
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20220914/r20110914/abg_lite_fy2021.js
142.250.74.33200 OK 9.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220914/r20110914/abg_lite_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1624)
Hash 85a90b8e0126b27c0822c49645a463df
45792c551fabfa14db90396c2c34337929011a3b
13fe815828a5dc11870c98db4957f2f59aaf7e0eaec4028d3d88fb4b6e82588e
GET /pagead/js/r20220914/r20110914/abg_lite_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 9550
x-xss-protection: 0
date: Mon, 19 Sep 2022 20:03:20 GMT
expires: Mon, 03 Oct 2022 20:03:20 GMT
cache-control: public, max-age=1209600
etag: 715955199520789971
content-type: text/javascript; charset=UTF-8
age: 251
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
142.250.74.2200 OK 45 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 142.250.74.2:0
File type ASCII text, with very long lines (3498)
Hash 0c0e0434e32ed968a0bc5ff10a91ee38
a1ed1ba2ded5777b5d4b1fa28f0ec1c70f8e0a61
c41e6de34c081e355d46d6c47119984ec38efe5852cb5a4360538559cd237c08
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 44609
date: Mon, 19 Sep 2022 20:07:31 GMT
expires: Mon, 19 Sep 2022 20:07:31 GMT
cache-control: private, max-age=3000
etag: "1663155654979086"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
unphionetor.com/vbl?t=102123&bid=undefined&aid=undefined
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vbl?t=102123&bid=undefined&aid=undefined
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /vbl?t=102123&bid=undefined&aid=undefined HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://musicadda.net
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
server: nginx
date: Mon, 19 Sep 2022 20:07:31 GMT
access-control-allow-origin: http://musicadda.net
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 3e5b5eaf63854b5d48d4d218da4e7f11
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20220915&st=env
142.250.74.34200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20220915&st=env
IP 142.250.74.34:0
File type JSON data\012- , ASCII text, with very long lines (14750), with no line terminators
Hash ff8dd748a195c989d4004acbc552ad79
5bf83afab277939a04422b983254e0ec21dface7
3f5ed1a03492a4e8118ad49190c85dd67969f1c70b5a7368686641191fc6ebde
GET /getconfig/sodar?sv=200&tid=gda&tv=r20220915&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://musicadda.net
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 20:07:31 GMT
server: cafe
cache-control: private
content-length: 11199
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209080101/reactive_library_fy2021.js
142.250.74.34200 OK 55 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209080101/reactive_library_fy2021.js
IP 142.250.74.34:0
File type ASCII text, with very long lines (3461)
Hash e3dbc1e31b9a55347ce6bbee2a3a3d59
29de02b38b70372f0c0bb99409e16f7a34930853
e8e06e29efa12c3034837db7a6dcaa5cd37728c9d18f4536a7bb3a49f28147a7
GET /pagead/managed/js/adsense/m202209080101/reactive_library_fy2021.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Mon, 19 Sep 2022 20:07:31 GMT
expires: Mon, 19 Sep 2022 20:07:31 GMT
cache-control: private, max-age=1209600
content-type: text/javascript; charset=UTF-8
etag: 9654256400009825443
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 54579
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.138200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Mon, 19 Sep 2022 20:07:31 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.138200 OK 110 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.138:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 782c5f5527d4d8c3cdbbed9c16520bef
d24089b0e68363d466678785bd405b55bcde19f3
ed05623292a35665f48aca25a56559002e3ec60a7adca66cf964b2cf4109beb7
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1032
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Mon, 19 Sep 2022 20:07:31 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7515
Expires: Mon, 19 Sep 2022 22:12:46 GMT
Date: Mon, 19 Sep 2022 20:07:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7515
Expires: Mon, 19 Sep 2022 22:12:46 GMT
Date: Mon, 19 Sep 2022 20:07:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7515
Expires: Mon, 19 Sep 2022 22:12:46 GMT
Date: Mon, 19 Sep 2022 20:07:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7515
Expires: Mon, 19 Sep 2022 22:12:46 GMT
Date: Mon, 19 Sep 2022 20:07:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7515
Expires: Mon, 19 Sep 2022 22:12:46 GMT
Date: Mon, 19 Sep 2022 20:07:31 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd460ce9f-ea5c-436e-8b02-8ec8233b9681.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd460ce9f-ea5c-436e-8b02-8ec8233b9681.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e4098577adb98eae5ba4a8b5e143df71
b0ad467f2837d103f8a96fb732bd34176c4c7110
83aa54020ffc684690dfb58d78608411de38ab02fee50808a8243c6b388e77c0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd460ce9f-ea5c-436e-8b02-8ec8233b9681.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5064
x-amzn-requestid: 985dbd5b-3e8a-4e22-a974-1effa6c99112
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YrOS8FyBoAMFrCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632790df-201df5494f1513b91eefe9d5;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 21:42:55 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: GIhj3a2-SwYu2w4mLx7JiIJzFfV82-Et89ORRsx5fsGOx9nttPlCxA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 21:57:13 GMT
etag: "b0ad467f2837d103f8a96fb732bd34176c4c7110"
content-type: image/jpeg
age: 79818
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d3e70b2859ca89b353682d03f6b46b93
ebd83f29edd95217dfa4f4c7a94eddf34dd58b14
43ad8f8b0a664bbec39e0410c1201498a2d2e36e5bd7d5ece8d65b15230ec50b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10894
x-amzn-requestid: f7aad96e-af80-4db7-8bc1-d1e09a9b37e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeJQGHhOIAMFYuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322559a-538534e91448af217c59ab3d;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:28:42 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: P7aZQzmAvqn2rcHJUQjHo0Dcg8dsrqseey5mNOabfq1b857M4SUMDQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 10:33:00 GMT
age: 34471
etag: "ebd83f29edd95217dfa4f4c7a94eddf34dd58b14"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e5b5676-18df-4d43-8bbd-b85ffe4f1a94.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e5b5676-18df-4d43-8bbd-b85ffe4f1a94.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1105b56cf779b6df1cbd081bbd0cda50
58c5d6f8ba1d3236d788ac55ff7cb2ec7863fb5c
10c1f0433baf51e06565ff905688075aaba8fec0a8b3f9cef34168e297f94c2c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e5b5676-18df-4d43-8bbd-b85ffe4f1a94.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5866
x-amzn-requestid: 3a7db39d-cd4f-486f-954b-39fc7464706c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YrNeAE67IAMFSoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63278f8c-66a419ac7fbd977f5f41061b;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 21:37:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: TdVz72qdwMdsuW1WsOq1qEZk2vmbXJlbppLTTsZ9PlrmN7GEph0dyQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 21:53:39 GMT
etag: "58c5d6f8ba1d3236d788ac55ff7cb2ec7863fb5c"
content-type: image/jpeg
age: 80032
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c670b93-3941-4322-a938-e74eba949ad6.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c670b93-3941-4322-a938-e74eba949ad6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f003d8b6e12692fb16dddd6827deead8
786c333cf08456aea446a55c547520572e1c2df9
d79ea50cfc0f237b3de8f1826cbae1de0b1dbc632a5a06b08d9640abedded935
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c670b93-3941-4322-a938-e74eba949ad6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11919
x-amzn-requestid: 2f547c1f-2f5d-4707-8f6c-fe9dfff51383
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YbfS4FI9oAMFScw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632145ab-3c967f2653d06c1c079f88c1;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 03:08:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: xG9XQItrQEJXCW9JRcI6aDELQKCTOlnwq1Xg5_vQcqCPNtHGWkScFw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 22:00:17 GMT
age: 79634
etag: "786c333cf08456aea446a55c547520572e1c2df9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24f3f8eb-09f7-4c60-864d-3ff96da7c86a.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24f3f8eb-09f7-4c60-864d-3ff96da7c86a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 893f3495f1f575e946a57c8e8411b2a5
480182fd29c7edd369339847b85e4e2580cef0f6
097d868881231eae089ac8b97d5dc290583477f63dc35b7458ed4898e0db3e0c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24f3f8eb-09f7-4c60-864d-3ff96da7c86a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6428
x-amzn-requestid: 7dd3072b-403a-4bb4-b8c4-58a6d7c254f7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YRmgCGJVIAMFk5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d5133-0756be8c75da02a857e36a2f;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 03:08:35 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: nD62kVNMZRvoZaM85m1kNlgU-KOj2X7tqhy9cPxGJFaBHCMVEsvWXQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 21:53:45 GMT
age: 80026
etag: "480182fd29c7edd369339847b85e4e2580cef0f6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc97d270b-72af-4a6b-ae64-123f7b52851e.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc97d270b-72af-4a6b-ae64-123f7b52851e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3d9fd171b51b27aa84e06e7d5a40116e
a81660dcace8f232018ce9a6d027b271d1f8a863
2c80ffd2c0c451c61623a677d1b17e8e58a40a0a7bdb5ef1cac2610bb0a7e0a8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc97d270b-72af-4a6b-ae64-123f7b52851e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8735
x-amzn-requestid: bee7087d-6431-457a-8fdc-a9eff7b14afd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YrOAZHcCIAMFTSw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63279068-4a7d282e1860a131491a4f2d;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 21:40:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: EClCCFFn_OCwRqXC7W0g-msDSm1WsTRB5kDJsAQyxIPmIwSQBSbJ9g==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 21:57:01 GMT
etag: "a81660dcace8f232018ce9a6d027b271d1f8a863"
content-type: image/jpeg
age: 79830
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/html/r20220915/r20110914/zrt_lookup.html?fsb=1
142.250.74.34200 OK 4.4 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20220915/r20110914/zrt_lookup.html?fsb=1
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1731)
Hash 682bf699cccbc0ff817e1fcb7b95262a
11ad3edf0008f52b733c2d6d7199e1f052318d58
bd42f773d589f85cf6884d7893746d5d4e0c082f78e1c80511cf3aefa1c69a0f
GET /pagead/html/r20220915/r20110914/zrt_lookup.html?fsb=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 4420
x-xss-protection: 0
date: Mon, 19 Sep 2022 13:49:50 GMT
expires: Mon, 03 Oct 2022 13:49:50 GMT
cache-control: public, max-age=1209600
age: 22661
etag: 9671129459699598864
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=musicadda.net
142.250.74.66200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=musicadda.net
IP 142.250.74.66:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=musicadda.net HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 20:07:31 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
adservice.google.com/adsid/integrator.js?domain=musicadda.net
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=musicadda.net
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=musicadda.net HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 20:07:31 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
tpc.googlesyndication.com/pagead/js/r20220914/r20110914/elements/html/fullscreen_api_adapter_fy2021.js
142.250.74.33200 OK 5.8 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220914/r20110914/elements/html/fullscreen_api_adapter_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1837)
Hash bd3e60c24367995bf1d249ada95adf99
201537f1e85f276f90e3a6597fa44d82700f17c4
9f514636362a279bd9224f4300bd28bc5623d223a8e6ac3a811ee6adc88518be
GET /pagead/js/r20220914/r20110914/elements/html/fullscreen_api_adapter_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 5776
x-xss-protection: 0
date: Mon, 19 Sep 2022 16:04:27 GMT
expires: Mon, 03 Oct 2022 16:04:27 GMT
cache-control: public, max-age=1209600
age: 14584
etag: 17556852573667057119
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
googleads.g.doubleclick.net/pagead/drt/s?v=r20120211
142.250.74.34200 OK 145 B URL HTTP/2 googleads.g.doubleclick.net/pagead/drt/s?v=r20120211
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 92235b51835ea17fa6d313a73f3c2b8f
1e310139fd2be77b54f39c7c64e1616fd35785ad
2cf3e738572a24733a96c3be1d798e95e2bff434d37d6f28cde31ce53df8e333
GET /pagead/drt/s?v=r20120211 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/pagead/html/r20220915/r20110914/zrt_lookup.html?fsb=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 145
x-xss-protection: 0
date: Mon, 19 Sep 2022 19:12:01 GMT
cache-control: public, max-age=3600
content-type: text/html; charset=UTF-8
age: 3330
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20220914/r20110914/elements/html/interstitial_ad_frame_fy2021.js
142.250.74.33200 OK 8.2 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220914/r20110914/elements/html/interstitial_ad_frame_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1831)
Hash e76efe12d42288eb43b9d82847a260c0
0653502591b0fe9b6740aa7a3bf2d444b06b8203
767ce5178ae6af7c0c778219204969cf0f61ae5316c9302fb2070d44ddd28c32
GET /pagead/js/r20220914/r20110914/elements/html/interstitial_ad_frame_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 8202
x-xss-protection: 0
date: Mon, 19 Sep 2022 14:42:42 GMT
expires: Mon, 03 Oct 2022 14:42:42 GMT
cache-control: public, max-age=1209600
etag: 12420716543898108158
content-type: text/javascript; charset=UTF-8
age: 19489
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
musicadda.net/discovery-plus-premium-coupon-code.html
172.105.33.133200 OK 7.4 kB URL HTTP/1.1 musicadda.net/discovery-plus-premium-coupon-code.html
IP 172.105.33.133:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1948), with CRLF line terminators
Hash d0701389951cfe9984535b9c8309a8fb
b0bae1054c6a7e39eb87d8159db9d1865a825f85
edf92f0aeff80fb5430891724c261879c52dd0a94eec78af62f02fd39acc4f43
GET /discovery-plus-premium-coupon-code.html HTTP/1.1
Host: musicadda.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: _ga=GA1.2.13037171.1663618030; _gid=GA1.2.1873138743.1663618030; _gat_gtag_UA_10193151_9=1; __gads=ID=40b5c5e8820b7768-224af50c27ce004c:T=1663618050:RT=1663618050:S=ALNI_MZJC5Bd90kylvweElUaIow7dmPvJA
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
last-modified: Sun, 18 Sep 2022 12:32:16 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 7394
date: Mon, 19 Sep 2022 20:07:31 GMT
server: LiteSpeed
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.33200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Mon, 19 Sep 2022 20:07:32 GMT
expires: Mon, 19 Sep 2022 20:07:32 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
unphionetor.com/vb?t=102123&bid=undefined&aid=undefined&tp=2956
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vb?t=102123&bid=undefined&aid=undefined&tp=2956
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /vb?t=102123&bid=undefined&aid=undefined&tp=2956 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://musicadda.net
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 19 Sep 2022 20:07:32 GMT
access-control-allow-origin: http://musicadda.net
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: ec3993c5b51d9ddf044c45876f3f8f8d
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
www.google.com/ads/measurement/l?ebcid=ALh7CaSKeCtgl0RU2J6BgUbMBbhquFlKzM64Lx6XLw3didUAYjSGGJ1cXVf9FSffjPH7w1x31FYFDGCz_69SaOSTWt1Gzykt5g
142.250.74.164204 No Content 0 B URL HTTP/2 www.google.com/ads/measurement/l?ebcid=ALh7CaSKeCtgl0RU2J6BgUbMBbhquFlKzM64Lx6XLw3didUAYjSGGJ1cXVf9FSffjPH7w1x31FYFDGCz_69SaOSTWt1Gzykt5g
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/measurement/l?ebcid=ALh7CaSKeCtgl0RU2J6BgUbMBbhquFlKzM64Lx6XLw3didUAYjSGGJ1cXVf9FSffjPH7w1x31FYFDGCz_69SaOSTWt1Gzykt5g HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 20:07:32 GMT
server: jumble_frontend_server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsv40OC6GJAoX7zu5HMZCZdwpvIJN1iJwdH8kw5rEnxLdLLWKplaL167RdYHEYjN39Tz2m7DWIdrGBGCf3P7c16BjPs4dVvqA4jHkZmehwOfbf2auVhA_PjZZ-ctENZhXJBChy4CXO0&sai=AMfl-YSigyj8Wlc_tEsvWpHbU_8RcPJr80FJqtRQsMJv-t7UxTLSLDI3bYY7anzgqf14pxK02FALMgSdXvyASoiIlFT7G1cwwMaGSfnunPRSgiZVs35kp0p_uxkZbpFks-A&sig=Cg0ArKJSzAocjAE35KPqEAE&id=lidartos&mcvt=573&p=0,0,250,970&mtos=573,573,573,573,573&tos=573,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=2231850486&rs=2&la=1&cr=0&vs=3&r=b&rst=1663618031006&rpt=704&ec=0&met=mue&wmsd=0
142.250.74.34200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsv40OC6GJAoX7zu5HMZCZdwpvIJN1iJwdH8kw5rEnxLdLLWKplaL167RdYHEYjN39Tz2m7DWIdrGBGCf3P7c16BjPs4dVvqA4jHkZmehwOfbf2auVhA_PjZZ-ctENZhXJBChy4CXO0&sai=AMfl-YSigyj8Wlc_tEsvWpHbU_8RcPJr80FJqtRQsMJv-t7UxTLSLDI3bYY7anzgqf14pxK02FALMgSdXvyASoiIlFT7G1cwwMaGSfnunPRSgiZVs35kp0p_uxkZbpFks-A&sig=Cg0ArKJSzAocjAE35KPqEAE&id=lidartos&mcvt=573&p=0,0,250,970&mtos=573,573,573,573,573&tos=573,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=2231850486&rs=2&la=1&cr=0&vs=3&r=b&rst=1663618031006&rpt=704&ec=0&met=mue&wmsd=0
IP 142.250.74.34:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjsv40OC6GJAoX7zu5HMZCZdwpvIJN1iJwdH8kw5rEnxLdLLWKplaL167RdYHEYjN39Tz2m7DWIdrGBGCf3P7c16BjPs4dVvqA4jHkZmehwOfbf2auVhA_PjZZ-ctENZhXJBChy4CXO0&sai=AMfl-YSigyj8Wlc_tEsvWpHbU_8RcPJr80FJqtRQsMJv-t7UxTLSLDI3bYY7anzgqf14pxK02FALMgSdXvyASoiIlFT7G1cwwMaGSfnunPRSgiZVs35kp0p_uxkZbpFks-A&sig=Cg0ArKJSzAocjAE35KPqEAE&id=lidartos&mcvt=573&p=0,0,250,970&mtos=573,573,573,573,573&tos=573,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=2231850486&rs=2&la=1&cr=0&vs=3&r=b&rst=1663618031006&rpt=704&ec=0&met=mue&wmsd=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Mon, 19 Sep 2022 20:07:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/interaction/?ai=C-oaAAswoY4yaKZbW6wTjiYuQDY7s-sBsgdigxMMQrff39ZwlEAEg1fXSFGDDhICAmBigAb2ZwP0CyAEBqAMByAPLBKoE7QFP0GfMHuw2lMA0bvUEeGMr6k1Ov6_YPn5yXDyOhvhmm2E0S9nbFnMCU1qmRXx7o5Nyyt86gMRe-jx8R4PkJ1gky4hjwdxYKaLYSFnpi8sbYW5f8HBatXg8uEYjbb0i4Qe9YMOI8AYFc5sIhfmph1Lyd-wq_vZmzMK9pguPdDUDIJS-cxbWzJe41C8s3AjWQ9tqWx3nCpEsXVBZ4O_MY0g2rechiRn-5i77Dz9vaVHJovwwgw2-ME2Pw41bpdX3bW6zDbZd5rdYlgyNJzZ9DCeX8NrxRlzHJPMhr5ZePzVWW-XRAHndP8HTsCXswPzABJv4uMqHBIAHq-a_ggGoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G6gHmgaoB_PRG6gHltgbqAeqm7ECqAffn7EC2AcB0ggSCIjhgBAQARgfMgOqggE6AoBAsQmY4BGKE8pBQYAKAZgLAcgLAbgMAdgTDdAVAZgWAfgWAYAXAQ&sigh=L-51lbcBv3c&cid=CAQSPgCsnQUxYyZhBxJgMdMEfypIeG956_ns6hFiqvBrzNsgAIikLQr3auTb8pWeAq8rETzRE_uzK7Dts_caiSCF&label=window_focus&gqid=AswoY8rHKIGEiQagrLbYAQ&qqid=CIyjz5fUofoCFRbrmgod48QC0g&bgload=1
142.250.74.34200 OK 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/interaction/?ai=C-oaAAswoY4yaKZbW6wTjiYuQDY7s-sBsgdigxMMQrff39ZwlEAEg1fXSFGDDhICAmBigAb2ZwP0CyAEBqAMByAPLBKoE7QFP0GfMHuw2lMA0bvUEeGMr6k1Ov6_YPn5yXDyOhvhmm2E0S9nbFnMCU1qmRXx7o5Nyyt86gMRe-jx8R4PkJ1gky4hjwdxYKaLYSFnpi8sbYW5f8HBatXg8uEYjbb0i4Qe9YMOI8AYFc5sIhfmph1Lyd-wq_vZmzMK9pguPdDUDIJS-cxbWzJe41C8s3AjWQ9tqWx3nCpEsXVBZ4O_MY0g2rechiRn-5i77Dz9vaVHJovwwgw2-ME2Pw41bpdX3bW6zDbZd5rdYlgyNJzZ9DCeX8NrxRlzHJPMhr5ZePzVWW-XRAHndP8HTsCXswPzABJv4uMqHBIAHq-a_ggGoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G6gHmgaoB_PRG6gHltgbqAeqm7ECqAffn7EC2AcB0ggSCIjhgBAQARgfMgOqggE6AoBAsQmY4BGKE8pBQYAKAZgLAcgLAbgMAdgTDdAVAZgWAfgWAYAXAQ&sigh=L-51lbcBv3c&cid=CAQSPgCsnQUxYyZhBxJgMdMEfypIeG956_ns6hFiqvBrzNsgAIikLQr3auTb8pWeAq8rETzRE_uzK7Dts_caiSCF&label=window_focus&gqid=AswoY8rHKIGEiQagrLbYAQ&qqid=CIyjz5fUofoCFRbrmgod48QC0g&bgload=1
IP 142.250.74.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/interaction/?ai=C-oaAAswoY4yaKZbW6wTjiYuQDY7s-sBsgdigxMMQrff39ZwlEAEg1fXSFGDDhICAmBigAb2ZwP0CyAEBqAMByAPLBKoE7QFP0GfMHuw2lMA0bvUEeGMr6k1Ov6_YPn5yXDyOhvhmm2E0S9nbFnMCU1qmRXx7o5Nyyt86gMRe-jx8R4PkJ1gky4hjwdxYKaLYSFnpi8sbYW5f8HBatXg8uEYjbb0i4Qe9YMOI8AYFc5sIhfmph1Lyd-wq_vZmzMK9pguPdDUDIJS-cxbWzJe41C8s3AjWQ9tqWx3nCpEsXVBZ4O_MY0g2rechiRn-5i77Dz9vaVHJovwwgw2-ME2Pw41bpdX3bW6zDbZd5rdYlgyNJzZ9DCeX8NrxRlzHJPMhr5ZePzVWW-XRAHndP8HTsCXswPzABJv4uMqHBIAHq-a_ggGoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G6gHmgaoB_PRG6gHltgbqAeqm7ECqAffn7EC2AcB0ggSCIjhgBAQARgfMgOqggE6AoBAsQmY4BGKE8pBQYAKAZgLAcgLAbgMAdgTDdAVAZgWAfgWAYAXAQ&sigh=L-51lbcBv3c&cid=CAQSPgCsnQUxYyZhBxJgMdMEfypIeG956_ns6hFiqvBrzNsgAIikLQr3auTb8pWeAq8rETzRE_uzK7Dts_caiSCF&label=window_focus&gqid=AswoY8rHKIGEiQagrLbYAQ&qqid=CIyjz5fUofoCFRbrmgod48QC0g&bgload=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/pagead/html/r20220915/r20110914/zrt_lookup.html?fsb=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 19 Sep 2022 20:07:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
access-control-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 20:22:32 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-10193151-9
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-10193151-9
IP 142.250.74.72:0
File type ASCII text, with very long lines (1720)
Hash 4e348b4f78dea4e34111d2fa57bd6b0d
92da8d4e1cde1102cb08bd618b0cf40c75a54144
064a86f0ecc4b23903330e931c11f723bdbeb75efb319980c6d43c3731728574
GET /gtag/js?id=UA-10193151-9 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 19 Sep 2022 20:07:32 GMT
expires: Mon, 19 Sep 2022 20:07:32 GMT
cache-control: private, max-age=900
last-modified: Mon, 19 Sep 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42360
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
www.youtube.com/s/player/a97e97de/www-player.css
172.217.21.174200 OK 49 kB URL HTTP/2 www.youtube.com/s/player/a97e97de/www-player.css
IP 172.217.21.174:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3a057d9fa48ad6b735e91c1f7fd7909a
e6a67ab82ccccef2ff9c2a9675549db921d86a4d
62ace094defa260545fd5dad61759df34fe0ae1a8dc1f0cf40a70d28a04ea905
GET /s/player/a97e97de/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/YC5q_PYBUgM?feature=oembed
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 49363
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 03:04:24 GMT
expires: Sat, 16 Sep 2023 03:04:24 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Sep 2022 21:54:27 GMT
content-type: text/css
age: 320588
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/YC5q_PYBUgM?feature=oembed
172.217.21.174200 OK 125 kB URL HTTP/2 www.youtube.com/embed/YC5q_PYBUgM?feature=oembed
IP 172.217.21.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (60309)
Size 125 kB (125438 bytes)
Hash 21dae42e6def2f3995d227e34995bbaa
c5ce69a51b65e442e39763b93acf95b11e2ff6be
7ff51a842c796b9da8b8505d1daa73e2ca9966f0a6ea91a9949e652cf9686b09
GET /embed/YC5q_PYBUgM?feature=oembed HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 19 Sep 2022 20:07:32 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=7UZoMyvHiYI; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=mF-0YuglShI; Domain=.youtube.com; Expires=Sat, 18-Mar-2023 20:07:32 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+977; expires=Wed, 18-Sep-2024 20:07:32 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
www.youtube.com/s/player/a97e97de/fetch-polyfill.vflset/fetch-polyfill.js
172.217.21.174200 OK 2.8 kB URL HTTP/2 www.youtube.com/s/player/a97e97de/fetch-polyfill.vflset/fetch-polyfill.js
IP 172.217.21.174:0
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (555)
Hash 80fe2d229007996c8397073b00755dc7
121f82c77bcf2a297a1085e3b092415c463fcafe
033dfa8941482c82d4f1aaa4a9172fb379b9e46a02d5b36297c5476bbbfdea2c
GET /s/player/a97e97de/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/YC5q_PYBUgM?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 03:04:24 GMT
expires: Sat, 16 Sep 2023 03:04:24 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Sep 2022 21:54:27 GMT
content-type: text/javascript
age: 320588
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/a97e97de/player_ias.vflset/en_US/base.js
172.217.21.174200 OK 590 kB URL HTTP/2 www.youtube.com/s/player/a97e97de/player_ias.vflset/en_US/base.js
IP 172.217.21.174:0
File type ASCII text, with very long lines (554)
Size 590 kB (589794 bytes)
Hash 2cf72d6908c8dfac7e8c8c5debe1bba0
69aef6123882a5df7a9460f8b69e16ef4312d757
b2beac7d81227b7916417f65959a82092770b53ab9f3add4d2603fbcf6838375
GET /s/player/a97e97de/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/YC5q_PYBUgM?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding, Origin
content-encoding: br
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 589794
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 03:14:52 GMT
expires: Sat, 16 Sep 2023 03:14:52 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Sep 2022 21:54:27 GMT
content-type: text/javascript
age: 319960
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Sep 2022 12:31:58 GMT
expires: Sun, 17 Sep 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 200134
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
my.rtmark.net/p.js?f=sync&lr=1&partner=2b4a318c7d51811737d134be11b9252db4de04c890239a24655f3447709d7072
139.45.195.8200 OK 697 B URL HTTP/2 my.rtmark.net/p.js?f=sync&lr=1&partner=2b4a318c7d51811737d134be11b9252db4de04c890239a24655f3447709d7072
IP 139.45.195.8:0
Hash 834289a61a27d692734d00a4d84a9550
b6c2a5849649b9174acade1069bd51dd4d60c1ed
144e83b6af30300bbb53e86d6addb54ed39042c3066840cbecbcbf025532dd11
GET /p.js?f=sync&lr=1&partner=2b4a318c7d51811737d134be11b9252db4de04c890239a24655f3447709d7072 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Cookie: ID=dd03108eaabe4ec3bcf413ff316f31fa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 20:07:32 GMT
content-type: text/javascript
content-length: 697
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
unphionetor.com/vctx?t=102123
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vctx?t=102123
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /vctx?t=102123 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://musicadda.net
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 19 Sep 2022 20:07:32 GMT
access-control-allow-origin: http://musicadda.net
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 2a769d82bc7403389278ba4cc9c2c3c0
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-5414070771498127
142.250.74.34200 OK 59 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-5414070771498127
IP 142.250.74.34:0
File type ASCII text, with very long lines (2903)
Hash 580e23ef40880224f1f68b91764e44f0
51484170133d562e2358d9fac1a28a0e97543a8c
66b7675f62ba2045cc9e921e64d24104024e044008bbd03c21baa85601283b0a
GET /pagead/js/adsbygoogle.js?client=ca-pub-5414070771498127 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://musicadda.net
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
date: Mon, 19 Sep 2022 20:07:32 GMT
expires: Mon, 19 Sep 2022 20:07:32 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 3618159284446970974
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 59114
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
172.217.21.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 172.217.21.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Mon, 19 Sep 2022 18:41:12 GMT
expires: Mon, 19 Sep 2022 20:41:12 GMT
cache-control: public, max-age=7200
age: 5180
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
propeller-tracking.com/fv.js?t=102123
139.45.197.240200 OK 6.6 kB URL HTTP/2 propeller-tracking.com/fv.js?t=102123
IP 139.45.197.240:0
File type ASCII text, with very long lines (5261)
Hash 5d7bf50b25dba5cd94d1b9edb9421c27
deb7d46b04856faf1c4f85a9679fce58cd4bfa91
adf95ecc7a754e09e3961ef75c69ec9d94ded24cdcb907fd58d407d6d084f541
GET /fv.js?t=102123 HTTP/1.1
Host: propeller-tracking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 20:07:32 GMT
content-type: text/javascript; charset=utf8
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 42fbb76695875441b27f0c5b797479bc
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209080104/show_ads_impl_with_ama_fy2021.js?client=ca-pub-5414070771498127&plah=musicadda.net&bust=31069643
142.250.74.34200 OK 126 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209080104/show_ads_impl_with_ama_fy2021.js?client=ca-pub-5414070771498127&plah=musicadda.net&bust=31069643
IP 142.250.74.34:0
File type ASCII text, with very long lines (4991)
Size 126 kB (125825 bytes)
Hash 66594d6e23e543067b849b15f660fcc5
73091ea0bca1d08f7747d7c866f91ea1bf1e39e5
c37a047231cde0314be1ddb6fa35f6b97cc41c0ed5db7abab15f56e6d086de43
GET /pagead/managed/js/adsense/m202209080104/show_ads_impl_with_ama_fy2021.js?client=ca-pub-5414070771498127&plah=musicadda.net&bust=31069643 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Mon, 19 Sep 2022 20:07:32 GMT
expires: Mon, 19 Sep 2022 20:07:32 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 1860077093776075824
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 125825
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
musicadda.net/favicon.ico
172.105.33.133200 OK 518 B URL HTTP/1.1 musicadda.net/favicon.ico
IP 172.105.33.133:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7fbe97e07630227d053408a4ebd4e23b
22a5ddc3917f286af417be2eaa9422b5f68d4676
e3f776b3c5fe7ed2691878741de58d63c8fc9c69608d766e7d1b38839abbeb27
GET /favicon.ico HTTP/1.1
Host: musicadda.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://musicadda.net/discovery-plus-premium-coupon-code.html
Cookie: _ga=GA1.2.13037171.1663618030; _gid=GA1.2.1873138743.1663618030; _gat_gtag_UA_10193151_9=1; __gads=ID=40b5c5e8820b7768-224af50c27ce004c:T=1663618050:RT=1663618050:S=ALNI_MZJC5Bd90kylvweElUaIow7dmPvJA
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Mon, 26 Sep 2022 20:07:32 GMT
content-type: image/x-icon
last-modified: Tue, 05 Oct 2021 10:40:39 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 518
date: Mon, 19 Sep 2022 20:07:32 GMT
server: LiteSpeed
pagead2.googlesyndication.com/pagead/gen_204?id=ach_evt&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&tn=DIV&id=side_left_ad&ign=false&pw=1280&ph=939&x=0&y=0
142.250.74.34204 No Content 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/gen_204?id=ach_evt&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&tn=DIV&id=side_left_ad&ign=false&pw=1280&ph=939&x=0&y=0
IP 142.250.74.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/gen_204?id=ach_evt&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&tn=DIV&id=side_left_ad&ign=false&pw=1280&ph=939&x=0&y=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 19 Sep 2022 20:07:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/gen_204?id=ach_evt&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&tn=DIV&cls=stickyads1&ign=false&pw=1280&ph=939&x=0&y=869.4
142.250.74.34204 No Content 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/gen_204?id=ach_evt&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&tn=DIV&cls=stickyads1&ign=false&pw=1280&ph=939&x=0&y=869.4
IP 142.250.74.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/gen_204?id=ach_evt&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&tn=DIV&cls=stickyads1&ign=false&pw=1280&ph=939&x=0&y=869.4 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 19 Sep 2022 20:07:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=musicadda.net
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=musicadda.net
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=musicadda.net HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 20:07:32 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
partner.googleadservices.com/gampad/cookie.js?domain=musicadda.net&callback=_gfp_s_&client=ca-pub-5414070771498127&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA
172.217.21.162200 OK 32 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=musicadda.net&callback=_gfp_s_&client=ca-pub-5414070771498127&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA
IP 172.217.21.162:0
File type ASCII text, with no line terminators
Hash e003723bb43e8e216426c5cd897b3a9f
85f6260d04937794cddbf58b46caa5dd7a7dd489
ebb110f380b85f1eadd52e180b12c2ad3c10bba0edddda63a3a79d4ca3673b78
GET /gampad/cookie.js?domain=musicadda.net&callback=_gfp_s_&client=ca-pub-5414070771498127&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 20:07:32 GMT
server: cafe
cache-control: private
content-length: 32
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
googleads.g.doubleclick.net/pagead/id
142.250.74.34302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Mon, 19 Sep 2022 20:07:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.doubleclick.net/instream/ad_status.js
216.58.207.230200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 216.58.207.230:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 19:59:23 GMT
expires: Mon, 19 Sep 2022 20:14:23 GMT
cache-control: public, max-age=900
age: 489
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
googleads.g.doubleclick.net/pagead/id?slf_rd=1
142.250.74.34200 OK 120 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id?slf_rd=1
IP 142.250.74.34:0
Hash 8a63e37369d333bc47e62d1430b6aa75
fa5105c5351a172c09a4a7f3abf8f355e1361893
af87b9214387c549f960e0eb9b7f638805991201056cbb8f93375463d0dc69a6
GET /pagead/id?slf_rd=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Referer: https://www.youtube.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
content-type: application/json; charset=UTF-8
date: Mon, 19 Sep 2022 20:07:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 120
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=musicadda.net
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=musicadda.net
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=musicadda.net HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 20:07:32 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/a97e97de/player_ias.vflset/en_US/remote.js
172.217.21.174200 OK 38 kB URL HTTP/2 www.youtube.com/s/player/a97e97de/player_ias.vflset/en_US/remote.js
IP 172.217.21.174:0
File type ASCII text, with very long lines (550)
Hash 9af02fa78e7ad8ebb5ddc0a18fb9a3a1
6cca5fe94893d3ef305bb69279d5518a051c243d
35d686eb0b536e96cc741a63ed9c147ee2d3efd639589c261ae3a99d08c10e7d
GET /s/player/a97e97de/player_ias.vflset/en_US/remote.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/YC5q_PYBUgM?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 37691
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 03:14:52 GMT
expires: Sat, 16 Sep 2023 03:14:52 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Sep 2022 21:54:27 GMT
content-type: text/javascript
age: 319960
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.138200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.138:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 88e9ae18f9774afceccf36a8fef89357
07066407ae12786c789e434cb31c7166f0064e19
04fa95ceb32188fb388e2335804c066f0bfac8f62ba6b8bf1e2336490543003a
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Mon, 19 Sep 2022 20:07:32 GMT
server: ESF
cache-control: private
content-length: 30829
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/a97e97de/player_ias.vflset/en_US/embed.js
172.217.21.174200 OK 8.4 kB URL HTTP/2 www.youtube.com/s/player/a97e97de/player_ias.vflset/en_US/embed.js
IP 172.217.21.174:0
File type ASCII text, with very long lines (3391)
Hash 747d50116d93625a3b59f044d443e43e
4849d87e47e1859103ec9041b7f7c34912a9f3f6
727815dbe60de44abc22ab3af1d1cd4fa2cc83721573f62b809b8a2a78ecdd08
GET /s/player/a97e97de/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/YC5q_PYBUgM?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 8370
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 03:14:52 GMT
expires: Sat, 16 Sep 2023 03:14:52 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Sep 2022 21:54:27 GMT
content-type: text/javascript
age: 319960
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/js/th/0Q0sPaTf27KkVV0qBrYI7cmJeSJkpG4CF1zVddAZEjs.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/0Q0sPaTf27KkVV0qBrYI7cmJeSJkpG4CF1zVddAZEjs.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (36110)
Hash d348ea7c67cf70cc27add8ec15920c5f
46b2db74425f5c6c10c69831277b83c76c8c24b8
e9198b139add4e4683e04549366c63b57000c4e9d719c0e5820124d63d0fccff
GET /js/th/0Q0sPaTf27KkVV0qBrYI7cmJeSJkpG4CF1zVddAZEjs.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14308
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 05:09:26 GMT
expires: Thu, 14 Sep 2023 05:09:26 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 13 Sep 2022 11:00:00 GMT
content-type: text/javascript
age: 485886
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.ytimg.com/vi_webp/YC5q_PYBUgM/maxresdefault.webp
216.58.207.246200 OK 52 kB URL HTTP/2 i.ytimg.com/vi_webp/YC5q_PYBUgM/maxresdefault.webp
IP 216.58.207.246:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ffff7aec0d84da2f77ca37ebca11d976
3dc8ba322eb87b8233a7680cd4153356925529bb
222b38319204f7b4f45c30b42601f26f7d53768645674fc0736be2629bc03c8d
GET /vi_webp/YC5q_PYBUgM/maxresdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 52270
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 20:07:30 GMT
expires: Mon, 19 Sep 2022 22:07:30 GMT
cache-control: public, max-age=7200
age: 3
etag: "1609638413"
content-type: image/webp
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
yt3.ggpht.com/ytc/AMLnZu8bsu05GxMz5jmQzx9Xp7a1tHyWkHpKK-49a8M1=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 3.9 kB URL HTTP/2 yt3.ggpht.com/ytc/AMLnZu8bsu05GxMz5jmQzx9Xp7a1tHyWkHpKK-49a8M1=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash 3586c7226022a1a763d81e391b25bc2d
77a89cb0ba9465ce4f1c8e1bd702598ce95815e7
5e8fb9fafd0abfafd523eeb90dfe362fdcac3a75ea079e7f1539b424ba5f9f5e
GET /ytc/AMLnZu8bsu05GxMz5jmQzx9Xp7a1tHyWkHpKK-49a8M1=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 3947
x-xss-protection: 0
date: Mon, 19 Sep 2022 17:09:58 GMT
expires: Sun, 31 Jul 2022 16:58:44 GMT
cache-control: public, max-age=86400, no-transform
age: 10655
etag: "vd"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
adservice.google.com/adsid/integrator.js?domain=musicadda.net
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=musicadda.net
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=musicadda.net HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 20:07:33 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
my.rtmark.net/img.gif?f=sync&partner=2b4a318c7d51811737d134be11b9252db4de04c890239a24655f3447709d7072&ttl=&rurl=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded
139.45.195.8200 OK 43 B URL HTTP/2 my.rtmark.net/img.gif?f=sync&partner=2b4a318c7d51811737d134be11b9252db4de04c890239a24655f3447709d7072&ttl=&rurl=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded
IP 139.45.195.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=sync&partner=2b4a318c7d51811737d134be11b9252db4de04c890239a24655f3447709d7072&ttl=&rurl=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Cookie: ID=dd03108eaabe4ec3bcf413ff316f31fa
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 20:07:33 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=dd03108eaabe4ec3bcf413ff316f31fa; expires=Tue, 19 Sep 2023 20:07:33 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&slotname=6657338344&adk=654493025&adf=4123637310&pi=t.ma~as.6657338344&w=728&lmt=1663504336&psa=1&format=728x90&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&wgl=1&dt=1663618032879&bpp=3&bdt=514&idt=329&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0&nras=1&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=540&ady=0&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CleE%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=2&uci=a!2&fsb=1&xpc=ZeNq6VSniO&p=http%3A//musicadda.net&dtd=422
142.250.74.34200 OK 211 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&slotname=6657338344&adk=654493025&adf=4123637310&pi=t.ma~as.6657338344&w=728&lmt=1663504336&psa=1&format=728x90&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&wgl=1&dt=1663618032879&bpp=3&bdt=514&idt=329&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0&nras=1&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=540&ady=0&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CleE%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=2&uci=a!2&fsb=1&xpc=ZeNq6VSniO&p=http%3A//musicadda.net&dtd=422
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (436), with no line terminators
Hash 54b6e08b6aa5f5db6617a99d60f402f3
484d87f8a0af522473131178f2f002457d0e636f
de25e4b292eff4b7f3efd350d1586cf03e8451bd346f43b8d04f13543a73bccf
GET /pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&slotname=6657338344&adk=654493025&adf=4123637310&pi=t.ma~as.6657338344&w=728&lmt=1663504336&psa=1&format=728x90&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&wgl=1&dt=1663618032879&bpp=3&bdt=514&idt=329&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0&nras=1&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=540&ady=0&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CleE%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=2&uci=a!2&fsb=1&xpc=ZeNq6VSniO&p=http%3A//musicadda.net&dtd=422 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 19 Sep 2022 20:07:33 GMT
server: cafe
content-length: 211
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 20:22:32 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 20:07:33 GMT
cache-control: private
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&adk=1812271804&adf=3025194257&lmt=1663504336&plat=1%3A16777216%2C2%3A16777216%2C9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32&format=0x0&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&ea=0&pra=5&wgl=1&easpi=0&asntp=0&asntpv=0&asntpl=0&asntpm=0&asntpc=0&asna=5&asnd=5&asnp=5&asns=5&asmat=1&asptt=-1&dt=1663618032862&bpp=17&bdt=497&idt=207&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&nras=1&correlator=8495883565332&frm=20&pv=2&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=-12245933&ady=-12245933&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=2&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=23&ifi=1&uci=a!1&fsb=1&dtd=313
142.250.74.34200 OK 44 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&adk=1812271804&adf=3025194257&lmt=1663504336&plat=1%3A16777216%2C2%3A16777216%2C9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32&format=0x0&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&ea=0&pra=5&wgl=1&easpi=0&asntp=0&asntpv=0&asntpl=0&asntpm=0&asntpc=0&asna=5&asnd=5&asnp=5&asns=5&asmat=1&asptt=-1&dt=1663618032862&bpp=17&bdt=497&idt=207&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&nras=1&correlator=8495883565332&frm=20&pv=2&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=-12245933&ady=-12245933&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=2&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=23&ifi=1&uci=a!1&fsb=1&dtd=313
IP 142.250.74.34:0
File type HTML document, ASCII text, with very long lines (65536), with no line terminators
Hash 5235c141ae644a191ef28411f598a2a4
577cfaa675dd3070271582e476711ea1b96cff49
83733df3306fd83f9b6ebe1b26e0e9f6b81c115d20e807d8ac06adbc891b547d
GET /pagead/ads?client=ca-pub-5414070771498127&output=html&adk=1812271804&adf=3025194257&lmt=1663504336&plat=1%3A16777216%2C2%3A16777216%2C9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32&format=0x0&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&ea=0&pra=5&wgl=1&easpi=0&asntp=0&asntpv=0&asntpl=0&asntpm=0&asntpc=0&asna=5&asnd=5&asnp=5&asns=5&asmat=1&asptt=-1&dt=1663618032862&bpp=17&bdt=497&idt=207&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&nras=1&correlator=8495883565332&frm=20&pv=2&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=-12245933&ady=-12245933&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=2&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=23&ifi=1&uci=a!1&fsb=1&dtd=313 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 19 Sep 2022 20:07:33 GMT
server: cafe
content-length: 44158
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 20:22:32 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 20:07:33 GMT
cache-control: private
X-Firefox-Spdy: h2
www.youtube.com/generate_204?pCt_eg
172.217.21.174204 No Content 0 B URL HTTP/2 www.youtube.com/generate_204?pCt_eg
IP 172.217.21.174:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?pCt_eg HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/YC5q_PYBUgM?feature=oembed
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Mon, 19 Sep 2022 20:07:33 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=musicadda.net
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=musicadda.net
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=musicadda.net HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 20:07:33 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209080104/reactive_library_fy2021.js?bust=31069643
142.250.74.34200 OK 55 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209080104/reactive_library_fy2021.js?bust=31069643
IP 142.250.74.34:0
File type ASCII text, with very long lines (3461)
Hash 3606ba456f1aeb30ac0faa7c4b1b1203
d336f402fa4b60251b5278edcdcc69bb32631f23
f24924a5ffc34900b86477c95e67097e6c09ce79a8ef3628ac4cf8dfe8f0e814
GET /pagead/managed/js/adsense/m202209080104/reactive_library_fy2021.js?bust=31069643 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Mon, 19 Sep 2022 20:07:33 GMT
expires: Mon, 19 Sep 2022 20:07:33 GMT
cache-control: private, max-age=1209600
content-type: text/javascript; charset=UTF-8
etag: 14886902125935902414
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 54634
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&slotname=6657338344&adk=362161504&adf=3262010199&pi=t.ma~as.6657338344&w=728&lmt=1663504336&psa=1&format=728x90&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&wgl=1&dt=1663618032882&bpp=2&bdt=516&idt=485&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90&nras=1&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=0&ady=96&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7Co%7CleE%7C&abl=NS&pfx=0&fu=0&bc=23&ifi=3&uci=a!3&fsb=1&xpc=YLTeI9zCnY&p=http%3A//musicadda.net&dtd=632
142.250.74.34200 OK 211 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&slotname=6657338344&adk=362161504&adf=3262010199&pi=t.ma~as.6657338344&w=728&lmt=1663504336&psa=1&format=728x90&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&wgl=1&dt=1663618032882&bpp=2&bdt=516&idt=485&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90&nras=1&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=0&ady=96&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7Co%7CleE%7C&abl=NS&pfx=0&fu=0&bc=23&ifi=3&uci=a!3&fsb=1&xpc=YLTeI9zCnY&p=http%3A//musicadda.net&dtd=632
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (436), with no line terminators
Hash 96aa075fbb64caaa050045c7fc8f85bd
7558c92e810f41a18ec753c46e73e7c50ff331b1
4a5711b1235df3d0a53c993c6d87e68f47ce9d234a3ef408738c8d62d40a7c58
GET /pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&slotname=6657338344&adk=362161504&adf=3262010199&pi=t.ma~as.6657338344&w=728&lmt=1663504336&psa=1&format=728x90&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&wgl=1&dt=1663618032882&bpp=2&bdt=516&idt=485&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90&nras=1&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=0&ady=96&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7Co%7CleE%7C&abl=NS&pfx=0&fu=0&bc=23&ifi=3&uci=a!3&fsb=1&xpc=YLTeI9zCnY&p=http%3A//musicadda.net&dtd=632 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 19 Sep 2022 20:07:33 GMT
server: cafe
content-length: 211
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 20:22:33 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 20:07:33 GMT
cache-control: private
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=musicadda.net
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=musicadda.net
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=musicadda.net HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 20:07:33 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/html/r20220915/r20110914/zrt_lookup.html?fsb=1
142.250.74.34200 OK 4.4 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20220915/r20110914/zrt_lookup.html?fsb=1
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1731)
Hash 682bf699cccbc0ff817e1fcb7b95262a
11ad3edf0008f52b733c2d6d7199e1f052318d58
bd42f773d589f85cf6884d7893746d5d4e0c082f78e1c80511cf3aefa1c69a0f
GET /pagead/html/r20220915/r20110914/zrt_lookup.html?fsb=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 4420
x-xss-protection: 0
date: Mon, 19 Sep 2022 13:49:50 GMT
expires: Mon, 03 Oct 2022 13:49:50 GMT
cache-control: public, max-age=1209600
age: 22663
etag: 9671129459699598864
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=musicadda.net
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=musicadda.net
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=musicadda.net HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 20:07:33 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=250&slotname=4233698444&adk=1667993210&adf=3256513307&pi=t.ma~as.4233698444&w=300&lmt=1663504336&psa=1&format=300x250&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&wgl=1&dt=1663618032892&bpp=2&bdt=527&idt=713&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90&nras=1&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=942&ady=768&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=d%7Co%7CeE%7Cp&abl=XS&pfx=0&fu=0&bc=23&ifi=7&uci=a!7&fsb=1&xpc=eBjh8QJEUi&p=http%3A//musicadda.net&dtd=767
142.250.74.34200 OK 212 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=250&slotname=4233698444&adk=1667993210&adf=3256513307&pi=t.ma~as.4233698444&w=300&lmt=1663504336&psa=1&format=300x250&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&wgl=1&dt=1663618032892&bpp=2&bdt=527&idt=713&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90&nras=1&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=942&ady=768&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=d%7Co%7CeE%7Cp&abl=XS&pfx=0&fu=0&bc=23&ifi=7&uci=a!7&fsb=1&xpc=eBjh8QJEUi&p=http%3A//musicadda.net&dtd=767
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (436), with no line terminators
Hash 884f9f7886f857d4caaa69ba881ce8ee
89e7d8fa1378754bf7e6322a8ca875288fd3fa40
7ad6206008a1247ca7152c4e59a5f40f6ac5596b150735d6ce813489ee209a48
GET /pagead/ads?client=ca-pub-5414070771498127&output=html&h=250&slotname=4233698444&adk=1667993210&adf=3256513307&pi=t.ma~as.4233698444&w=300&lmt=1663504336&psa=1&format=300x250&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&wgl=1&dt=1663618032892&bpp=2&bdt=527&idt=713&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90&nras=1&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=942&ady=768&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=d%7Co%7CeE%7Cp&abl=XS&pfx=0&fu=0&bc=23&ifi=7&uci=a!7&fsb=1&xpc=eBjh8QJEUi&p=http%3A//musicadda.net&dtd=767 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 19 Sep 2022 20:07:33 GMT
server: cafe
content-length: 212
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 20:22:33 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 20:07:33 GMT
cache-control: private
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&slotname=6657338344&adk=2600970194&adf=2841456516&pi=t.ma~as.6657338344&w=728&lmt=1663504336&psa=1&format=728x90&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&wgl=1&dt=1663618032892&bpp=2&bdt=528&idt=698&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90&nras=1&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=64&ady=792&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=d%7Co%7CeE%7Cp&abl=XS&pfx=0&fu=0&bc=23&ifi=6&uci=a!6&fsb=1&xpc=adf9orAdYa&p=http%3A//musicadda.net&dtd=762
142.250.74.34200 OK 213 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&slotname=6657338344&adk=2600970194&adf=2841456516&pi=t.ma~as.6657338344&w=728&lmt=1663504336&psa=1&format=728x90&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&wgl=1&dt=1663618032892&bpp=2&bdt=528&idt=698&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90&nras=1&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=64&ady=792&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=d%7Co%7CeE%7Cp&abl=XS&pfx=0&fu=0&bc=23&ifi=6&uci=a!6&fsb=1&xpc=adf9orAdYa&p=http%3A//musicadda.net&dtd=762
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (436), with no line terminators
Hash 11acfece2a3b298234d4862f877638c5
171aac445970cb280a1e4ba27abbe45dfe185b0b
187fba84197ef64d826a9933d3a67b17863e88a159a02041463322b85004de1e
GET /pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&slotname=6657338344&adk=2600970194&adf=2841456516&pi=t.ma~as.6657338344&w=728&lmt=1663504336&psa=1&format=728x90&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&wgl=1&dt=1663618032892&bpp=2&bdt=528&idt=698&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90&nras=1&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=64&ady=792&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=d%7Co%7CeE%7Cp&abl=XS&pfx=0&fu=0&bc=23&ifi=6&uci=a!6&fsb=1&xpc=adf9orAdYa&p=http%3A//musicadda.net&dtd=762 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 19 Sep 2022 20:07:33 GMT
server: cafe
content-length: 213
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 20:22:33 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 20:07:33 GMT
cache-control: private
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&slotname=6657338344&adk=1934781201&adf=3671705910&pi=t.ma~as.6657338344&w=728&lmt=1663504336&psa=1&format=728x90&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&wgl=1&dt=1663618032892&bpp=2&bdt=526&idt=691&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90%2C728x90%2C970x250&nras=1&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=270&ady=621&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7Co%7CeE%7C&abl=NS&pfx=0&fu=0&bc=23&ifi=5&uci=a!5&fsb=1&xpc=sy8IqOM7Su&p=http%3A//musicadda.net&dtd=757
142.250.74.34200 OK 212 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&slotname=6657338344&adk=1934781201&adf=3671705910&pi=t.ma~as.6657338344&w=728&lmt=1663504336&psa=1&format=728x90&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&wgl=1&dt=1663618032892&bpp=2&bdt=526&idt=691&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90%2C728x90%2C970x250&nras=1&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=270&ady=621&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7Co%7CeE%7C&abl=NS&pfx=0&fu=0&bc=23&ifi=5&uci=a!5&fsb=1&xpc=sy8IqOM7Su&p=http%3A//musicadda.net&dtd=757
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (436), with no line terminators
Hash 1aabc6f2819cfb6db61e23009ff1c2c4
fb27d465d75479780518f59f190c2160cf2fc9f8
2c3ad2b05d7b325c78383aec73dd9d20f0ccc0cb1733cef47f686825ca42e8d8
GET /pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&slotname=6657338344&adk=1934781201&adf=3671705910&pi=t.ma~as.6657338344&w=728&lmt=1663504336&psa=1&format=728x90&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&wgl=1&dt=1663618032892&bpp=2&bdt=526&idt=691&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90%2C728x90%2C970x250&nras=1&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=270&ady=621&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7Co%7CeE%7C&abl=NS&pfx=0&fu=0&bc=23&ifi=5&uci=a!5&fsb=1&xpc=sy8IqOM7Su&p=http%3A//musicadda.net&dtd=757 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 19 Sep 2022 20:07:33 GMT
server: cafe
content-length: 212
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 20:22:33 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 20:07:33 GMT
cache-control: private
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20220914/r20110914/elements/html/interstitial_ad_frame_fy2021.js
142.250.74.33200 OK 8.2 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220914/r20110914/elements/html/interstitial_ad_frame_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1831)
Hash e76efe12d42288eb43b9d82847a260c0
0653502591b0fe9b6740aa7a3bf2d444b06b8203
767ce5178ae6af7c0c778219204969cf0f61ae5316c9302fb2070d44ddd28c32
GET /pagead/js/r20220914/r20110914/elements/html/interstitial_ad_frame_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 8202
x-xss-protection: 0
date: Mon, 19 Sep 2022 14:42:42 GMT
expires: Mon, 03 Oct 2022 14:42:42 GMT
cache-control: public, max-age=1209600
etag: 12420716543898108158
content-type: text/javascript; charset=UTF-8
age: 19491
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=600&twa=1&slotname=9486025123&adk=744558945&adf=782179303&pi=t.ma~as.9486025123&w=155&fwrn=4&fwrnh=100&lmt=1663504336&psa=1&format=155x600&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&fwr=0&rh=600&rw=155&wgl=1&dt=1663618032895&bpp=2&bdt=530&idt=825&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C300x250%2C1268x939&nras=2&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=1113&ady=32&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=23&ifi=8&uci=a!8&fsb=1&xpc=VvYColnZzY&p=http%3A//musicadda.net&dtd=841
142.250.74.34200 OK 214 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=600&twa=1&slotname=9486025123&adk=744558945&adf=782179303&pi=t.ma~as.9486025123&w=155&fwrn=4&fwrnh=100&lmt=1663504336&psa=1&format=155x600&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&fwr=0&rh=600&rw=155&wgl=1&dt=1663618032895&bpp=2&bdt=530&idt=825&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C300x250%2C1268x939&nras=2&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=1113&ady=32&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=23&ifi=8&uci=a!8&fsb=1&xpc=VvYColnZzY&p=http%3A//musicadda.net&dtd=841
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (436), with no line terminators
Hash 982094df497529b59a09e31021a6ec4e
5611c83e864e1ffeb38f10daafdee3d23bebf8b4
eb6ed033c351db6d56abd38315b90344080348a25be0a0055e1390b11714fec5
GET /pagead/ads?client=ca-pub-5414070771498127&output=html&h=600&twa=1&slotname=9486025123&adk=744558945&adf=782179303&pi=t.ma~as.9486025123&w=155&fwrn=4&fwrnh=100&lmt=1663504336&psa=1&format=155x600&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&fwr=0&rh=600&rw=155&wgl=1&dt=1663618032895&bpp=2&bdt=530&idt=825&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C300x250%2C1268x939&nras=2&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=1113&ady=32&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=23&ifi=8&uci=a!8&fsb=1&xpc=VvYColnZzY&p=http%3A//musicadda.net&dtd=841 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 19 Sep 2022 20:07:33 GMT
server: cafe
content-length: 214
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 20:22:33 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 20:07:33 GMT
cache-control: private
X-Firefox-Spdy: h2
www.gstatic.com/images/icons/material/system/2x/feedback_grey600_24dp.png
142.250.74.163200 OK 205 B URL HTTP/2 www.gstatic.com/images/icons/material/system/2x/feedback_grey600_24dp.png
IP 142.250.74.163:0
File type PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Hash 4087858e2c9db9aa8f6a840aedcfb533
d1ffe861da6bd0e95fd1a365b0c3d3ceb6cd58a3
4d45982f2dc34f36c9045ee46a75a1943666bb7fd64e103cac8c7429e7012840
GET /images/icons/material/system/2x/feedback_grey600_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 205
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 18 Sep 2022 22:47:38 GMT
expires: Mon, 18 Sep 2023 22:47:38 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/png
age: 76795
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/images/icons/material/system/2x/settings_grey600_24dp.png
142.250.74.163200 OK 604 B URL HTTP/2 www.gstatic.com/images/icons/material/system/2x/settings_grey600_24dp.png
IP 142.250.74.163:0
File type PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Hash 7bd42e5a35b5fb3ff852d6ea9191ca83
8a141eb392a05a2dea3dcd83b97940ef70a81ebc
5c4a713ee4250851232be9f9f68d41586be39b299528cfc7266e0b0e7e582e1b
GET /images/icons/material/system/2x/settings_grey600_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 604
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 18 Sep 2022 19:14:49 GMT
expires: Mon, 18 Sep 2023 19:14:49 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/png
age: 89564
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/measurement/l?ebcid=ALh7CaTFAxT9ToJaB9lTZg5AcIRaEDwK8xhrdjo9lpPEvXuIbi2oZ5DhLfH-DOJvX005Ufkf-wU7skRJnQzDPeaymQMxlDsLXw
142.250.74.164204 No Content 0 B URL HTTP/2 www.google.com/ads/measurement/l?ebcid=ALh7CaTFAxT9ToJaB9lTZg5AcIRaEDwK8xhrdjo9lpPEvXuIbi2oZ5DhLfH-DOJvX005Ufkf-wU7skRJnQzDPeaymQMxlDsLXw
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/measurement/l?ebcid=ALh7CaTFAxT9ToJaB9lTZg5AcIRaEDwK8xhrdjo9lpPEvXuIbi2oZ5DhLfH-DOJvX005Ufkf-wU7skRJnQzDPeaymQMxlDsLXw HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 20:07:33 GMT
server: jumble_frontend_server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=600&slotname=9486025123&adk=1895656336&adf=3222070930&pi=t.ma~as.9486025123&w=160&lmt=1663504336&psa=1&format=160x600&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&wgl=1&dt=1663618032897&bpp=3&bdt=532&idt=860&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C300x250%2C1268x939%2C155x600&nras=2&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=0&ady=32&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=23&ifi=9&uci=a!9&fsb=1&xpc=8HCvJqsSAP&p=http%3A//musicadda.net&dtd=909
142.250.74.34200 OK 212 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=600&slotname=9486025123&adk=1895656336&adf=3222070930&pi=t.ma~as.9486025123&w=160&lmt=1663504336&psa=1&format=160x600&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&wgl=1&dt=1663618032897&bpp=3&bdt=532&idt=860&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C300x250%2C1268x939%2C155x600&nras=2&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=0&ady=32&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=23&ifi=9&uci=a!9&fsb=1&xpc=8HCvJqsSAP&p=http%3A//musicadda.net&dtd=909
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (436), with no line terminators
Hash 162e3a1c383b02354491dbc421924d21
3b5ac4bba39105d1171e84ab2a620c46d4769d00
c84c1f776034608b24e43bb89e30605848e8aa28154ab7a8b6e00a0d06fd3e01
GET /pagead/ads?client=ca-pub-5414070771498127&output=html&h=600&slotname=9486025123&adk=1895656336&adf=3222070930&pi=t.ma~as.9486025123&w=160&lmt=1663504336&psa=1&format=160x600&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&wgl=1&dt=1663618032897&bpp=3&bdt=532&idt=860&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C300x250%2C1268x939%2C155x600&nras=2&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=0&ady=32&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=23&ifi=9&uci=a!9&fsb=1&xpc=8HCvJqsSAP&p=http%3A//musicadda.net&dtd=909 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 19 Sep 2022 20:07:33 GMT
server: cafe
content-length: 212
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 20:22:33 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 20:07:33 GMT
cache-control: private
X-Firefox-Spdy: h2
www.google.com/pagead/drt/ui
142.250.74.164302 Found 0 B URL HTTP/2 www.google.com/pagead/drt/ui
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/drt/ui HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/drt/si?st=NO_DATA
cache-control: private
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 20:07:33 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=250&slotname=8430905272&adk=2231850486&adf=3442147624&pi=t.ma~as.8430905272&w=970&lmt=1663504336&psa=1&format=970x250&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&wgl=1&dt=1663618032892&bpp=2&bdt=527&idt=686&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90%2C728x90&nras=1&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=149&ady=293&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7Co%7CeE%7C&abl=NS&pfx=0&fu=0&bc=23&ifi=4&uci=a!4&fsb=1&xpc=hWqPE782Bl&p=http%3A//musicadda.net&dtd=750
142.250.74.34200 OK 7.5 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=250&slotname=8430905272&adk=2231850486&adf=3442147624&pi=t.ma~as.8430905272&w=970&lmt=1663504336&psa=1&format=970x250&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&wgl=1&dt=1663618032892&bpp=2&bdt=527&idt=686&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90%2C728x90&nras=1&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=149&ady=293&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7Co%7CeE%7C&abl=NS&pfx=0&fu=0&bc=23&ifi=4&uci=a!4&fsb=1&xpc=hWqPE782Bl&p=http%3A//musicadda.net&dtd=750
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13167), with no line terminators
Hash 1f69cfd0be0e2818411911e0c0143164
40a0d2b8ea631cd0d9a8a517f698900e7ca31bd8
43f5b43ecf43b466b5ee90116b0d3e073097faa60f0a5d593ec7b0fdd76ab168
GET /pagead/ads?client=ca-pub-5414070771498127&output=html&h=250&slotname=8430905272&adk=2231850486&adf=3442147624&pi=t.ma~as.8430905272&w=970&lmt=1663504336&psa=1&format=970x250&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&wgl=1&dt=1663618032892&bpp=2&bdt=527&idt=686&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90%2C728x90&nras=1&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=149&ady=293&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7Co%7CeE%7C&abl=NS&pfx=0&fu=0&bc=23&ifi=4&uci=a!4&fsb=1&xpc=hWqPE782Bl&p=http%3A//musicadda.net&dtd=750 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 19 Sep 2022 20:07:33 GMT
server: cafe
content-length: 7486
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 20:22:33 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 20:07:33 GMT
cache-control: private
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/drt/si?st=NO_DATA
142.250.74.34200 OK 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/drt/si?st=NO_DATA
IP 142.250.74.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/drt/si?st=NO_DATA HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 20:07:33 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: DSID=NO_DATA; expires=Mon, 19-Sep-2022 21:07:33 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 20:22:33 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 20:07:33 GMT
cache-control: private
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=musicadda.net
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=musicadda.net
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=musicadda.net HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 20:07:33 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/qs_click_protection_fy2021.js
142.250.74.33200 OK 7.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/qs_click_protection_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1494)
Hash c6ef0dcf21169e17aaffa059d38c2d49
2be7fa5127d37589157427293c2acededdbc009c
a2734b2074e51f52a7e9c604170acd71b311146d99d1640192f015f070b7df7f
GET /pagead/js/r20220914/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 7552
x-xss-protection: 0
date: Mon, 19 Sep 2022 19:38:29 GMT
expires: Mon, 03 Oct 2022 19:38:29 GMT
cache-control: public, max-age=1209600
etag: 1588701280721430806
content-type: text/javascript; charset=UTF-8
age: 1744
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/xbbe/pixel?d=CPjl5QIQs8-r8AEYnLWLyAEwAQ&v=APEucNUHaXtXkuMimy8JWKllFDpUy0QWmaPdvcaLzCAvA4jlB9JYXVeSLA3mbSaOwDU1lPgTBNgqU7en2KzD8SYisgEsNi89O2ADj0XvYf7-Zog5iux2MCXED64E78cAvJSYPFPwyrPZF34PG3CxXiO4VxkLlr4dLxCDy_Zngwccvt7HWdiPPT4
142.250.74.34200 OK 0 B URL HTTP/2 googleads.g.doubleclick.net/xbbe/pixel?d=CPjl5QIQs8-r8AEYnLWLyAEwAQ&v=APEucNUHaXtXkuMimy8JWKllFDpUy0QWmaPdvcaLzCAvA4jlB9JYXVeSLA3mbSaOwDU1lPgTBNgqU7en2KzD8SYisgEsNi89O2ADj0XvYf7-Zog5iux2MCXED64E78cAvJSYPFPwyrPZF34PG3CxXiO4VxkLlr4dLxCDy_Zngwccvt7HWdiPPT4
IP 142.250.74.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /xbbe/pixel?d=CPjl5QIQs8-r8AEYnLWLyAEwAQ&v=APEucNUHaXtXkuMimy8JWKllFDpUy0QWmaPdvcaLzCAvA4jlB9JYXVeSLA3mbSaOwDU1lPgTBNgqU7en2KzD8SYisgEsNi89O2ADj0XvYf7-Zog5iux2MCXED64E78cAvJSYPFPwyrPZF34PG3CxXiO4VxkLlr4dLxCDy_Zngwccvt7HWdiPPT4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=250&slotname=8430905272&adk=2231850486&adf=3442147624&pi=t.ma~as.8430905272&w=970&lmt=1663504336&psa=1&format=970x250&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&wgl=1&dt=1663618032892&bpp=2&bdt=527&idt=686&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90%2C728x90&nras=1&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=149&ady=293&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7Co%7CeE%7C&abl=NS&pfx=0&fu=0&bc=23&ifi=4&uci=a!4&fsb=1&xpc=hWqPE782Bl&p=http%3A//musicadda.net&dtd=750
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 20:07:33 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 20:22:33 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 20:07:33 GMT
cache-control: private
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
142.250.74.2200 OK 45 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 142.250.74.2:0
File type ASCII text, with very long lines (3498)
Hash 0c0e0434e32ed968a0bc5ff10a91ee38
a1ed1ba2ded5777b5d4b1fa28f0ec1c70f8e0a61
c41e6de34c081e355d46d6c47119984ec38efe5852cb5a4360538559cd237c08
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 44609
date: Mon, 19 Sep 2022 20:07:33 GMT
expires: Mon, 19 Sep 2022 20:07:33 GMT
cache-control: private, max-age=3000
etag: "1663155654979086"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/dbm/ad?dbm_c=AKAmf-A-UQx0ogfhfUoPWGcgPyULn0AzHYigbY9slV_fYttcC2ls8IBr-aMf8abhO5HloBHnxLnBJV41nu39TvYXcxwsbL2gsg&cry=1&dbm_d=AKAmf-DUhBFSszY1mntL4yKJwBMoncDX7Jsqx3X6GWzytxqUDfzNG-yUzAgSg8LABO2HW7NDi1kopqcvJS0Z4j1xZ4EDb5P3OLNZtsx-2-ZC1745JSSgEqSsJ-PdxvRVaDhQM_GyfTwA1oi3-1uZqiYeK4zWWhh0X1PAyV1udAt-iGeX1f3QDmDXJrRuiRFbovKcD97E3p65OvLec9mruWQviwGYLhULeOm86K_sV3KmTszbAIfmecOLKycESq7tcsXaiBESnqI8npVl139TR0YpYA9Cj_Pa4XFgMmb57yeZqNbih0LzPQYaw6My7gat8EC65SzJHxXh7M6e0icjJyJ6TdyYA_XUKatcA_rQ4zuIM6d05o8--1C2hZ3A0dzk714EA0dDULZcJjVpjFW6Y8cgRsBBQyOXUnkydQK2kOFQqARijf4NNPv8VjPAjOd8u5BvSiPk7A6OljOOtJQjQfBL52DlbIj_4KBfUhPdGQUYZi_z7yGRi9zxFvkBqa58tqYQ19hSMXSklUn_NuKJRsjVUb_33L2sVRFRDxjVhQuZocjWE4Bus-AQRo_yoL3u19817CFpeUN8t_KgtcnIGwoTHyaYAo1O4bsuDv-tMzk9XmTtEuU33E4StKf9xyddg2j-Y5TVe7ql05tpCDcBzPbIo3iGWGybLsz0Eg_r0OgnNDzQN6ThK2c_TWFjdbi1yz6mSiNbTm4v3o6LZl62ieFGza0YU_tN27Fyr4hd2p-GRiBZPa7FNuAKjLDfuYDMInj63A3h92NpJkX9mmuNREv83209fZHjhIXr-ss0U4n5uhiP9o8XdUrcYVECO3mC3a7sw0lWBApYZ5i7YUGDT0aqF3XqBPsDJcvcHpcH1mLxrnC7b_V49lpD0vqqMBa9yxIFeWzj31G7am4fZhhrCb5J28vcdvPs141lHK7rF24x6yeoU_HroT2yyr6fERArNFDRqWV7pfrhZsqroBqksQS28U9QPkMgYK1Re82XXjbCU7JeB12lFRgTv802nLKnu2lLzJmNElx1KRdgn00kk-twjug-aa7zl1tDDwcaCB-sEr1UAxKW2c_B3gNIZl4iTsopiQfkRMsiZYQh9qAX-i8oZ3FqRpPrdr_Z26ohEvHSlm76A7-FAsjycmwZVMBymjGThZDUefNzQrwhQYSAyCzUsVMHYuAuDGbnvH741Prv85OnMNC4Eijd7HGO2MhibZVaFChaBwFjx5XCkQx7x_RXKqa4gwcRNejA1JE-5AKKwRUveRXy9ZQtn0Vmc6CcfPaA_YSl2i45KYNXDkmC-75F3C6fxCMlQQKcs8zjpmdQ-KjCCKHI9Bzjgo5N0-QbGEfbbCMYZc2I2fFJjaKe1ATSg3Hrec_EhWLlP0C9FiZi8yyV1kWM1nBTbIQDv5HNZ0bYRKuN5Fui70IIOACHy3eP_nFk_accYDlTl4cWyl-d6hbGPesCBJD0-lx30Yq4INvOw2BnMMjZcHNjdJx32Os1jzNrp29aBycAKJA6OVjf8jO09tP8GXoknCpGr6l3kuI3EK-pvdz17_W5XSYT5ry_692z3MLZSzXsPNrhhd9rJJEncdty25A6odHpkMYm5O41lPIC4V2duwMEUYcgTbBFirCC88XNAkCxnGxNWtjgr0n4Rbwbm48x1H74xZx7FdhIoSl5h1eDTfhrtoLArwY9BsxRVbcq2mLaF15MxHuaX5rsRZJd3NqnyMblxgyjy2ISIr4I2OcJDIh8JIJbXQdi4acX0R_uSejqpBnzxaReJBkdUF3ijphPoh_Ut-39ws85Yjzm0yVLLUTzkxVHoTpfS25VCiDBaIK3Cr9N35MKi6yq1rJwi-W0YdtSz_RROvpt1F2UFckvJeZg0Knt7LwEUSNzNdBazWPPtlng34PlOKFc3j65ialjbNY8IelMG5avXHNnDcdmRbd4t5_6c4f01rl6MCNZu4J11qCf2xIkeyiY9GqZSDpZ4FtlYDBtfx8xdchSkfgYA5d1BNPTcOfwbfSF63Vn-_vf8sZOZm2_sD_o8nQxI_cTpiuMlvRagrSgeklcp6jfjcP7G8ZHVaoGAtiLhGUW4cYb4MYw-hg3R-I5WxgQ1rYGNSk5euCda5ecgDVFN5BgVHOvUaRM--ljHQpWzwJKHtD-woPn5sNCGppaKrfPBUrXoMIq8ILzs3WVsPzSVekmG3iPI3sa9saviAHdE8plgypP7DUM3WvjLyx0CChvx53OFU9rtG7A2VrYo3ZrA_VXV4Utg8s7CVIJmEpEjdm5X9JWtq7gW3NGTsqKsOSsNH1858honkg-QShfXgILoYpCKjkEosB6yijhbvkCB24-AJrYEMY29otMRuIkfhSa9eG4-K_GKy-nRlu2UDCCmrbk6X_rTqHOjCj9kVStKS4IhZn7dJw6Ul5q2pYhOmqoqbBBSKoM1mx8fyi8pWLXHNqpFjDVTeXPcLlJZUqI37d-vvB1sa2QtcP-1MLrC08zVfDoxW6E1AFSBNvMr8SCWcvWo77YYwOJakaN5uX-rBisDivzqcRtg5s7jXNMXydD6Z9-rQ82t2V1Nqg_fBxI1WS8-f43Y8bGST5n-l5TYGU0cZH1cYAiOk8FF4P1GNPDM7UqgcBdN-lrEwzimheWhei1lsvKYn8HpbuV17iMb1mPixSz5pK1rAXPvXCC3VhwPC7Lx6gzVv8RJJgkfCjmqR43GsEE2E54LFuncwaKX7xolL2HLRgIUDcq3KcEPES1KIHxHqpvdL2Vr52DS4n3YE6OErE8T9w3Vdrcl3dqYsimXEkYap2tYu9RHKgzrigiNsGtwiUf5xhnGYduARunbCMpC4g8kXWqKeTeE7sm5ItAXN0rmHzJHPfQslufjdbQmw9Xa-KOcrj8ZyUl5mkKcy3BqsKQ3_GRQtSLGH9lOEDzgV_qN2IdyBbPhzsDUDvkELMah04-0Tmpb7oz1MU6KScFU_mX6hx2CRIBGkvnqvxUFN067aDm30-VfCZ1uhU9iPeD0ax4kO7Obq6Xigam9Z1V4804VlX9g68mr8-sg0e54sdsdOaYPI2LVzGBlDky5tlnEntZ9g6eLPIAogOcEh4Ujmx8pWq_mumVsyhRfnmylJRfNOVi-EagSDI3M5gkRjg&cid=CAASJ-Ro2aCnst4Ss9h6Wsruyw0sCZqenZAwLLq6JgeO0OENIyHyrQRJDA&rfl=1%2Chttp%253A%252F%252Fmusicadda.net%252F%240
142.250.74.34200 OK 33 kB URL HTTP/2 googleads.g.doubleclick.net/dbm/ad?dbm_c=AKAmf-A-UQx0ogfhfUoPWGcgPyULn0AzHYigbY9slV_fYttcC2ls8IBr-aMf8abhO5HloBHnxLnBJV41nu39TvYXcxwsbL2gsg&cry=1&dbm_d=AKAmf-DUhBFSszY1mntL4yKJwBMoncDX7Jsqx3X6GWzytxqUDfzNG-yUzAgSg8LABO2HW7NDi1kopqcvJS0Z4j1xZ4EDb5P3OLNZtsx-2-ZC1745JSSgEqSsJ-PdxvRVaDhQM_GyfTwA1oi3-1uZqiYeK4zWWhh0X1PAyV1udAt-iGeX1f3QDmDXJrRuiRFbovKcD97E3p65OvLec9mruWQviwGYLhULeOm86K_sV3KmTszbAIfmecOLKycESq7tcsXaiBESnqI8npVl139TR0YpYA9Cj_Pa4XFgMmb57yeZqNbih0LzPQYaw6My7gat8EC65SzJHxXh7M6e0icjJyJ6TdyYA_XUKatcA_rQ4zuIM6d05o8--1C2hZ3A0dzk714EA0dDULZcJjVpjFW6Y8cgRsBBQyOXUnkydQK2kOFQqARijf4NNPv8VjPAjOd8u5BvSiPk7A6OljOOtJQjQfBL52DlbIj_4KBfUhPdGQUYZi_z7yGRi9zxFvkBqa58tqYQ19hSMXSklUn_NuKJRsjVUb_33L2sVRFRDxjVhQuZocjWE4Bus-AQRo_yoL3u19817CFpeUN8t_KgtcnIGwoTHyaYAo1O4bsuDv-tMzk9XmTtEuU33E4StKf9xyddg2j-Y5TVe7ql05tpCDcBzPbIo3iGWGybLsz0Eg_r0OgnNDzQN6ThK2c_TWFjdbi1yz6mSiNbTm4v3o6LZl62ieFGza0YU_tN27Fyr4hd2p-GRiBZPa7FNuAKjLDfuYDMInj63A3h92NpJkX9mmuNREv83209fZHjhIXr-ss0U4n5uhiP9o8XdUrcYVECO3mC3a7sw0lWBApYZ5i7YUGDT0aqF3XqBPsDJcvcHpcH1mLxrnC7b_V49lpD0vqqMBa9yxIFeWzj31G7am4fZhhrCb5J28vcdvPs141lHK7rF24x6yeoU_HroT2yyr6fERArNFDRqWV7pfrhZsqroBqksQS28U9QPkMgYK1Re82XXjbCU7JeB12lFRgTv802nLKnu2lLzJmNElx1KRdgn00kk-twjug-aa7zl1tDDwcaCB-sEr1UAxKW2c_B3gNIZl4iTsopiQfkRMsiZYQh9qAX-i8oZ3FqRpPrdr_Z26ohEvHSlm76A7-FAsjycmwZVMBymjGThZDUefNzQrwhQYSAyCzUsVMHYuAuDGbnvH741Prv85OnMNC4Eijd7HGO2MhibZVaFChaBwFjx5XCkQx7x_RXKqa4gwcRNejA1JE-5AKKwRUveRXy9ZQtn0Vmc6CcfPaA_YSl2i45KYNXDkmC-75F3C6fxCMlQQKcs8zjpmdQ-KjCCKHI9Bzjgo5N0-QbGEfbbCMYZc2I2fFJjaKe1ATSg3Hrec_EhWLlP0C9FiZi8yyV1kWM1nBTbIQDv5HNZ0bYRKuN5Fui70IIOACHy3eP_nFk_accYDlTl4cWyl-d6hbGPesCBJD0-lx30Yq4INvOw2BnMMjZcHNjdJx32Os1jzNrp29aBycAKJA6OVjf8jO09tP8GXoknCpGr6l3kuI3EK-pvdz17_W5XSYT5ry_692z3MLZSzXsPNrhhd9rJJEncdty25A6odHpkMYm5O41lPIC4V2duwMEUYcgTbBFirCC88XNAkCxnGxNWtjgr0n4Rbwbm48x1H74xZx7FdhIoSl5h1eDTfhrtoLArwY9BsxRVbcq2mLaF15MxHuaX5rsRZJd3NqnyMblxgyjy2ISIr4I2OcJDIh8JIJbXQdi4acX0R_uSejqpBnzxaReJBkdUF3ijphPoh_Ut-39ws85Yjzm0yVLLUTzkxVHoTpfS25VCiDBaIK3Cr9N35MKi6yq1rJwi-W0YdtSz_RROvpt1F2UFckvJeZg0Knt7LwEUSNzNdBazWPPtlng34PlOKFc3j65ialjbNY8IelMG5avXHNnDcdmRbd4t5_6c4f01rl6MCNZu4J11qCf2xIkeyiY9GqZSDpZ4FtlYDBtfx8xdchSkfgYA5d1BNPTcOfwbfSF63Vn-_vf8sZOZm2_sD_o8nQxI_cTpiuMlvRagrSgeklcp6jfjcP7G8ZHVaoGAtiLhGUW4cYb4MYw-hg3R-I5WxgQ1rYGNSk5euCda5ecgDVFN5BgVHOvUaRM--ljHQpWzwJKHtD-woPn5sNCGppaKrfPBUrXoMIq8ILzs3WVsPzSVekmG3iPI3sa9saviAHdE8plgypP7DUM3WvjLyx0CChvx53OFU9rtG7A2VrYo3ZrA_VXV4Utg8s7CVIJmEpEjdm5X9JWtq7gW3NGTsqKsOSsNH1858honkg-QShfXgILoYpCKjkEosB6yijhbvkCB24-AJrYEMY29otMRuIkfhSa9eG4-K_GKy-nRlu2UDCCmrbk6X_rTqHOjCj9kVStKS4IhZn7dJw6Ul5q2pYhOmqoqbBBSKoM1mx8fyi8pWLXHNqpFjDVTeXPcLlJZUqI37d-vvB1sa2QtcP-1MLrC08zVfDoxW6E1AFSBNvMr8SCWcvWo77YYwOJakaN5uX-rBisDivzqcRtg5s7jXNMXydD6Z9-rQ82t2V1Nqg_fBxI1WS8-f43Y8bGST5n-l5TYGU0cZH1cYAiOk8FF4P1GNPDM7UqgcBdN-lrEwzimheWhei1lsvKYn8HpbuV17iMb1mPixSz5pK1rAXPvXCC3VhwPC7Lx6gzVv8RJJgkfCjmqR43GsEE2E54LFuncwaKX7xolL2HLRgIUDcq3KcEPES1KIHxHqpvdL2Vr52DS4n3YE6OErE8T9w3Vdrcl3dqYsimXEkYap2tYu9RHKgzrigiNsGtwiUf5xhnGYduARunbCMpC4g8kXWqKeTeE7sm5ItAXN0rmHzJHPfQslufjdbQmw9Xa-KOcrj8ZyUl5mkKcy3BqsKQ3_GRQtSLGH9lOEDzgV_qN2IdyBbPhzsDUDvkELMah04-0Tmpb7oz1MU6KScFU_mX6hx2CRIBGkvnqvxUFN067aDm30-VfCZ1uhU9iPeD0ax4kO7Obq6Xigam9Z1V4804VlX9g68mr8-sg0e54sdsdOaYPI2LVzGBlDky5tlnEntZ9g6eLPIAogOcEh4Ujmx8pWq_mumVsyhRfnmylJRfNOVi-EagSDI3M5gkRjg&cid=CAASJ-Ro2aCnst4Ss9h6Wsruyw0sCZqenZAwLLq6JgeO0OENIyHyrQRJDA&rfl=1%2Chttp%253A%252F%252Fmusicadda.net%252F%240
IP 142.250.74.34:0
File type Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
Hash 152ed80966cbacba8fc25b27f38dd937
91ed8d977e7e7329a7087da61d05d5b3090a4cd1
c703710e28d8ba3329db6313dea6525d3725ba88f048c9708e8e048ee39752ff
GET /dbm/ad?dbm_c=AKAmf-A-UQx0ogfhfUoPWGcgPyULn0AzHYigbY9slV_fYttcC2ls8IBr-aMf8abhO5HloBHnxLnBJV41nu39TvYXcxwsbL2gsg&cry=1&dbm_d=AKAmf-DUhBFSszY1mntL4yKJwBMoncDX7Jsqx3X6GWzytxqUDfzNG-yUzAgSg8LABO2HW7NDi1kopqcvJS0Z4j1xZ4EDb5P3OLNZtsx-2-ZC1745JSSgEqSsJ-PdxvRVaDhQM_GyfTwA1oi3-1uZqiYeK4zWWhh0X1PAyV1udAt-iGeX1f3QDmDXJrRuiRFbovKcD97E3p65OvLec9mruWQviwGYLhULeOm86K_sV3KmTszbAIfmecOLKycESq7tcsXaiBESnqI8npVl139TR0YpYA9Cj_Pa4XFgMmb57yeZqNbih0LzPQYaw6My7gat8EC65SzJHxXh7M6e0icjJyJ6TdyYA_XUKatcA_rQ4zuIM6d05o8--1C2hZ3A0dzk714EA0dDULZcJjVpjFW6Y8cgRsBBQyOXUnkydQK2kOFQqARijf4NNPv8VjPAjOd8u5BvSiPk7A6OljOOtJQjQfBL52DlbIj_4KBfUhPdGQUYZi_z7yGRi9zxFvkBqa58tqYQ19hSMXSklUn_NuKJRsjVUb_33L2sVRFRDxjVhQuZocjWE4Bus-AQRo_yoL3u19817CFpeUN8t_KgtcnIGwoTHyaYAo1O4bsuDv-tMzk9XmTtEuU33E4StKf9xyddg2j-Y5TVe7ql05tpCDcBzPbIo3iGWGybLsz0Eg_r0OgnNDzQN6ThK2c_TWFjdbi1yz6mSiNbTm4v3o6LZl62ieFGza0YU_tN27Fyr4hd2p-GRiBZPa7FNuAKjLDfuYDMInj63A3h92NpJkX9mmuNREv83209fZHjhIXr-ss0U4n5uhiP9o8XdUrcYVECO3mC3a7sw0lWBApYZ5i7YUGDT0aqF3XqBPsDJcvcHpcH1mLxrnC7b_V49lpD0vqqMBa9yxIFeWzj31G7am4fZhhrCb5J28vcdvPs141lHK7rF24x6yeoU_HroT2yyr6fERArNFDRqWV7pfrhZsqroBqksQS28U9QPkMgYK1Re82XXjbCU7JeB12lFRgTv802nLKnu2lLzJmNElx1KRdgn00kk-twjug-aa7zl1tDDwcaCB-sEr1UAxKW2c_B3gNIZl4iTsopiQfkRMsiZYQh9qAX-i8oZ3FqRpPrdr_Z26ohEvHSlm76A7-FAsjycmwZVMBymjGThZDUefNzQrwhQYSAyCzUsVMHYuAuDGbnvH741Prv85OnMNC4Eijd7HGO2MhibZVaFChaBwFjx5XCkQx7x_RXKqa4gwcRNejA1JE-5AKKwRUveRXy9ZQtn0Vmc6CcfPaA_YSl2i45KYNXDkmC-75F3C6fxCMlQQKcs8zjpmdQ-KjCCKHI9Bzjgo5N0-QbGEfbbCMYZc2I2fFJjaKe1ATSg3Hrec_EhWLlP0C9FiZi8yyV1kWM1nBTbIQDv5HNZ0bYRKuN5Fui70IIOACHy3eP_nFk_accYDlTl4cWyl-d6hbGPesCBJD0-lx30Yq4INvOw2BnMMjZcHNjdJx32Os1jzNrp29aBycAKJA6OVjf8jO09tP8GXoknCpGr6l3kuI3EK-pvdz17_W5XSYT5ry_692z3MLZSzXsPNrhhd9rJJEncdty25A6odHpkMYm5O41lPIC4V2duwMEUYcgTbBFirCC88XNAkCxnGxNWtjgr0n4Rbwbm48x1H74xZx7FdhIoSl5h1eDTfhrtoLArwY9BsxRVbcq2mLaF15MxHuaX5rsRZJd3NqnyMblxgyjy2ISIr4I2OcJDIh8JIJbXQdi4acX0R_uSejqpBnzxaReJBkdUF3ijphPoh_Ut-39ws85Yjzm0yVLLUTzkxVHoTpfS25VCiDBaIK3Cr9N35MKi6yq1rJwi-W0YdtSz_RROvpt1F2UFckvJeZg0Knt7LwEUSNzNdBazWPPtlng34PlOKFc3j65ialjbNY8IelMG5avXHNnDcdmRbd4t5_6c4f01rl6MCNZu4J11qCf2xIkeyiY9GqZSDpZ4FtlYDBtfx8xdchSkfgYA5d1BNPTcOfwbfSF63Vn-_vf8sZOZm2_sD_o8nQxI_cTpiuMlvRagrSgeklcp6jfjcP7G8ZHVaoGAtiLhGUW4cYb4MYw-hg3R-I5WxgQ1rYGNSk5euCda5ecgDVFN5BgVHOvUaRM--ljHQpWzwJKHtD-woPn5sNCGppaKrfPBUrXoMIq8ILzs3WVsPzSVekmG3iPI3sa9saviAHdE8plgypP7DUM3WvjLyx0CChvx53OFU9rtG7A2VrYo3ZrA_VXV4Utg8s7CVIJmEpEjdm5X9JWtq7gW3NGTsqKsOSsNH1858honkg-QShfXgILoYpCKjkEosB6yijhbvkCB24-AJrYEMY29otMRuIkfhSa9eG4-K_GKy-nRlu2UDCCmrbk6X_rTqHOjCj9kVStKS4IhZn7dJw6Ul5q2pYhOmqoqbBBSKoM1mx8fyi8pWLXHNqpFjDVTeXPcLlJZUqI37d-vvB1sa2QtcP-1MLrC08zVfDoxW6E1AFSBNvMr8SCWcvWo77YYwOJakaN5uX-rBisDivzqcRtg5s7jXNMXydD6Z9-rQ82t2V1Nqg_fBxI1WS8-f43Y8bGST5n-l5TYGU0cZH1cYAiOk8FF4P1GNPDM7UqgcBdN-lrEwzimheWhei1lsvKYn8HpbuV17iMb1mPixSz5pK1rAXPvXCC3VhwPC7Lx6gzVv8RJJgkfCjmqR43GsEE2E54LFuncwaKX7xolL2HLRgIUDcq3KcEPES1KIHxHqpvdL2Vr52DS4n3YE6OErE8T9w3Vdrcl3dqYsimXEkYap2tYu9RHKgzrigiNsGtwiUf5xhnGYduARunbCMpC4g8kXWqKeTeE7sm5ItAXN0rmHzJHPfQslufjdbQmw9Xa-KOcrj8ZyUl5mkKcy3BqsKQ3_GRQtSLGH9lOEDzgV_qN2IdyBbPhzsDUDvkELMah04-0Tmpb7oz1MU6KScFU_mX6hx2CRIBGkvnqvxUFN067aDm30-VfCZ1uhU9iPeD0ax4kO7Obq6Xigam9Z1V4804VlX9g68mr8-sg0e54sdsdOaYPI2LVzGBlDky5tlnEntZ9g6eLPIAogOcEh4Ujmx8pWq_mumVsyhRfnmylJRfNOVi-EagSDI3M5gkRjg&cid=CAASJ-Ro2aCnst4Ss9h6Wsruyw0sCZqenZAwLLq6JgeO0OENIyHyrQRJDA&rfl=1%2Chttp%253A%252F%252Fmusicadda.net%252F%240 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=250&slotname=8430905272&adk=2231850486&adf=3442147624&pi=t.ma~as.8430905272&w=970&lmt=1663504336&psa=1&format=970x250&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&wgl=1&dt=1663618032892&bpp=2&bdt=527&idt=686&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90%2C728x90&nras=1&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=149&ady=293&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7Co%7CeE%7C&abl=NS&pfx=0&fu=0&bc=23&ifi=4&uci=a!4&fsb=1&xpc=hWqPE782Bl&p=http%3A//musicadda.net&dtd=750
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 19 Sep 2022 20:07:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 32905
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 20:22:33 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/r20220915/r20110914/abg_lite.js
142.250.74.34200 OK 12 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/r20220915/r20110914/abg_lite.js
IP 142.250.74.34:0
File type ASCII text, with very long lines (1561)
Hash efd415479c00da28b3e20fe59e18dd4d
83c260c1e59c41ed37d55f98bc899b3546b8bdf3
649a6fdd7b29411a707ef0715cc8dde9b429ab47abe2e8e12bd277d6c2438b64
GET /pagead/js/r20220915/r20110914/abg_lite.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 11717
x-xss-protection: 0
date: Mon, 19 Sep 2022 19:58:09 GMT
expires: Mon, 03 Oct 2022 19:58:09 GMT
cache-control: public, max-age=1209600
etag: 8998177921611256807
content-type: text/javascript; charset=UTF-8
age: 564
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&slotname=6657338344&adk=1429088950&adf=943920009&pi=t.ma~as.6657338344&w=728&lmt=1663504336&psa=1&format=728x90&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&wgl=1&dt=1663618032900&bpp=2&bdt=535&idt=1125&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C300x250%2C1268x939%2C155x600%2C160x600&nras=2&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=270&ady=842&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=23&ifi=10&uci=a!a&fsb=1&xpc=m1RNZskzWu&p=http%3A//musicadda.net&dtd=1178
142.250.74.34200 OK 213 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&slotname=6657338344&adk=1429088950&adf=943920009&pi=t.ma~as.6657338344&w=728&lmt=1663504336&psa=1&format=728x90&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&wgl=1&dt=1663618032900&bpp=2&bdt=535&idt=1125&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C300x250%2C1268x939%2C155x600%2C160x600&nras=2&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=270&ady=842&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=23&ifi=10&uci=a!a&fsb=1&xpc=m1RNZskzWu&p=http%3A//musicadda.net&dtd=1178
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (436), with no line terminators
Hash b2e5c544eb633707d38674412a0a3f83
f1bd2ab165a0babc8e9c02c45e5a735c483c42fe
0eb04413792f36c89da7451abcad2c58b28c75bccfc1e6e36efedf52d5f15787
GET /pagead/ads?client=ca-pub-5414070771498127&output=html&h=90&slotname=6657338344&adk=1429088950&adf=943920009&pi=t.ma~as.6657338344&w=728&lmt=1663504336&psa=1&format=728x90&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&wgl=1&dt=1663618032900&bpp=2&bdt=535&idt=1125&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C300x250%2C1268x939%2C155x600%2C160x600&nras=2&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=270&ady=842&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=23&ifi=10&uci=a!a&fsb=1&xpc=m1RNZskzWu&p=http%3A//musicadda.net&dtd=1178 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 19 Sep 2022 20:07:33 GMT
server: cafe
content-length: 213
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 20:22:33 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 20:07:33 GMT
cache-control: private
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/window_focus_fy2021.js
142.250.74.33200 OK 1.4 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/window_focus_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1120)
Hash 80cd5cb3c635786273462df0f5f46e1a
419d5c86598430982672063ef04bb4966c94b9e8
f7f4c535ed4b9713150261c1c37ad1c2a883d08aef0ed2d6ce38736dd28d7301
GET /pagead/js/r20220914/r20110914/client/window_focus_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1359
x-xss-protection: 0
date: Mon, 19 Sep 2022 20:02:31 GMT
expires: Mon, 03 Oct 2022 20:02:31 GMT
cache-control: public, max-age=1209600
etag: 1484984001845508991
content-type: text/javascript; charset=UTF-8
age: 302
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/r20220915/r20110914/elements/html/omrhp.js
142.250.74.34200 OK 3.2 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/r20220915/r20110914/elements/html/omrhp.js
IP 142.250.74.34:0
File type ASCII text, with very long lines (2812)
Hash 4d25fcd5db1b3e587056df29eceda987
f39f02656e6d83d8c5d56d9a2dc7dd503c8dfb08
c1ea615501bde8bb26af7731ca7118379c587f2f799c13d7b76b11434b502ffc
GET /pagead/js/r20220915/r20110914/elements/html/omrhp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 3181
x-xss-protection: 0
date: Mon, 19 Sep 2022 19:58:43 GMT
expires: Mon, 03 Oct 2022 19:58:43 GMT
cache-control: public, max-age=1209600
etag: 10699485926258732851
content-type: text/javascript; charset=UTF-8
age: 530
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/UFYwWwmt.js
142.250.74.33200 OK 15 kB URL HTTP/2 tpc.googlesyndication.com/sodar/UFYwWwmt.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (2289)
Hash 4a6eb6cff1bd687798eb64e7f232bc14
658dfe0797ee4c158c4d80e673be9bbf026da600
1e6b2901d07bf87aba54476c62459a6faeaf3c67fd1d13a329e6cf6a663a5006
GET /sodar/UFYwWwmt.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
timing-allow-origin: *
content-length: 15207
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 04:42:06 GMT
expires: Sat, 16 Sep 2023 04:42:06 GMT
cache-control: public, max-age=31536000
age: 314727
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/gen_204?id=xbid&dbm_b=AKAmf-BfuJYZtYnV540K11enfWJCUJgDjyELHoPiDV3aWGeGRjnpsFRvSyy0i4DlCxNnHHMlqi64rFV5UplwaN5R5kzZe4ADKDzbWvToZO-Ge6n721vp2bw
142.250.74.34200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pagead/gen_204?id=xbid&dbm_b=AKAmf-BfuJYZtYnV540K11enfWJCUJgDjyELHoPiDV3aWGeGRjnpsFRvSyy0i4DlCxNnHHMlqi64rFV5UplwaN5R5kzZe4ADKDzbWvToZO-Ge6n721vp2bw
IP 142.250.74.34:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/gen_204?id=xbid&dbm_b=AKAmf-BfuJYZtYnV540K11enfWJCUJgDjyELHoPiDV3aWGeGRjnpsFRvSyy0i4DlCxNnHHMlqi64rFV5UplwaN5R5kzZe4ADKDzbWvToZO-Ge6n721vp2bw HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 19 Sep 2022 20:07:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/measurement/l?ebcid=ALh7CaQZgXpNzE3v_EYrriah_zXkRncuj4nA9F0xT76qdTtFa2sek9rD2epR53eKz-rWTO9HxPArn4ZY-gMQklDuQsfR9dYunQ
142.250.74.164204 No Content 0 B URL HTTP/2 www.google.com/ads/measurement/l?ebcid=ALh7CaQZgXpNzE3v_EYrriah_zXkRncuj4nA9F0xT76qdTtFa2sek9rD2epR53eKz-rWTO9HxPArn4ZY-gMQklDuQsfR9dYunQ
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/measurement/l?ebcid=ALh7CaQZgXpNzE3v_EYrriah_zXkRncuj4nA9F0xT76qdTtFa2sek9rD2epR53eKz-rWTO9HxPArn4ZY-gMQklDuQsfR9dYunQ HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 20:07:33 GMT
server: jumble_frontend_server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/Enqz_20U.html
142.250.74.33200 OK 8.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/Enqz_20U.html
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1572)
Hash 1f9fad7314bb487966fd7a9b78cdb4d3
e91e30f9df2eb23f64dc24adf2a154329d2a5dd4
ca76b66cd7d1e0c949c4e96a1f3307f6ba4238cea55009174ce14505fd77a15f
GET /sodar/Enqz_20U.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
timing-allow-origin: *
content-length: 8395
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Sep 2022 17:34:39 GMT
expires: Sun, 17 Sep 2023 17:34:39 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: text/html
age: 181974
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s0.2mdn.net/simgad/5726019841341350291
216.58.211.6200 OK 174 kB URL HTTP/2 s0.2mdn.net/simgad/5726019841341350291
IP 216.58.211.6:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 23.1 (Macintosh), datetime=2022:01:27 19:18:42], baseline, precision 8, 970x250, components 3\012- data
Size 174 kB (174047 bytes)
Hash f47a897c23018bf56e533ee65c015763
5b9cb675e724e09ee07e05144ce430dffebd0dc9
14a0aba6a9c2f1036fec4141a759fa241707c3338bdc1ae1e3d2d8eefe3272dc
GET /simgad/5726019841341350291 HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 174047
x-content-type-options: nosniff
x-dns-prefetch-control: off
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 07:09:08 GMT
expires: Sat, 16 Sep 2023 07:09:08 GMT
cache-control: public, max-age=31536000
age: 305905
last-modified: Mon, 25 Apr 2022 11:22:55 GMT
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsvdKZzrclbbTaesLvZ9YJ18K_-V4AqWomu2xxygQza4xep8oxYUp_RLIKx9aHAYNWCcK_cw16pRYY9U3ODkAERRfSYJCKKDmsq1sz5GhKuR31lU3AfEXMzitNGQaJv9BKutf6xMQcQ402FZC3K0zspzm13-OEinhPOeW8wEvJQ9wuKjbYDnakvONaMYwYuOXSvXQhbMUS9z-ND1NGVGx-PB3r_0aE90hEMkunRuqp_l1Qpzk5JK2joqTMZ9SoNuHeX95_xhc-N7uO1jjhr7QhAEFN8LlkIxE77o-mxP215wsMMvRd7JtdvaWEBFQjA-5BEfBqNTnGzqZCYPSpbNXaHvXePZCAkz2IuBpduOwh_0yECzBsUU6Dma_KS4pvLiUK3YBYNfUYL35_T7pLCsf9jiuQhWPzPd3qEqe7j0FykOe5HD8WX168RtNCqGQkrOf0pc5XCd6MgaqgWWQrC1pWBbfOneCK0Ybn3lUv-Dy0kZXH2eQzzRG8XXLqLHTzdGXbRU5r2BUXOBrTGjhU-izC_o7eWsrJpt_zzquOCq2QTlmPQPLDWJ-75__5XUgtjZSzc4akB_cjopk_GQ-wHM2yWYDp0g-1lnN7GOV2A1WnL1d9cc3jKlyotUlolAF2sXejrTiIJmlsLmgEFrYJBMgvCgFDwqXDKt21_0ojzf7wx8z54K11yxvRWGxMbxIf9_HCZs6_69ET4gkfxEvqfJ94qXmyIG03ADBO8yBVz2emJe9ajzSp3XECKZZmZQ6n0TmiXD_4NuSiLkFNTu7DRlfj5WXq4y5MIV3p4EW93FEH-eiiTTG0nxex-OuuxeeNYhGWYPm6nBu8uvX7LnXwfabz-eT-yHXxHozMLbEKU5k2oX0LQkG_eeYFMeadgXDICjzpgntVdwUGkMufeqzhUYLP-w3o8ULd4peocMV2G-3J1gp_8UI-_CR9-hysQ-UqOjeME0u3PALecsJSxAQzVk3lY3kc_E7kZ3m_EQxH0LRaoNkC4zlCHWoPblhn30DeiVsMyJStLuorwcWc8GQjRBfaFZA0rtBrnEx5b7foJi9iP4SXx6KQi3E3N1IditB6kn7RH2pygjqWK-fsYtxhtHstFes9o6XAi7U96DJSdfyRUCGO13e3t7ssYOjC__So0&sai=AMfl-YT70ShgbCHD5hLh7Ovr3AXdAa_ao5S5ABZ68UBWAlZJiBqi-BVjWN_WNRF_eZYLKPHiXUGOGCFllb2StMGfTw3A7Q_f-rWQQ1uOB4gbZ1oBHNdGCZ7rLYrtVGUYe_lSa2d5ZH3OzUD8H1iAipp-z8ABtpb3HCEy0-dfGFgz0Gti3drJYNgiBaGYMy-wDwZRHe3aAx-lN6412sce5nq1LEKIPV2Kr6w&sig=Cg0ArKJSzCmXghSL0P3kEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=2&cbvp=1&cstd=1&cisv=r20220915.48912&adurl=
142.250.74.162200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsvdKZzrclbbTaesLvZ9YJ18K_-V4AqWomu2xxygQza4xep8oxYUp_RLIKx9aHAYNWCcK_cw16pRYY9U3ODkAERRfSYJCKKDmsq1sz5GhKuR31lU3AfEXMzitNGQaJv9BKutf6xMQcQ402FZC3K0zspzm13-OEinhPOeW8wEvJQ9wuKjbYDnakvONaMYwYuOXSvXQhbMUS9z-ND1NGVGx-PB3r_0aE90hEMkunRuqp_l1Qpzk5JK2joqTMZ9SoNuHeX95_xhc-N7uO1jjhr7QhAEFN8LlkIxE77o-mxP215wsMMvRd7JtdvaWEBFQjA-5BEfBqNTnGzqZCYPSpbNXaHvXePZCAkz2IuBpduOwh_0yECzBsUU6Dma_KS4pvLiUK3YBYNfUYL35_T7pLCsf9jiuQhWPzPd3qEqe7j0FykOe5HD8WX168RtNCqGQkrOf0pc5XCd6MgaqgWWQrC1pWBbfOneCK0Ybn3lUv-Dy0kZXH2eQzzRG8XXLqLHTzdGXbRU5r2BUXOBrTGjhU-izC_o7eWsrJpt_zzquOCq2QTlmPQPLDWJ-75__5XUgtjZSzc4akB_cjopk_GQ-wHM2yWYDp0g-1lnN7GOV2A1WnL1d9cc3jKlyotUlolAF2sXejrTiIJmlsLmgEFrYJBMgvCgFDwqXDKt21_0ojzf7wx8z54K11yxvRWGxMbxIf9_HCZs6_69ET4gkfxEvqfJ94qXmyIG03ADBO8yBVz2emJe9ajzSp3XECKZZmZQ6n0TmiXD_4NuSiLkFNTu7DRlfj5WXq4y5MIV3p4EW93FEH-eiiTTG0nxex-OuuxeeNYhGWYPm6nBu8uvX7LnXwfabz-eT-yHXxHozMLbEKU5k2oX0LQkG_eeYFMeadgXDICjzpgntVdwUGkMufeqzhUYLP-w3o8ULd4peocMV2G-3J1gp_8UI-_CR9-hysQ-UqOjeME0u3PALecsJSxAQzVk3lY3kc_E7kZ3m_EQxH0LRaoNkC4zlCHWoPblhn30DeiVsMyJStLuorwcWc8GQjRBfaFZA0rtBrnEx5b7foJi9iP4SXx6KQi3E3N1IditB6kn7RH2pygjqWK-fsYtxhtHstFes9o6XAi7U96DJSdfyRUCGO13e3t7ssYOjC__So0&sai=AMfl-YT70ShgbCHD5hLh7Ovr3AXdAa_ao5S5ABZ68UBWAlZJiBqi-BVjWN_WNRF_eZYLKPHiXUGOGCFllb2StMGfTw3A7Q_f-rWQQ1uOB4gbZ1oBHNdGCZ7rLYrtVGUYe_lSa2d5ZH3OzUD8H1iAipp-z8ABtpb3HCEy0-dfGFgz0Gti3drJYNgiBaGYMy-wDwZRHe3aAx-lN6412sce5nq1LEKIPV2Kr6w&sig=Cg0ArKJSzCmXghSL0P3kEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=2&cbvp=1&cstd=1&cisv=r20220915.48912&adurl=
IP 142.250.74.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjsvdKZzrclbbTaesLvZ9YJ18K_-V4AqWomu2xxygQza4xep8oxYUp_RLIKx9aHAYNWCcK_cw16pRYY9U3ODkAERRfSYJCKKDmsq1sz5GhKuR31lU3AfEXMzitNGQaJv9BKutf6xMQcQ402FZC3K0zspzm13-OEinhPOeW8wEvJQ9wuKjbYDnakvONaMYwYuOXSvXQhbMUS9z-ND1NGVGx-PB3r_0aE90hEMkunRuqp_l1Qpzk5JK2joqTMZ9SoNuHeX95_xhc-N7uO1jjhr7QhAEFN8LlkIxE77o-mxP215wsMMvRd7JtdvaWEBFQjA-5BEfBqNTnGzqZCYPSpbNXaHvXePZCAkz2IuBpduOwh_0yECzBsUU6Dma_KS4pvLiUK3YBYNfUYL35_T7pLCsf9jiuQhWPzPd3qEqe7j0FykOe5HD8WX168RtNCqGQkrOf0pc5XCd6MgaqgWWQrC1pWBbfOneCK0Ybn3lUv-Dy0kZXH2eQzzRG8XXLqLHTzdGXbRU5r2BUXOBrTGjhU-izC_o7eWsrJpt_zzquOCq2QTlmPQPLDWJ-75__5XUgtjZSzc4akB_cjopk_GQ-wHM2yWYDp0g-1lnN7GOV2A1WnL1d9cc3jKlyotUlolAF2sXejrTiIJmlsLmgEFrYJBMgvCgFDwqXDKt21_0ojzf7wx8z54K11yxvRWGxMbxIf9_HCZs6_69ET4gkfxEvqfJ94qXmyIG03ADBO8yBVz2emJe9ajzSp3XECKZZmZQ6n0TmiXD_4NuSiLkFNTu7DRlfj5WXq4y5MIV3p4EW93FEH-eiiTTG0nxex-OuuxeeNYhGWYPm6nBu8uvX7LnXwfabz-eT-yHXxHozMLbEKU5k2oX0LQkG_eeYFMeadgXDICjzpgntVdwUGkMufeqzhUYLP-w3o8ULd4peocMV2G-3J1gp_8UI-_CR9-hysQ-UqOjeME0u3PALecsJSxAQzVk3lY3kc_E7kZ3m_EQxH0LRaoNkC4zlCHWoPblhn30DeiVsMyJStLuorwcWc8GQjRBfaFZA0rtBrnEx5b7foJi9iP4SXx6KQi3E3N1IditB6kn7RH2pygjqWK-fsYtxhtHstFes9o6XAi7U96DJSdfyRUCGO13e3t7ssYOjC__So0&sai=AMfl-YT70ShgbCHD5hLh7Ovr3AXdAa_ao5S5ABZ68UBWAlZJiBqi-BVjWN_WNRF_eZYLKPHiXUGOGCFllb2StMGfTw3A7Q_f-rWQQ1uOB4gbZ1oBHNdGCZ7rLYrtVGUYe_lSa2d5ZH3OzUD8H1iAipp-z8ABtpb3HCEy0-dfGFgz0Gti3drJYNgiBaGYMy-wDwZRHe3aAx-lN6412sce5nq1LEKIPV2Kr6w&sig=Cg0ArKJSzCmXghSL0P3kEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=2&cbvp=1&cstd=1&cisv=r20220915.48912&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
content-security-policy: script-src 'none'; object-src 'none'
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 20:07:33 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 20:22:33 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 20:07:33 GMT
X-Firefox-Spdy: h2
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsvdKZzrclbbTaesLvZ9YJ18K_-V4AqWomu2xxygQza4xep8oxYUp_RLIKx9aHAYNWCcK_cw16pRYY9U3ODkAERRfSYJCKKDmsq1sz5GhKuR31lU3AfEXMzitNGQaJv9BKutf6xMQcQ402FZC3K0zspzm13-OEinhPOeW8wEvJQ9wuKjbYDnakvONaMYwYuOXSvXQhbMUS9z-ND1NGVGx-PB3r_0aE90hEMkunRuqp_l1Qpzk5JK2joqTMZ9SoNuHeX95_xhc-N7uO1jjhr7QhAEFN8LlkIxE77o-mxP215wsMMvRd7JtdvaWEBFQjA-5BEfBqNTnGzqZCYPSpbNXaHvXePZCAkz2IuBpduOwh_0yECzBsUU6Dma_KS4pvLiUK3YBYNfUYL35_T7pLCsf9jiuQhWPzPd3qEqe7j0FykOe5HD8WX168RtNCqGQkrOf0pc5XCd6MgaqgWWQrC1pWBbfOneCK0Ybn3lUv-Dy0kZXH2eQzzRG8XXLqLHTzdGXbRU5r2BUXOBrTGjhU-izC_o7eWsrJpt_zzquOCq2QTlmPQPLDWJ-75__5XUgtjZSzc4akB_cjopk_GQ-wHM2yWYDp0g-1lnN7GOV2A1WnL1d9cc3jKlyotUlolAF2sXejrTiIJmlsLmgEFrYJBMgvCgFDwqXDKt21_0ojzf7wx8z54K11yxvRWGxMbxIf9_HCZs6_69ET4gkfxEvqfJ94qXmyIG03ADBO8yBVz2emJe9ajzSp3XECKZZmZQ6n0TmiXD_4NuSiLkFNTu7DRlfj5WXq4y5MIV3p4EW93FEH-eiiTTG0nxex-OuuxeeNYhGWYPm6nBu8uvX7LnXwfabz-eT-yHXxHozMLbEKU5k2oX0LQkG_eeYFMeadgXDICjzpgntVdwUGkMufeqzhUYLP-w3o8ULd4peocMV2G-3J1gp_8UI-_CR9-hysQ-UqOjeME0u3PALecsJSxAQzVk3lY3kc_E7kZ3m_EQxH0LRaoNkC4zlCHWoPblhn30DeiVsMyJStLuorwcWc8GQjRBfaFZA0rtBrnEx5b7foJi9iP4SXx6KQi3E3N1IditB6kn7RH2pygjqWK-fsYtxhtHstFes9o6XAi7U96DJSdfyRUCGO13e3t7ssYOjC__So0&sai=AMfl-YT70ShgbCHD5hLh7Ovr3AXdAa_ao5S5ABZ68UBWAlZJiBqi-BVjWN_WNRF_eZYLKPHiXUGOGCFllb2StMGfTw3A7Q_f-rWQQ1uOB4gbZ1oBHNdGCZ7rLYrtVGUYe_lSa2d5ZH3OzUD8H1iAipp-z8ABtpb3HCEy0-dfGFgz0Gti3drJYNgiBaGYMy-wDwZRHe3aAx-lN6412sce5nq1LEKIPV2Kr6w&sig=Cg0ArKJSzCmXghSL0P3kEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=149&vt=11&dtpt=147&dett=2&cstd=1&cisv=r20220915.48912&adurl=
142.250.74.162200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsvdKZzrclbbTaesLvZ9YJ18K_-V4AqWomu2xxygQza4xep8oxYUp_RLIKx9aHAYNWCcK_cw16pRYY9U3ODkAERRfSYJCKKDmsq1sz5GhKuR31lU3AfEXMzitNGQaJv9BKutf6xMQcQ402FZC3K0zspzm13-OEinhPOeW8wEvJQ9wuKjbYDnakvONaMYwYuOXSvXQhbMUS9z-ND1NGVGx-PB3r_0aE90hEMkunRuqp_l1Qpzk5JK2joqTMZ9SoNuHeX95_xhc-N7uO1jjhr7QhAEFN8LlkIxE77o-mxP215wsMMvRd7JtdvaWEBFQjA-5BEfBqNTnGzqZCYPSpbNXaHvXePZCAkz2IuBpduOwh_0yECzBsUU6Dma_KS4pvLiUK3YBYNfUYL35_T7pLCsf9jiuQhWPzPd3qEqe7j0FykOe5HD8WX168RtNCqGQkrOf0pc5XCd6MgaqgWWQrC1pWBbfOneCK0Ybn3lUv-Dy0kZXH2eQzzRG8XXLqLHTzdGXbRU5r2BUXOBrTGjhU-izC_o7eWsrJpt_zzquOCq2QTlmPQPLDWJ-75__5XUgtjZSzc4akB_cjopk_GQ-wHM2yWYDp0g-1lnN7GOV2A1WnL1d9cc3jKlyotUlolAF2sXejrTiIJmlsLmgEFrYJBMgvCgFDwqXDKt21_0ojzf7wx8z54K11yxvRWGxMbxIf9_HCZs6_69ET4gkfxEvqfJ94qXmyIG03ADBO8yBVz2emJe9ajzSp3XECKZZmZQ6n0TmiXD_4NuSiLkFNTu7DRlfj5WXq4y5MIV3p4EW93FEH-eiiTTG0nxex-OuuxeeNYhGWYPm6nBu8uvX7LnXwfabz-eT-yHXxHozMLbEKU5k2oX0LQkG_eeYFMeadgXDICjzpgntVdwUGkMufeqzhUYLP-w3o8ULd4peocMV2G-3J1gp_8UI-_CR9-hysQ-UqOjeME0u3PALecsJSxAQzVk3lY3kc_E7kZ3m_EQxH0LRaoNkC4zlCHWoPblhn30DeiVsMyJStLuorwcWc8GQjRBfaFZA0rtBrnEx5b7foJi9iP4SXx6KQi3E3N1IditB6kn7RH2pygjqWK-fsYtxhtHstFes9o6XAi7U96DJSdfyRUCGO13e3t7ssYOjC__So0&sai=AMfl-YT70ShgbCHD5hLh7Ovr3AXdAa_ao5S5ABZ68UBWAlZJiBqi-BVjWN_WNRF_eZYLKPHiXUGOGCFllb2StMGfTw3A7Q_f-rWQQ1uOB4gbZ1oBHNdGCZ7rLYrtVGUYe_lSa2d5ZH3OzUD8H1iAipp-z8ABtpb3HCEy0-dfGFgz0Gti3drJYNgiBaGYMy-wDwZRHe3aAx-lN6412sce5nq1LEKIPV2Kr6w&sig=Cg0ArKJSzCmXghSL0P3kEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=149&vt=11&dtpt=147&dett=2&cstd=1&cisv=r20220915.48912&adurl=
IP 142.250.74.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjsvdKZzrclbbTaesLvZ9YJ18K_-V4AqWomu2xxygQza4xep8oxYUp_RLIKx9aHAYNWCcK_cw16pRYY9U3ODkAERRfSYJCKKDmsq1sz5GhKuR31lU3AfEXMzitNGQaJv9BKutf6xMQcQ402FZC3K0zspzm13-OEinhPOeW8wEvJQ9wuKjbYDnakvONaMYwYuOXSvXQhbMUS9z-ND1NGVGx-PB3r_0aE90hEMkunRuqp_l1Qpzk5JK2joqTMZ9SoNuHeX95_xhc-N7uO1jjhr7QhAEFN8LlkIxE77o-mxP215wsMMvRd7JtdvaWEBFQjA-5BEfBqNTnGzqZCYPSpbNXaHvXePZCAkz2IuBpduOwh_0yECzBsUU6Dma_KS4pvLiUK3YBYNfUYL35_T7pLCsf9jiuQhWPzPd3qEqe7j0FykOe5HD8WX168RtNCqGQkrOf0pc5XCd6MgaqgWWQrC1pWBbfOneCK0Ybn3lUv-Dy0kZXH2eQzzRG8XXLqLHTzdGXbRU5r2BUXOBrTGjhU-izC_o7eWsrJpt_zzquOCq2QTlmPQPLDWJ-75__5XUgtjZSzc4akB_cjopk_GQ-wHM2yWYDp0g-1lnN7GOV2A1WnL1d9cc3jKlyotUlolAF2sXejrTiIJmlsLmgEFrYJBMgvCgFDwqXDKt21_0ojzf7wx8z54K11yxvRWGxMbxIf9_HCZs6_69ET4gkfxEvqfJ94qXmyIG03ADBO8yBVz2emJe9ajzSp3XECKZZmZQ6n0TmiXD_4NuSiLkFNTu7DRlfj5WXq4y5MIV3p4EW93FEH-eiiTTG0nxex-OuuxeeNYhGWYPm6nBu8uvX7LnXwfabz-eT-yHXxHozMLbEKU5k2oX0LQkG_eeYFMeadgXDICjzpgntVdwUGkMufeqzhUYLP-w3o8ULd4peocMV2G-3J1gp_8UI-_CR9-hysQ-UqOjeME0u3PALecsJSxAQzVk3lY3kc_E7kZ3m_EQxH0LRaoNkC4zlCHWoPblhn30DeiVsMyJStLuorwcWc8GQjRBfaFZA0rtBrnEx5b7foJi9iP4SXx6KQi3E3N1IditB6kn7RH2pygjqWK-fsYtxhtHstFes9o6XAi7U96DJSdfyRUCGO13e3t7ssYOjC__So0&sai=AMfl-YT70ShgbCHD5hLh7Ovr3AXdAa_ao5S5ABZ68UBWAlZJiBqi-BVjWN_WNRF_eZYLKPHiXUGOGCFllb2StMGfTw3A7Q_f-rWQQ1uOB4gbZ1oBHNdGCZ7rLYrtVGUYe_lSa2d5ZH3OzUD8H1iAipp-z8ABtpb3HCEy0-dfGFgz0Gti3drJYNgiBaGYMy-wDwZRHe3aAx-lN6412sce5nq1LEKIPV2Kr6w&sig=Cg0ArKJSzCmXghSL0P3kEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=149&vt=11&dtpt=147&dett=2&cstd=1&cisv=r20220915.48912&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 20:07:34 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 20:22:34 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 20:07:34 GMT
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20220915&st=env
142.250.74.34200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20220915&st=env
IP 142.250.74.34:0
File type JSON data\012- , ASCII text, with very long lines (14617), with no line terminators
Hash ed951448698fb5dd5ae0f29a3ebb463c
4f40cf83cc84bf9f5b1b33ef3b9ae80fa0eb07c7
2ad9cbbd48a8ad750d0f13665dfe26776e2aa5d6b7e8f171e7ff35d90b86ed67
GET /getconfig/sodar?sv=200&tid=gda&tv=r20220915&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://musicadda.net
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 20:07:34 GMT
server: cafe
cache-control: private
content-length: 11095
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
unphionetor.com/vbl?t=102123&bid=undefined&aid=undefined
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vbl?t=102123&bid=undefined&aid=undefined
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /vbl?t=102123&bid=undefined&aid=undefined HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://musicadda.net
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 19 Sep 2022 20:07:34 GMT
access-control-allow-origin: http://musicadda.net
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: eee4de501a1fd7dfcb2b121a96f71c0f
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
142.250.74.33200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 18 Sep 2022 16:23:47 GMT
expires: Mon, 18 Sep 2023 16:23:47 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 99827
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 510 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 9378682d9acb2f9fda8b32d89d388ebe
a722226dba183adaf035bb44ff2e98caaf3842b8
b7b4f70175e1963be181a327c2a346bd9b4352747be1082a5dbdd598a676c980
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Mon, 19 Sep 2022 20:07:34 GMT
date: Mon, 19 Sep 2022 20:07:34 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-csJP5CoO8f0ySPmzyp_rdg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 510
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&li=gda_r20220915&jk=2816831592255770&rc=
142.250.74.34204 No Content 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&li=gda_r20220915&jk=2816831592255770&rc=
IP 142.250.74.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/sodar?id=sodar2&v=225&li=gda_r20220915&jk=2816831592255770&rc= HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 20:07:34 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/gen_204?id=sodar&v=30&t=2&bgai=BQQUMBcwoY7nxLYeKYJnShbAIAAAAADgB4AQC&bg=!ERKlElbNAAZqQh0mSkI7ACkAdvg8Whg4671gifHiZQ7e6_Swq5DdkSNXve2pLE2T_Fp-yk-JA4r6ewIAAAFsUgAAAAZoAQeZAoDGy_MlUX7MTGqh4NmedbkM3rGyq3vw-G10ToD01o8cNCPzrxr7-XD9deemz7pNKIyfIrC57v65l-K42c-KDxhdOvoUosyq9yv9_l_Ce_s7I_jzoJK_CuOGqjkLrxbKwZXfg5M-OLuN_aU_WEkPE0CPZULmaRrWj_waLQh5TpIa5XEigAtOsSG1NIK1zEJW6-LHP2xpcGEXPKAeoqchZslWlbA_YFJ11vx9f10vGS_hW7FJK6vUQjRFjHVKfv2uwLkJA2H6vdcu73Qhh61ka6tG0lYebXirStwpFdDresZ-zuV_FWescvNKG2HkX0ZE8Ye7cPiM5Vj6fbaGVMsV-w23ZixqulwyuIR4hHMggBThTAqPGsSq1dVv28xPSGnMoWmVm3WLKb28s5rqXNbjsgRn6TjH-p824xJhElr-mJgXyxTKB5AqrvH1s9-ox6UyHSx4MqoxmBVlgSKtCDL2iaLm55y7veLf6gZh_0YFIw7njJqXnFZKXDnWSKxi88bi-sJ_fasbbo4p-4FVI9lMwu0fhSrSZlWbKCqwUFylZQh-F2XkFYsEhVG5zkFdlwdeG58_oejNFXjrCYWcAeBpc-ClKELsUMYydia00_hqloKkDLeOz_SOO0vBn8y-qaOIAPUAq_4uNx0w_5lTxbMXq3mQEnGKEuXMqq3bEbDlfsR47-m4iEOvQlMJXkv244vD2Xxm278MDYYK94h1wenwFZJYZIQF1Yc3-qtNzabDF49AODFQpjXYWeVSo25dVnmTO-HtCBH7fZySZgBWtx1pvPLPqS2mFW1oaQICCVTSsYGRZAaJ0QULrCcv0PAIPVieWqJlbeQ3Ws9-GM90AF9bvvWz
142.250.74.34204 No Content 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/gen_204?id=sodar&v=30&t=2&bgai=BQQUMBcwoY7nxLYeKYJnShbAIAAAAADgB4AQC&bg=!ERKlElbNAAZqQh0mSkI7ACkAdvg8Whg4671gifHiZQ7e6_Swq5DdkSNXve2pLE2T_Fp-yk-JA4r6ewIAAAFsUgAAAAZoAQeZAoDGy_MlUX7MTGqh4NmedbkM3rGyq3vw-G10ToD01o8cNCPzrxr7-XD9deemz7pNKIyfIrC57v65l-K42c-KDxhdOvoUosyq9yv9_l_Ce_s7I_jzoJK_CuOGqjkLrxbKwZXfg5M-OLuN_aU_WEkPE0CPZULmaRrWj_waLQh5TpIa5XEigAtOsSG1NIK1zEJW6-LHP2xpcGEXPKAeoqchZslWlbA_YFJ11vx9f10vGS_hW7FJK6vUQjRFjHVKfv2uwLkJA2H6vdcu73Qhh61ka6tG0lYebXirStwpFdDresZ-zuV_FWescvNKG2HkX0ZE8Ye7cPiM5Vj6fbaGVMsV-w23ZixqulwyuIR4hHMggBThTAqPGsSq1dVv28xPSGnMoWmVm3WLKb28s5rqXNbjsgRn6TjH-p824xJhElr-mJgXyxTKB5AqrvH1s9-ox6UyHSx4MqoxmBVlgSKtCDL2iaLm55y7veLf6gZh_0YFIw7njJqXnFZKXDnWSKxi88bi-sJ_fasbbo4p-4FVI9lMwu0fhSrSZlWbKCqwUFylZQh-F2XkFYsEhVG5zkFdlwdeG58_oejNFXjrCYWcAeBpc-ClKELsUMYydia00_hqloKkDLeOz_SOO0vBn8y-qaOIAPUAq_4uNx0w_5lTxbMXq3mQEnGKEuXMqq3bEbDlfsR47-m4iEOvQlMJXkv244vD2Xxm278MDYYK94h1wenwFZJYZIQF1Yc3-qtNzabDF49AODFQpjXYWeVSo25dVnmTO-HtCBH7fZySZgBWtx1pvPLPqS2mFW1oaQICCVTSsYGRZAaJ0QULrCcv0PAIPVieWqJlbeQ3Ws9-GM90AF9bvvWz
IP 142.250.74.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/gen_204?id=sodar&v=30&t=2&bgai=BQQUMBcwoY7nxLYeKYJnShbAIAAAAADgB4AQC&bg=!ERKlElbNAAZqQh0mSkI7ACkAdvg8Whg4671gifHiZQ7e6_Swq5DdkSNXve2pLE2T_Fp-yk-JA4r6ewIAAAFsUgAAAAZoAQeZAoDGy_MlUX7MTGqh4NmedbkM3rGyq3vw-G10ToD01o8cNCPzrxr7-XD9deemz7pNKIyfIrC57v65l-K42c-KDxhdOvoUosyq9yv9_l_Ce_s7I_jzoJK_CuOGqjkLrxbKwZXfg5M-OLuN_aU_WEkPE0CPZULmaRrWj_waLQh5TpIa5XEigAtOsSG1NIK1zEJW6-LHP2xpcGEXPKAeoqchZslWlbA_YFJ11vx9f10vGS_hW7FJK6vUQjRFjHVKfv2uwLkJA2H6vdcu73Qhh61ka6tG0lYebXirStwpFdDresZ-zuV_FWescvNKG2HkX0ZE8Ye7cPiM5Vj6fbaGVMsV-w23ZixqulwyuIR4hHMggBThTAqPGsSq1dVv28xPSGnMoWmVm3WLKb28s5rqXNbjsgRn6TjH-p824xJhElr-mJgXyxTKB5AqrvH1s9-ox6UyHSx4MqoxmBVlgSKtCDL2iaLm55y7veLf6gZh_0YFIw7njJqXnFZKXDnWSKxi88bi-sJ_fasbbo4p-4FVI9lMwu0fhSrSZlWbKCqwUFylZQh-F2XkFYsEhVG5zkFdlwdeG58_oejNFXjrCYWcAeBpc-ClKELsUMYydia00_hqloKkDLeOz_SOO0vBn8y-qaOIAPUAq_4uNx0w_5lTxbMXq3mQEnGKEuXMqq3bEbDlfsR47-m4iEOvQlMJXkv244vD2Xxm278MDYYK94h1wenwFZJYZIQF1Yc3-qtNzabDF49AODFQpjXYWeVSo25dVnmTO-HtCBH7fZySZgBWtx1pvPLPqS2mFW1oaQICCVTSsYGRZAaJ0QULrCcv0PAIPVieWqJlbeQ3Ws9-GM90AF9bvvWz HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tpc.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 19 Sep 2022 20:07:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/generate_204?168mYQ
142.250.74.33204 No Content 0 B URL HTTP/2 tpc.googlesyndication.com/generate_204?168mYQ
IP 142.250.74.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?168mYQ HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tpc.googlesyndication.com/sodar/sodar2/225/runner.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Mon, 19 Sep 2022 20:07:34 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsskjQg9kxAjeO0lklczfxOsvkczdy_-iLQFDvMdm9GqEmugDDu4gDzLdzhYwUJH5gStX8hR0nE7mMZR859VRKWfVpiaIreEirbhDUAhEdu9y5fCnQPYuIanW-mYuXu5WSr3KPbfarE&sai=AMfl-YTl_WDSSXVnC0aySCFLNOsjjjfqfj07rtZgvJcib2-xr_5o0MosCLOoM4v4E-jiT0uuPtYe-aaXc_EHWVKF927lwd_s6Pf6JHUQsXPdfdHXRLFHbJ7F3im2as09sVg&sig=Cg0ArKJSzMEsrCQo7zxCEAE&cid=CAASJ-Ro2aCnst4Ss9h6Wsruyw0sCZqenZAwLLq6JgeO0OENIyHyrQRJDA&id=lidar2&mcvt=1000&p=0,0,250,970&mtos=1000,1000,1000,1000,1000&tos=1000,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=2231850486&rs=2&la=1&cr=0&vs=4&r=v&rst=1663618033642&rpt=704&met=ie&wmsd=0
142.250.74.34200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsskjQg9kxAjeO0lklczfxOsvkczdy_-iLQFDvMdm9GqEmugDDu4gDzLdzhYwUJH5gStX8hR0nE7mMZR859VRKWfVpiaIreEirbhDUAhEdu9y5fCnQPYuIanW-mYuXu5WSr3KPbfarE&sai=AMfl-YTl_WDSSXVnC0aySCFLNOsjjjfqfj07rtZgvJcib2-xr_5o0MosCLOoM4v4E-jiT0uuPtYe-aaXc_EHWVKF927lwd_s6Pf6JHUQsXPdfdHXRLFHbJ7F3im2as09sVg&sig=Cg0ArKJSzMEsrCQo7zxCEAE&cid=CAASJ-Ro2aCnst4Ss9h6Wsruyw0sCZqenZAwLLq6JgeO0OENIyHyrQRJDA&id=lidar2&mcvt=1000&p=0,0,250,970&mtos=1000,1000,1000,1000,1000&tos=1000,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=2231850486&rs=2&la=1&cr=0&vs=4&r=v&rst=1663618033642&rpt=704&met=ie&wmsd=0
IP 142.250.74.34:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjsskjQg9kxAjeO0lklczfxOsvkczdy_-iLQFDvMdm9GqEmugDDu4gDzLdzhYwUJH5gStX8hR0nE7mMZR859VRKWfVpiaIreEirbhDUAhEdu9y5fCnQPYuIanW-mYuXu5WSr3KPbfarE&sai=AMfl-YTl_WDSSXVnC0aySCFLNOsjjjfqfj07rtZgvJcib2-xr_5o0MosCLOoM4v4E-jiT0uuPtYe-aaXc_EHWVKF927lwd_s6Pf6JHUQsXPdfdHXRLFHbJ7F3im2as09sVg&sig=Cg0ArKJSzMEsrCQo7zxCEAE&cid=CAASJ-Ro2aCnst4Ss9h6Wsruyw0sCZqenZAwLLq6JgeO0OENIyHyrQRJDA&id=lidar2&mcvt=1000&p=0,0,250,970&mtos=1000,1000,1000,1000,1000&tos=1000,0,0,0,0&v=20220914&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=2231850486&rs=2&la=1&cr=0&vs=4&r=v&rst=1663618033642&rpt=704&met=ie&wmsd=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Mon, 19 Sep 2022 20:07:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20220915&jk=2816831592255770&bg=!rK-lr-vNAAZqQh0mSkI7ACkAdvg8Wuzl_Kkg7hj6P1hp7fjls1-H3ZgdpvpLeMGd4TVcfI_gv4g6ygIAAADfUgAAAApoAQeZAoDDFJiuLYXDbIzMNT30hlrsXiGR1ZcJmb3uHUVuzbcCFmyQNeMz3yJbAoOyMNuQStaKSjlZ0UcRPha8cEo_A82L9uo1mGkzMcKoNiUTdl_tAfeBz1p-1nf-P3J60qVNsn09TsjjCQRnFTQzyYkB4of8vUdgRpE5XKviSAJ2WkX_FECdDDAXGpEoHe9pwvq-w90ygqTqLCGufUWC9yyjtpDNnPu34H1mTBAU_BTU9cIgxqzs3XZo_Nt6bkfMzKyXpciY6yhFZwIp5i2eTZAIF43iU4vy_KkFXmIiWsD6S5OqzT5zXVfnbOAtZoKwdeSc8MAORZfKR5Yowj1NAF9CnoGtvyRmrYkMe5if4qgUKD1sb1pSEd5dG_OgJ4Ee9O2B_Vwn4e35KbQ5yp3UUil9jTXfBfztxypIedIUYo2I9JIJD39vsODnQvf7OkiB1oaac8uP7KxBnSnwqY5RDrg4wEH5tWPgZVxwa_0Voaarz7_UAou41Zzw1lyasjJuR_sKe7aZae-Jf9XwcM6IHDbBhyzm-pE7YbilFYmieTYgkbfoLC7JtOm0MGvvl7cGdNru0gt2qMEI1i71rPsn47ApX_gNgdGSaSbqwnIOXgLscXmY3AEia1TLgKuhDqBihT367U4bMUcc5_UQ41xXYzwDOqYoAV1So-P4VMkwM-wvkgIXN4UMrS9fXd7e3nsch5V9nvndgfU8n8C1fViXzkNe-MXbDLOjgNuXKFPOYOsJvSp6t32MbBp9YFC9BZS8HSjUZJ8zr1_Knk2inlgdWWKnExAJadJkFRjsjr7KP8smNOUgtqBK-e0Z7V4zD0k1PoMkpF5L54t7cA78xXYhJ98RGBBw
142.250.74.34204 No Content 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20220915&jk=2816831592255770&bg=!rK-lr-vNAAZqQh0mSkI7ACkAdvg8Wuzl_Kkg7hj6P1hp7fjls1-H3ZgdpvpLeMGd4TVcfI_gv4g6ygIAAADfUgAAAApoAQeZAoDDFJiuLYXDbIzMNT30hlrsXiGR1ZcJmb3uHUVuzbcCFmyQNeMz3yJbAoOyMNuQStaKSjlZ0UcRPha8cEo_A82L9uo1mGkzMcKoNiUTdl_tAfeBz1p-1nf-P3J60qVNsn09TsjjCQRnFTQzyYkB4of8vUdgRpE5XKviSAJ2WkX_FECdDDAXGpEoHe9pwvq-w90ygqTqLCGufUWC9yyjtpDNnPu34H1mTBAU_BTU9cIgxqzs3XZo_Nt6bkfMzKyXpciY6yhFZwIp5i2eTZAIF43iU4vy_KkFXmIiWsD6S5OqzT5zXVfnbOAtZoKwdeSc8MAORZfKR5Yowj1NAF9CnoGtvyRmrYkMe5if4qgUKD1sb1pSEd5dG_OgJ4Ee9O2B_Vwn4e35KbQ5yp3UUil9jTXfBfztxypIedIUYo2I9JIJD39vsODnQvf7OkiB1oaac8uP7KxBnSnwqY5RDrg4wEH5tWPgZVxwa_0Voaarz7_UAou41Zzw1lyasjJuR_sKe7aZae-Jf9XwcM6IHDbBhyzm-pE7YbilFYmieTYgkbfoLC7JtOm0MGvvl7cGdNru0gt2qMEI1i71rPsn47ApX_gNgdGSaSbqwnIOXgLscXmY3AEia1TLgKuhDqBihT367U4bMUcc5_UQ41xXYzwDOqYoAV1So-P4VMkwM-wvkgIXN4UMrS9fXd7e3nsch5V9nvndgfU8n8C1fViXzkNe-MXbDLOjgNuXKFPOYOsJvSp6t32MbBp9YFC9BZS8HSjUZJ8zr1_Knk2inlgdWWKnExAJadJkFRjsjr7KP8smNOUgtqBK-e0Z7V4zD0k1PoMkpF5L54t7cA78xXYhJ98RGBBw
IP 142.250.74.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20220915&jk=2816831592255770&bg=!rK-lr-vNAAZqQh0mSkI7ACkAdvg8Wuzl_Kkg7hj6P1hp7fjls1-H3ZgdpvpLeMGd4TVcfI_gv4g6ygIAAADfUgAAAApoAQeZAoDDFJiuLYXDbIzMNT30hlrsXiGR1ZcJmb3uHUVuzbcCFmyQNeMz3yJbAoOyMNuQStaKSjlZ0UcRPha8cEo_A82L9uo1mGkzMcKoNiUTdl_tAfeBz1p-1nf-P3J60qVNsn09TsjjCQRnFTQzyYkB4of8vUdgRpE5XKviSAJ2WkX_FECdDDAXGpEoHe9pwvq-w90ygqTqLCGufUWC9yyjtpDNnPu34H1mTBAU_BTU9cIgxqzs3XZo_Nt6bkfMzKyXpciY6yhFZwIp5i2eTZAIF43iU4vy_KkFXmIiWsD6S5OqzT5zXVfnbOAtZoKwdeSc8MAORZfKR5Yowj1NAF9CnoGtvyRmrYkMe5if4qgUKD1sb1pSEd5dG_OgJ4Ee9O2B_Vwn4e35KbQ5yp3UUil9jTXfBfztxypIedIUYo2I9JIJD39vsODnQvf7OkiB1oaac8uP7KxBnSnwqY5RDrg4wEH5tWPgZVxwa_0Voaarz7_UAou41Zzw1lyasjJuR_sKe7aZae-Jf9XwcM6IHDbBhyzm-pE7YbilFYmieTYgkbfoLC7JtOm0MGvvl7cGdNru0gt2qMEI1i71rPsn47ApX_gNgdGSaSbqwnIOXgLscXmY3AEia1TLgKuhDqBihT367U4bMUcc5_UQ41xXYzwDOqYoAV1So-P4VMkwM-wvkgIXN4UMrS9fXd7e3nsch5V9nvndgfU8n8C1fViXzkNe-MXbDLOjgNuXKFPOYOsJvSp6t32MbBp9YFC9BZS8HSjUZJ8zr1_Knk2inlgdWWKnExAJadJkFRjsjr7KP8smNOUgtqBK-e0Z7V4zD0k1PoMkpF5L54t7cA78xXYhJ98RGBBw HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 20:07:35 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=600&slotname=9486025123&adk=1895656336&adf=3222070930&pi=t.ma~as.9486025123&w=160&lmt=1663504336&psa=1&format=160x600&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&wgl=1&dt=1663618032897&bpp=3&bdt=532&idt=860&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C300x250%2C1268x939%2C155x600&nras=2&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=0&ady=32&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=23&ifi=9&uci=a!9&fsb=1&xpc=8HCvJqsSAP&p=http%3A//musicadda.net&dtd=909
142.250.74.34200 OK 212 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=600&slotname=9486025123&adk=1895656336&adf=3222070930&pi=t.ma~as.9486025123&w=160&lmt=1663504336&psa=1&format=160x600&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&wgl=1&dt=1663618032897&bpp=3&bdt=532&idt=860&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C300x250%2C1268x939%2C155x600&nras=2&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=0&ady=32&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=23&ifi=9&uci=a!9&fsb=1&xpc=8HCvJqsSAP&p=http%3A//musicadda.net&dtd=909
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (436), with no line terminators
Hash 1da40374d313b169cb6d57c1bf7d2a6e
72cae38fd42914e849b04d0cfb97a20e41556eb3
54e4be860818f10aa6e7aa811c2de592f3ab922d34de3d4adc345310d94c7755
GET /pagead/ads?client=ca-pub-5414070771498127&output=html&h=600&slotname=9486025123&adk=1895656336&adf=3222070930&pi=t.ma~as.9486025123&w=160&lmt=1663504336&psa=1&format=160x600&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&wgl=1&dt=1663618032897&bpp=3&bdt=532&idt=860&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C300x250%2C1268x939%2C155x600&nras=2&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=0&ady=32&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=23&ifi=9&uci=a!9&fsb=1&xpc=8HCvJqsSAP&p=http%3A//musicadda.net&dtd=909 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 19 Sep 2022 20:07:35 GMT
server: cafe
content-length: 212
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 20:22:35 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 20:07:35 GMT
cache-control: private
X-Firefox-Spdy: h2
www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
172.217.21.174200 OK 31 B URL HTTP/2 www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP 172.217.21.174:0
File type JSON data\012- , ASCII text
Hash 0517a608635a116d279530f9e79f46c6
d039de7440a05934e6a9f517ef98c460efa701c4
fcdc48636aaf6e5c6123f43decdec565c7a7614a1729283815ecdfb7ae1bef63
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1663618035532
Content-Type: application/json
X-Goog-Visitor-Id: CgttRi0wWXVnbFNoSSiEmKOZBg%3D%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20220914.01.01
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1663618032728&flash=0&frm=2&u_tz&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&bc=23&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C770%2C433&vis=1&wgl=true&ca_type=image
Content-Length: 11205
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/embed/YC5q_PYBUgM?feature=oembed
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Mon, 19 Sep 2022 20:07:35 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+835; expires=Wed, 18-Sep-2024 20:07:35 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 20:07:35 GMT
cache-control: private
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=600&twa=1&slotname=9486025123&adk=744558945&adf=782179303&pi=t.ma~as.9486025123&w=155&fwrn=4&fwrnh=100&lmt=1663504336&psa=1&format=155x600&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&fwr=0&rh=600&rw=155&wgl=1&dt=1663618032895&bpp=2&bdt=530&idt=825&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C300x250%2C1268x939&nras=2&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=1113&ady=32&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=23&ifi=8&uci=a!8&fsb=1&xpc=VvYColnZzY&p=http%3A//musicadda.net&dtd=841
142.250.74.34200 OK 213 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5414070771498127&output=html&h=600&twa=1&slotname=9486025123&adk=744558945&adf=782179303&pi=t.ma~as.9486025123&w=155&fwrn=4&fwrnh=100&lmt=1663504336&psa=1&format=155x600&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&fwr=0&rh=600&rw=155&wgl=1&dt=1663618032895&bpp=2&bdt=530&idt=825&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C300x250%2C1268x939&nras=2&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=1113&ady=32&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=23&ifi=8&uci=a!8&fsb=1&xpc=VvYColnZzY&p=http%3A//musicadda.net&dtd=841
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (436), with no line terminators
Hash 28f5253ec8537117ac1a755b5bbd63f7
07b04ad79f18be915257ef652c008715b515e09e
747be6dce54de8031ec9aafc98dadc57bbfc20070e94d643fe747e6a773c787e
GET /pagead/ads?client=ca-pub-5414070771498127&output=html&h=600&twa=1&slotname=9486025123&adk=744558945&adf=782179303&pi=t.ma~as.9486025123&w=155&fwrn=4&fwrnh=100&lmt=1663504336&psa=1&format=155x600&url=http%3A%2F%2Fmusicadda.net%2Fdiscovery-plus-premium-coupon-code.html%23loaded&fwr=0&rh=600&rw=155&wgl=1&dt=1663618032895&bpp=2&bdt=530&idt=825&shv=r20220915&mjsv=m202209080104&ptt=9&saldr=aa&abxe=1&cookie=ID%3D40b5c5e8820b7768-224af50c27ce004c%3AT%3D1663618050%3ART%3D1663618050%3AS%3DALNI_MZJC5Bd90kylvweElUaIow7dmPvJA&prev_fmts=0x0%2C728x90%2C728x90%2C970x250%2C728x90%2C728x90%2C300x250%2C1268x939&nras=2&correlator=8495883565332&frm=20&pv=1&ga_vid=13037171.1663618030&ga_sid=1663618033&ga_hid=1040761919&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=1113&ady=32&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C44719339%2C31069643&oid=2&pvsid=2816831592255770&tmod=1763162206&nvt=2&eae=0&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CfeE%7C&abl=CF&pfx=0&fu=0&bc=23&ifi=8&uci=a!8&fsb=1&xpc=VvYColnZzY&p=http%3A//musicadda.net&dtd=841 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 19 Sep 2022 20:07:35 GMT
server: cafe
content-length: 213
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 19-Sep-2022 20:22:35 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 20:07:35 GMT
cache-control: private
X-Firefox-Spdy: h2
unphionetor.com/vbri?t=102123&bid=undefined&aid=undefined&tp=4121
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vbri?t=102123&bid=undefined&aid=undefined&tp=4121
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /vbri?t=102123&bid=undefined&aid=undefined&tp=4121 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://musicadda.net
Connection: keep-alive
Referer: http://musicadda.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 19 Sep 2022 20:07:35 GMT
access-control-allow-origin: http://musicadda.net
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: f3e52b1d6eb7786bb60bb4b852920848
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
172.217.21.174200 OK 31 B URL HTTP/2 www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP 172.217.21.174:0
File type JSON data\012- , ASCII text
Hash 0517a608635a116d279530f9e79f46c6
d039de7440a05934e6a9f517ef98c460efa701c4
fcdc48636aaf6e5c6123f43decdec565c7a7614a1729283815ecdfb7ae1bef63
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1663618038526
Content-Type: application/json
X-Goog-Visitor-Id: CgttRi0wWXVnbFNoSSiEmKOZBg%3D%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20220914.01.01
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1663618032728&flash=0&frm=2&u_tz&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&bc=23&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C770%2C433&vis=1&wgl=true&ca_type=image
Content-Length: 525
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/embed/YC5q_PYBUgM?feature=oembed
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Mon, 19 Sep 2022 20:07:38 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+330; expires=Wed, 18-Sep-2024 20:07:38 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 19 Sep 2022 20:07:38 GMT
cache-control: private
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto:wght@400;700&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Roboto:wght@400;700&display=swap
IP 142.250.74.10:0
GET /css2?family=Roboto:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 19 Sep 2022 20:07:33 GMT
date: Mon, 19 Sep 2022 20:07:33 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/YC5q_PYBUgM?feature=oembed
172.217.21.174200 OK 0 B URL HTTP/2 www.youtube.com/embed/YC5q_PYBUgM?feature=oembed
IP 172.217.21.174:0
GET /embed/YC5q_PYBUgM?feature=oembed HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://musicadda.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 19 Sep 2022 20:07:29 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=moWjajjX-R4; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=Jc-fDNxrBGM; Domain=.youtube.com; Expires=Sat, 18-Mar-2023 20:07:29 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+415; expires=Wed, 18-Sep-2024 20:07:29 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 0 B URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Sep 2022 12:31:58 GMT
expires: Sun, 17 Sep 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 200131
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Google%20Sans%3A400%2C500
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Google%20Sans%3A400%2C500
IP 142.250.74.10:0
GET /css?family=Google%20Sans%3A400%2C500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 19 Sep 2022 20:07:31 GMT
date: Mon, 19 Sep 2022 20:07:31 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto:wght@400;700&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Roboto:wght@400;700&display=swap
IP 142.250.74.10:0
GET /css2?family=Roboto:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 19 Sep 2022 20:07:31 GMT
date: Mon, 19 Sep 2022 20:07:31 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted