200 OK 41 kB URL User Request GET HTTP/1.1 IP
ASN #21499 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1416), with CRLF line terminators
Hash 798d51d9b207ba748f35cb02669d1ecb
915a2363dff40b4109800b0c3fd7ce42b64f1214
555c527fe675efa34bfec5e375df1d05fbd9497ee0406542ca20ae124954fa33
GET / HTTP/1.1
Host: coads.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 27 Nov 2023 23:19:57 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 40663
Keep-Alive: timeout=5
Content-Type: text/html; charset=UTF-8
coads.eu/hs/hsstatic/jquery-libs/static-1.1/jquery/jquery-1.7.1.js
0 B URL GET coads.eu/hs/hsstatic/jquery-libs/static-1.1/jquery/jquery-1.7.1.js
IP
ASN #21499 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /hs/hsstatic/jquery-libs/static-1.1/jquery/jquery-1.7.1.js HTTP/1.1
Host: coads.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://coads.eu/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Date: Mon, 27 Nov 2023 23:19:58 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
Location: https://s.deltraff.com/?k=5e61457615e78
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
play.vidyard.com/embed/v4.js
200 OK 23 kB URL GET HTTP/2 play.vidyard.com/embed/v4.js
IP
Certificate IssuerGlobalSign nv-sa
Subject*.vidyard.com
FingerprintA9:39:04:EA:39:EA:B5:76:43:6E:1F:16:FE:8D:18:E4:F1:7B:78:45
ValiditySat, 01 Jul 2023 21:45:14 GMT - Thu, 01 Aug 2024 21:45:13 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash d22850d6ed493dad3ff1a51479d730cc
4f8ce282f19c81355e6dfe349e78df2ffd49f47c
e492e5bd630a86a679a9ead911fc5e1e155d75098344c375131c40470e97396d
GET /embed/v4.js HTTP/1.1
Host: play.vidyard.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://coads.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Mon, 28 Aug 2023 17:07:01 GMT
etag: "d22850d6ed493dad3ff1a51479d730cc"
x-amz-server-side-encryption: AES256
cache-control: no-cache, no-store, must-revalidate
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-type: application/javascript
x-china: 0
content-encoding: gzip
accept-ranges: bytes
date: Mon, 27 Nov 2023 23:19:58 GMT
via: 1.1 varnish
age: 5110
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1
vary: X-China, accept-language, Accept-Encoding
strict-transport-security: max-age=31557600
content-length: 23031
X-Firefox-Spdy: h2
cdn-3.convertexperiments.com/js/10031559-1003891.js
301 Moved Permanently 0 B URL GET HTTP/1.1 cdn-3.convertexperiments.com/js/10031559-1003891.js
IP
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/10031559-1003891.js HTTP/1.1
Host: cdn-3.convertexperiments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://coads.eu/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Location: https://cdn-3.convertexperiments.com/js/10031559-1003891.js
Date: Mon, 27 Nov 2023 23:19:58 GMT
Connection: keep-alive
creativereview.imgix.net/content/uploads/2012/02/gcjdicampaignlina2_0.jpg?auto=compress,format&q=60&w=569&h=804
200 OK 56 kB URL GET HTTP/2 creativereview.imgix.net/content/uploads/2012/02/gcjdicampaignlina2_0.jpg?auto=compress,format&q=60&w=569&h=804
IP
Certificate IssuerGlobalSign nv-sa
Subject*.imgix.com
FingerprintB4:E4:B7:6D:A3:73:77:08:35:9C:5A:31:F8:BC:B9:C0:D4:91:E5:D4
ValiditySun, 05 Mar 2023 12:38:15 GMT - Fri, 05 Apr 2024 12:38:14 GMT
File type ISO Media, AVIF Image\012- data
Hash 150b5acff57b4eb64c8ec9ea35a50c2d
e8c118df88f202b67c19a34ce0c5c52454a52999
def92a3deb13b24db322b84988021203da33196037d17d4c66f4966c40186b64
GET /content/uploads/2012/02/gcjdicampaignlina2_0.jpg?auto=compress,format&q=60&w=569&h=804 HTTP/1.1
Host: creativereview.imgix.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://coads.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Tue, 24 Oct 2023 09:23:13 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: 2cfab4c24452f47f9e9f89e71ae031033d62f14b
x-imgix-render-farm: 01.140328
date: Mon, 27 Nov 2023 23:19:58 GMT
age: 2987805
accept-ranges: bytes
content-type: image/avif
access-control-allow-origin: *
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10064-SJC, cache-bma1641-BMA
x-cache: HIT, HIT
vary: Accept, User-Agent
content-length: 56516
X-Firefox-Spdy: h2
www.smartinsights.com/wp-content/uploads/2018/08/Absolut-Rent-Branvin.jpg
200 OK 108 kB URL GET HTTP/2 www.smartinsights.com/wp-content/uploads/2018/08/Absolut-Rent-Branvin.jpg
IP
Certificate IssuerCloudflare, Inc.
Subjectsmartinsights.com
Fingerprint44:02:6C:93:62:23:1A:9F:1F:F1:B5:60:4C:42:C3:85:F6:D0:D3:9C
ValidityFri, 10 Mar 2023 00:00:00 GMT - Sat, 09 Mar 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1017x677, components 3\012- data
Size 108 kB (108400 bytes)
Hash 206fb6c5126f3e4fe758aefc3f750551
030f11f4101ab6681b2c1e39911f7fc9393521ae
59b586a399652f15d4f84515c2660be1f9ef85d9d732038570b5fc4b8ded1f79
GET /wp-content/uploads/2018/08/Absolut-Rent-Branvin.jpg HTTP/1.1
Host: www.smartinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://coads.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Nov 2023 23:19:58 GMT
content-type: image/jpeg
content-length: 108400
cache-control: public, max-age=2592000
expires: Wed, 27 Dec 2023 23:19:58 GMT
last-modified: Wed, 20 Mar 2019 08:31:40 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: base-uri 'self'; frame-ancestors 'self' https://*.smartinsights.com; frame-src 'self' https://intercom-sheets.com https://ff.doubleclick.net https://cdn.embedly.com https://www.google.com https://td.doubleclick.net https://securepubads.g.doubleclick.net https://staticxx.facebook.com https://www.facebook.com https://www.g2.com https://www.g2crowd.com/ https://vars.hotjar.com https://go.pardot.com https://*.smartinsights.com https://optimize.google.com https://checkout.stripe.com http://www.scribd.com https://www.slideshare.net/ https://js.stripe.com https://*.twitter.com https://*.vimeo.com https://youtu.be https://*.youtube.com https://www.youtube-nocookie.com https://*.seedprod.com; img-src data: *; script-src 'self' 'unsafe-inline' 'unsafe-eval' http://*.omappapi.com https://4screens.net https://ws.amazon.co.uk https://z-eu.amazon-adsystem.com https://s3-us-west-1.amazonaws.com https://cdn.ampproject.org https://sjs.bizographics.com https://*.cloudflare.com https://*.cloudflareinsights.com https://*.cloudfront.net https://secure.comodo.com https://*.convertexperiments.com https://*.g.doubleclick.net https://connect.facebook.net https://t.gatorleads.co.uk https://adservice.google.co.uk https://adservice.google.com https://apis.google.com https://www.google.com https://www.google-analytics.com https://www.googleadservices.com https://ajax.googleapis.com https://optimize.google.com https://www.googleoptimize.com https://www.googletagmanager.com https://www.googletagservices.com https://googletagservices.com https://securepubads.g.doubleclick.net https://www.gstatic.com https://*.hotjar.com https://instant.page https://widget.intercom.io https://js.intercomcdn.com https://e.issuu.com https://code.jquery.com https://cdn.jsdelivr.net https://snap.licdn.com/ https://platform.linkedin.com https://*.newrelic.com https://bam.nr-data.net https://a.opmnstr.com https://api.opmnstr.com https://*.pardot.com https://assets.pinterest.com https://secure.polldaddy.com https://scout-cdn.salesloft.com https://app.seedprod.com https://*.smartinsights.com https://checkout.stripe.com https://js.stripe.com https://static.ads-twitter.com https://analytics.twitter.com https://cdn.syndication.twimg.com https://platform.twitter.com https://unpkg.com https://platform.vine.co https://visual.ly https://fast.wistia.com https://t.wowanalytics.co.uk; style-src 'self' 'unsafe-inline' https://code.ionicframework.com https://fonts.googleapis.com https://optimize.google.com https://cdn.jsdelivr.net https://cdn.pardot.com https://pi.pardot.com https://checkout.stripe.com https://static.ads-twitter.com https://*.twitter.com https://*.smartinsights.com https://*.omappapi.com;
x-ua-compatible: IE=edge
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 82ce195c4beb56ca-OSL
X-Firefox-Spdy: h2
coads.eu/hs/cta/cta/current.js
0 B URL GET coads.eu/hs/cta/cta/current.js
IP
ASN #21499 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /hs/cta/cta/current.js HTTP/1.1
Host: coads.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://coads.eu/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Date: Mon, 27 Nov 2023 23:19:58 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://s.deltraff.com/?k=5e61457615e78
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5
Content-Type: text/html; charset=UTF-8
coads.eu/_hcms/forms/v2.js
0 B URL GET coads.eu/_hcms/forms/v2.js
IP
ASN #21499 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_hcms/forms/v2.js HTTP/1.1
Host: coads.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://coads.eu/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Date: Mon, 27 Nov 2023 23:19:58 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://s.deltraff.com/?k=5e61457615e78
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5
Content-Type: text/html; charset=UTF-8
coads.eu/hs/scriptloader/53.js
0 B URL GET coads.eu/hs/scriptloader/53.js
IP
ASN #21499 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /hs/scriptloader/53.js HTTP/1.1
Host: coads.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://coads.eu/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Date: Mon, 27 Nov 2023 23:19:58 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://s.deltraff.com/?k=5e61457615e78
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5
Content-Type: text/html; charset=UTF-8
coads.eu/hs/hsstatic/cos-i18n/static-1.53/bundles/project.js
0 B URL GET coads.eu/hs/hsstatic/cos-i18n/static-1.53/bundles/project.js
IP
ASN #21499 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /hs/hsstatic/cos-i18n/static-1.53/bundles/project.js HTTP/1.1
Host: coads.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://coads.eu/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Date: Mon, 27 Nov 2023 23:19:58 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://s.deltraff.com/?k=5e61457615e78
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5
Content-Type: text/html; charset=UTF-8
coads.eu/hs/hsstatic/HubspotToolsMenu/static-1.128/js/index.js
0 B URL GET coads.eu/hs/hsstatic/HubspotToolsMenu/static-1.128/js/index.js
IP
ASN #21499 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /hs/hsstatic/HubspotToolsMenu/static-1.128/js/index.js HTTP/1.1
Host: coads.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://coads.eu/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Date: Mon, 27 Nov 2023 23:19:58 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://s.deltraff.com/?k=5e61457615e78
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5
Content-Type: text/html; charset=UTF-8
cdn.ampproject.org/v0/amp-analytics-0.1.js
200 OK 32 kB URL GET HTTP/2 cdn.ampproject.org/v0/amp-analytics-0.1.js
IP
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT
File type ASCII text, with very long lines (65534)
Hash 801f8606c836a922c9997caab0309e88
85c4be48ecfe63911569ebeb2ff5d9f49f6f283d
afe48129d69d1636977964c86ba5a17bc8105402afa294c0a61300f6df050a63
GET /v0/amp-analytics-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://coads.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 32227
date: Mon, 27 Nov 2023 23:19:58 GMT
expires: Mon, 27 Nov 2023 23:19:58 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "705776dc36d17428"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn-3.convertexperiments.com/js/10031559-1003891.js
301 Moved Permanently 78 kB URL GET HTTP/1.1 cdn-3.convertexperiments.com/js/10031559-1003891.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (32087)
Hash ea3d047ea205a9700c1116fa96833d44
fd877d4df645d5bd3889253148b89a88a44dfb86
6544495c95c3b9d5413a7cac1abcd56fe0f1bb40d5ef1c4a55524814477ea33d
GET /js/10031559-1003891.js HTTP/1.1
Host: cdn-3.convertexperiments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://coads.eu/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
x-privacy-policy: You can find our privacy policy at https://www.convert.com/privacy-notice/
vary: Accept-Encoding
content-encoding: gzip
content-length: 77579
cache-control: public, max-age=300
date: Mon, 27 Nov 2023 23:19:58 GMT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
coads.eu/hs/cta/cta/current.js
0 B URL GET coads.eu/hs/cta/cta/current.js
IP
ASN #21499 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /hs/cta/cta/current.js HTTP/1.1
Host: coads.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://coads.eu/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Date: Mon, 27 Nov 2023 23:19:59 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
Location: https://s.deltraff.com/?k=5e61457615e78
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
coads.eu/hs/cta/cta/current.js
0 B URL GET coads.eu/hs/cta/cta/current.js
IP
ASN #21499 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /hs/cta/cta/current.js HTTP/1.1
Host: coads.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://coads.eu/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Date: Mon, 27 Nov 2023 23:19:59 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
Location: https://s.deltraff.com/?k=5e61457615e78
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.youtube.com/s/player/63e90c30/player_ias.vflset/en_US/embed.js
200 OK 18 kB URL GET HTTP/3 www.youtube.com/s/player/63e90c30/player_ias.vflset/en_US/embed.js
IP
Requested by https://www.youtube.com/embed/9gspElv1yvc?feature=oembed
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (3391)
Hash 50bbf688f33e38d5f7c5f2a73c02aa7a
67f82d27e93488dad1da215155fedb8744066738
d5277513b55f5e850101f15939c3dde471282e1a737d4d54cd347d4c28aa99c2
GET /s/player/63e90c30/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/9gspElv1yvc?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 17775
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 27 Nov 2023 08:39:16 GMT
expires: Tue, 26 Nov 2024 08:39:16 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 20 Nov 2023 02:45:49 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 52843
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/s/player/63e90c30/www-player.css
200 OK 49 kB URL GET HTTP/3 www.youtube.com/s/player/63e90c30/www-player.css
IP
Requested by https://www.youtube.com/embed/9gspElv1yvc?feature=oembed
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash fe1c53d51cb92c2a5d115aaa327f89ff
121246c952d00cbe64196f9afb88823f1190ce13
0d3110815e47322fa8c8821c53234f4f90ff9107501b4d74741dfe6e8250e24a
GET /s/player/63e90c30/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/9gspElv1yvc?feature=oembed
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 48811
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 27 Nov 2023 08:32:17 GMT
expires: Tue, 26 Nov 2024 08:32:17 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 20 Nov 2023 02:45:49 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 53262
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/s/player/63e90c30/www-embed-player.vflset/www-embed-player.js
200 OK 99 kB URL GET HTTP/3 www.youtube.com/s/player/63e90c30/www-embed-player.vflset/www-embed-player.js
IP
Requested by https://www.youtube.com/embed/9gspElv1yvc?feature=oembed
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (682)
Hash 29d728b01da2b497000a84aba115257e
84fb48d68c9bac9efb1d3aec0a32c0ded4cb461a
c31a04c8fb061c363792f34fb8b368d710ca6baa750e58ad587699d916aa5a52
GET /s/player/63e90c30/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/9gspElv1yvc?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 98564
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 27 Nov 2023 08:32:17 GMT
expires: Tue, 26 Nov 2024 08:32:17 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 20 Nov 2023 02:45:49 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 53262
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/s/player/63e90c30/player_ias.vflset/en_US/base.js
200 OK 781 kB URL GET HTTP/3 www.youtube.com/s/player/63e90c30/player_ias.vflset/en_US/base.js
IP
Requested by https://www.youtube.com/embed/9gspElv1yvc?feature=oembed
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (555)
Size 781 kB (781027 bytes)
Hash c502246556fb79bbbb83d4f036ea963f
4ab8182f4453dd4808b94aa76d98eb08e46128ae
7896bc3b93023bc401267007bec8ff688d9c42021c94eb9289cdac09c58ffb54
GET /s/player/63e90c30/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/9gspElv1yvc?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-encoding: gzip
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 781027
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 27 Nov 2023 08:34:52 GMT
expires: Tue, 26 Nov 2024 08:34:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 20 Nov 2023 02:45:49 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 53107
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://www.youtube.com/embed/9gspElv1yvc?feature=oembed
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Nov 2023 21:51:07 GMT
expires: Thu, 21 Nov 2024 21:51:07 GMT
cache-control: public, max-age=31536000
age: 437332
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
Requested by https://www.youtube.com/embed/9gspElv1yvc?feature=oembed
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 20 Nov 2023 23:42:20 GMT
expires: Tue, 19 Nov 2024 23:42:20 GMT
cache-control: public, max-age=31536000
age: 603459
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/1Wx4WVEhwpNLtCLlRV1mXenkTI3TN7jizN7JfzX0EE6oDH7l_Ld8WIr_EeiHBO5VyflhI9UOgxa9iUvJN-HuBdhjq7RbMkv4DEBKrGMWpm5yXKazP2dtJfSoJxEs7BdtfSUtbBrl
200 OK 42 kB URL GET HTTP/2 lh3.googleusercontent.com/1Wx4WVEhwpNLtCLlRV1mXenkTI3TN7jizN7JfzX0EE6oDH7l_Ld8WIr_EeiHBO5VyflhI9UOgxa9iUvJN-HuBdhjq7RbMkv4DEBKrGMWpm5yXKazP2dtJfSoJxEs7BdtfSUtbBrl
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 598x314, components 3\012- data
Hash ee1ac5c78259a68ba58668e788b4b79e
20319e0ac8ed02e538d57b145de6b8e24503c7b0
ba5cc78a7c6ae915e42426b00d47f0c05b5ef765b8d42e6c2bd4bf042d0c231d
GET /1Wx4WVEhwpNLtCLlRV1mXenkTI3TN7jizN7JfzX0EE6oDH7l_Ld8WIr_EeiHBO5VyflhI9UOgxa9iUvJN-HuBdhjq7RbMkv4DEBKrGMWpm5yXKazP2dtJfSoJxEs7BdtfSUtbBrl HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://coads.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="Untitled.jpg"
x-content-type-options: nosniff
server: fife
content-length: 42191
x-xss-protection: 0
date: Mon, 27 Nov 2023 23:20:00 GMT
expires: Tue, 28 Nov 2023 23:20:00 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/jpeg
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh6.googleusercontent.com/xiHb7Yxn3PdnB4PWTAMEJRP586V4PbIapj0yqggRbEV7k1L5YwBn_bVbt-snGebg57H4p3-RKFgqurhl5X57TUYbg_ulbEoLIYNDppNPOguU9NMmA_LT7RBpW70Ligul93E0PvvN
200 OK 42 kB URL GET HTTP/2 lh6.googleusercontent.com/xiHb7Yxn3PdnB4PWTAMEJRP586V4PbIapj0yqggRbEV7k1L5YwBn_bVbt-snGebg57H4p3-RKFgqurhl5X57TUYbg_ulbEoLIYNDppNPOguU9NMmA_LT7RBpW70Ligul93E0PvvN
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 599x330, components 3\012- data
Hash 380eed444b21caa541de3e72f9787a1f
eb27fa29018bd95a2a9a80e95bfa16f92a83d8ea
d1fc35c0235a4ee40109e8f71e63a960ed9ccc57abe3e15e8be66d821c22e309
GET /xiHb7Yxn3PdnB4PWTAMEJRP586V4PbIapj0yqggRbEV7k1L5YwBn_bVbt-snGebg57H4p3-RKFgqurhl5X57TUYbg_ulbEoLIYNDppNPOguU9NMmA_LT7RBpW70Ligul93E0PvvN HTTP/1.1
Host: lh6.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://coads.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Tue, 28 Nov 2023 23:20:00 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Untitled.jpg"
x-content-type-options: nosniff
date: Mon, 27 Nov 2023 23:20:00 GMT
server: fife
content-length: 42498
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh4.googleusercontent.com/OQIsYZ4pPpZYJn69AxlAlzwGsPU-t1QK4I27Rgyr3MjsahOVMf1YWjcN7wL4Qfj5uBeScPC7gASSmMMWL5p1dUtApoKgRhEjkRTrruJTSIlu5FSnGVCTuFfVtxuA1MucGBQbVrQ5
200 OK 795 kB URL GET HTTP/2 lh4.googleusercontent.com/OQIsYZ4pPpZYJn69AxlAlzwGsPU-t1QK4I27Rgyr3MjsahOVMf1YWjcN7wL4Qfj5uBeScPC7gASSmMMWL5p1dUtApoKgRhEjkRTrruJTSIlu5FSnGVCTuFfVtxuA1MucGBQbVrQ5
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT
File type PNG image data, 1600 x 798, 8-bit/color RGB, non-interlaced\012- data
Size 795 kB (795100 bytes)
Hash 62f33211e7218ff25bb54eec221a10c7
af663ec9c92187e8a7b4acb8a9b98e0f8ba03e8b
a1ca2bf4dcc8cb430c16c8645fbfbf591844df859f09298192408ed280f9f2a1
GET /OQIsYZ4pPpZYJn69AxlAlzwGsPU-t1QK4I27Rgyr3MjsahOVMf1YWjcN7wL4Qfj5uBeScPC7gASSmMMWL5p1dUtApoKgRhEjkRTrruJTSIlu5FSnGVCTuFfVtxuA1MucGBQbVrQ5 HTTP/1.1
Host: lh4.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://coads.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Tue, 28 Nov 2023 23:20:00 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Untitled.png"
x-content-type-options: nosniff
date: Mon, 27 Nov 2023 23:20:00 GMT
server: fife
content-length: 795100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh6.googleusercontent.com/gl90wNq32XFCvAufDRhubBTKEoJ21gY9F--Y5rF9p6xmojZuqtZ-_Qx-sOK__2zi5CoBEnxhUV0n1yMUDQQnV34XGROsBKjHB8MvjW2WiNrxCL_l5kl1PtknIqJ5PQhpog2vmsFg
200 OK 27 kB URL GET HTTP/2 lh6.googleusercontent.com/gl90wNq32XFCvAufDRhubBTKEoJ21gY9F--Y5rF9p6xmojZuqtZ-_Qx-sOK__2zi5CoBEnxhUV0n1yMUDQQnV34XGROsBKjHB8MvjW2WiNrxCL_l5kl1PtknIqJ5PQhpog2vmsFg
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 542x277, components 3\012- data
Hash d670dead4749c2506a2c455f6f794a76
27c1ca5893571cacba12a0f1cd6d16ab110aaf8a
2679b2dc8b4c0a8cf7b4c6af8303daf4da06fd9173d2d5851b1f3002a257e43d
GET /gl90wNq32XFCvAufDRhubBTKEoJ21gY9F--Y5rF9p6xmojZuqtZ-_Qx-sOK__2zi5CoBEnxhUV0n1yMUDQQnV34XGROsBKjHB8MvjW2WiNrxCL_l5kl1PtknIqJ5PQhpog2vmsFg HTTP/1.1
Host: lh6.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://coads.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Tue, 28 Nov 2023 23:20:00 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Untitled.jpg"
x-content-type-options: nosniff
date: Mon, 27 Nov 2023 23:20:00 GMT
server: fife
content-length: 26794
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/WcjgK1VQlplV2qaNkHz3QHznFbhAA2BAkGg9ws-fTlGaj_MpaIuvPxROs5acdbLyo80yupas77KT9y10mXdmLa6sgRZcba3WP-jGMj84gw-MJKipixCbvMRPr8rkzxsRCf4VMg97
200 OK 46 kB URL GET HTTP/2 lh3.googleusercontent.com/WcjgK1VQlplV2qaNkHz3QHznFbhAA2BAkGg9ws-fTlGaj_MpaIuvPxROs5acdbLyo80yupas77KT9y10mXdmLa6sgRZcba3WP-jGMj84gw-MJKipixCbvMRPr8rkzxsRCf4VMg97
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 550x690, components 3\012- data
Hash 598058f2b1e047ce24d6bb0e4711fce4
7e4f510ece005b0d35608ef0f678ecc858745024
1bddffcc34516da32c757e2c69a9ae028d5061c7b83b65f91eb41e40ae061123
GET /WcjgK1VQlplV2qaNkHz3QHznFbhAA2BAkGg9ws-fTlGaj_MpaIuvPxROs5acdbLyo80yupas77KT9y10mXdmLa6sgRZcba3WP-jGMj84gw-MJKipixCbvMRPr8rkzxsRCf4VMg97 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://coads.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Tue, 28 Nov 2023 23:20:00 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Untitled.jpg"
x-content-type-options: nosniff
date: Mon, 27 Nov 2023 23:20:00 GMT
server: fife
content-length: 45778
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/RR6yt71oAM2zYq9raIkjGyqfXF3ouinnJTZXfxeLPuDTYLuTwGhebC6Tz_HYkxekN4QxtSrHB69nbOT41AOOjivsOPLl8E2sE6b6foP7endhxQrEFLJPzDjSohOjYrU5SVbDwlTM
200 OK 111 kB URL GET HTTP/2 lh3.googleusercontent.com/RR6yt71oAM2zYq9raIkjGyqfXF3ouinnJTZXfxeLPuDTYLuTwGhebC6Tz_HYkxekN4QxtSrHB69nbOT41AOOjivsOPLl8E2sE6b6foP7endhxQrEFLJPzDjSohOjYrU5SVbDwlTM
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT
File type PNG image data, 539 x 674, 8-bit grayscale, non-interlaced\012- data
Size 111 kB (111336 bytes)
Hash d1137eadbbf5739b8f63fa24c2af32d6
526031313731b0c5fa030f50f48d7b21cd8cb976
01909e0949f11b68a0448f0b62b3c1b5bd36f4b1a9b1a70d13e96df73865fc61
GET /RR6yt71oAM2zYq9raIkjGyqfXF3ouinnJTZXfxeLPuDTYLuTwGhebC6Tz_HYkxekN4QxtSrHB69nbOT41AOOjivsOPLl8E2sE6b6foP7endhxQrEFLJPzDjSohOjYrU5SVbDwlTM HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://coads.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Tue, 28 Nov 2023 23:20:00 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Untitled.png"
x-content-type-options: nosniff
date: Mon, 27 Nov 2023 23:20:00 GMT
server: fife
content-length: 111336
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/DKgpJV2KwBKFNHGkDL2jMZxAE9h-xBXn8wVj67IfpELN4PO8yuosJ99a8k7pY5nPwnw50P9qdzbXmxBNkYycSs4EV17c31BS2WXRMAQJIHJxkLyPDLCD42BaZ2yqrCj4p3KPCu1B
200 OK 53 kB URL GET HTTP/2 lh3.googleusercontent.com/DKgpJV2KwBKFNHGkDL2jMZxAE9h-xBXn8wVj67IfpELN4PO8yuosJ99a8k7pY5nPwnw50P9qdzbXmxBNkYycSs4EV17c31BS2WXRMAQJIHJxkLyPDLCD42BaZ2yqrCj4p3KPCu1B
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 376x574, components 3\012- data
Hash 985bd72d37bf1a7101592a48e9984a2b
8311c20d2e3bbb9db47aee45e7ca31f7dcf5887b
58218ee1f0ed9249973b2784f07e9830645a93cd739fcbdbfb8275c22b1ed61a
GET /DKgpJV2KwBKFNHGkDL2jMZxAE9h-xBXn8wVj67IfpELN4PO8yuosJ99a8k7pY5nPwnw50P9qdzbXmxBNkYycSs4EV17c31BS2WXRMAQJIHJxkLyPDLCD42BaZ2yqrCj4p3KPCu1B HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://coads.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Tue, 28 Nov 2023 23:20:00 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Untitled.jpg"
x-content-type-options: nosniff
date: Mon, 27 Nov 2023 23:20:00 GMT
server: fife
content-length: 53324
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh6.googleusercontent.com/fqpNcQYpzueue6Z54nyPggecZoIyDAVbbR80vvrTzTuYOa1eiQjkzX0kgw-c23yvB9RlHbJ_d4hIRJ-UYTr-k-wAFQK05wR2GTRpBifKT8LEwZrZjYOCAdqX8BXhNc6Xu-GaF3z5
200 OK 35 kB URL GET HTTP/2 lh6.googleusercontent.com/fqpNcQYpzueue6Z54nyPggecZoIyDAVbbR80vvrTzTuYOa1eiQjkzX0kgw-c23yvB9RlHbJ_d4hIRJ-UYTr-k-wAFQK05wR2GTRpBifKT8LEwZrZjYOCAdqX8BXhNc6Xu-GaF3z5
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 410x562, components 3\012- data
Hash 32225b8f4689c19b1d6839319d341f6a
a37812376c972db9ec1a7d1dea23753ef01a3430
19ca7f7ab181e61f878f5af80cfa0872f2020b8c3bbae05d3484497806feab22
GET /fqpNcQYpzueue6Z54nyPggecZoIyDAVbbR80vvrTzTuYOa1eiQjkzX0kgw-c23yvB9RlHbJ_d4hIRJ-UYTr-k-wAFQK05wR2GTRpBifKT8LEwZrZjYOCAdqX8BXhNc6Xu-GaF3z5 HTTP/1.1
Host: lh6.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://coads.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Tue, 28 Nov 2023 23:20:00 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Untitled.jpg"
x-content-type-options: nosniff
date: Mon, 27 Nov 2023 23:20:00 GMT
server: fife
content-length: 35330
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh4.googleusercontent.com/YkPqhi_WVE18BCPRvCBiRM_KKcUg6sb3nvb2aDpOxXbKsdFMVktYGZW4qyJpwEOLxM73lZPmHU5irLAFou6A1jh2YHz6ksKn5N2CwO2pA8fFhXAZiMasE9882F0p37hzjMDeObre
200 OK 55 kB URL GET HTTP/2 lh4.googleusercontent.com/YkPqhi_WVE18BCPRvCBiRM_KKcUg6sb3nvb2aDpOxXbKsdFMVktYGZW4qyJpwEOLxM73lZPmHU5irLAFou6A1jh2YHz6ksKn5N2CwO2pA8fFhXAZiMasE9882F0p37hzjMDeObre
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 600x562, components 3\012- data
Hash 8438ad5e53b6c04261feb884e835d9a5
0165fa26c4407ab5815b02c8eebefbcc737c2601
3a6ab03f3da3c7721261a101bb493d073d51ce8b6a33f0b8c377bbfe0d24d06b
GET /YkPqhi_WVE18BCPRvCBiRM_KKcUg6sb3nvb2aDpOxXbKsdFMVktYGZW4qyJpwEOLxM73lZPmHU5irLAFou6A1jh2YHz6ksKn5N2CwO2pA8fFhXAZiMasE9882F0p37hzjMDeObre HTTP/1.1
Host: lh4.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://coads.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Tue, 28 Nov 2023 23:20:00 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Untitled.jpg"
x-content-type-options: nosniff
date: Mon, 27 Nov 2023 23:20:00 GMT
server: fife
content-length: 54555
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/fgoMHmrFAaefXUNUpTzhxvM2vOvleTJ-3_EwAHLumB7HEZJgEJXRzDAmQ0gXWYSKyNGRv6wLleHcFNP22OF9ZRKwQuTl72seuCntdp5em8RVKlZQ4AhujSonfORqb7j1QurT98se
200 OK 190 kB URL GET HTTP/2 lh3.googleusercontent.com/fgoMHmrFAaefXUNUpTzhxvM2vOvleTJ-3_EwAHLumB7HEZJgEJXRzDAmQ0gXWYSKyNGRv6wLleHcFNP22OF9ZRKwQuTl72seuCntdp5em8RVKlZQ4AhujSonfORqb7j1QurT98se
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 1x1, segment length 16, baseline, precision 8, 1600x1065, components 3\012- data
Size 190 kB (190354 bytes)
Hash 0005a85de4262deca68350259740ebaf
c92728a133bc2f5e44dc6310fac3543f45fa9e17
521fc1ec6e28479c3ae02cc1ef5137a8ed8bd244555fa38625a9e523d966a501
GET /fgoMHmrFAaefXUNUpTzhxvM2vOvleTJ-3_EwAHLumB7HEZJgEJXRzDAmQ0gXWYSKyNGRv6wLleHcFNP22OF9ZRKwQuTl72seuCntdp5em8RVKlZQ4AhujSonfORqb7j1QurT98se HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://coads.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Tue, 28 Nov 2023 23:20:00 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Untitled.jpg"
x-content-type-options: nosniff
date: Mon, 27 Nov 2023 23:20:00 GMT
server: fife
content-length: 190354
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/lJjt3lSZ5e5qV5AEpDiN1P74VJJQT5SA-MQeQAcTeBME-DPmSBVRl91xb7ek9-TI4tKjmVjxqxEmM9FiKWAxovMwHPowSh6qzsjEdI8yiy63ln5-_IlMfRpn9LtR5CYBFz3Kty_X
200 OK 100 kB URL GET HTTP/2 lh3.googleusercontent.com/lJjt3lSZ5e5qV5AEpDiN1P74VJJQT5SA-MQeQAcTeBME-DPmSBVRl91xb7ek9-TI4tKjmVjxqxEmM9FiKWAxovMwHPowSh6qzsjEdI8yiy63ln5-_IlMfRpn9LtR5CYBFz3Kty_X
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 600x591, components 3\012- data
Hash abf234d0fa69e4ab54a7a86a58d54b32
84ec26f6a0b8732c05b77f1eaff9096def9f622c
4c68d513f35a8b0ceaecc841d6f69ddacda5bbed99a80a2c406d6ea1b98a0492
GET /lJjt3lSZ5e5qV5AEpDiN1P74VJJQT5SA-MQeQAcTeBME-DPmSBVRl91xb7ek9-TI4tKjmVjxqxEmM9FiKWAxovMwHPowSh6qzsjEdI8yiy63ln5-_IlMfRpn9LtR5CYBFz3Kty_X HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://coads.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Tue, 28 Nov 2023 23:20:00 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Untitled.jpg"
x-content-type-options: nosniff
date: Mon, 27 Nov 2023 23:20:00 GMT
server: fife
content-length: 99563
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i.ytimg.com/vi/9gspElv1yvc/hqdefault.jpg?sqp=-oaymwEmCOADEOgC8quKqQMa8AEB-AGqAoAC8AGKAgwIABABGHIgSyg0MA8=&rs=AOn4CLBXXsM6fp_kdPSrxF8UjMhlxJ6eBg
200 OK 16 kB URL GET HTTP/2 i.ytimg.com/vi/9gspElv1yvc/hqdefault.jpg?sqp=-oaymwEmCOADEOgC8quKqQMa8AEB-AGqAoAC8AGKAgwIABABGHIgSyg0MA8=&rs=AOn4CLBXXsM6fp_kdPSrxF8UjMhlxJ6eBg
IP
Requested by https://www.youtube.com/embed/9gspElv1yvc?feature=oembed
Certificate IssuerGoogle Trust Services LLC
Subjectedgestatic.com
FingerprintC8:30:4C:1A:A8:FF:83:E1:A2:7F:DB:02:8C:D9:05:46:C4:D6:CA:95
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 450x360, components 3\012- data
Hash 5e6d3a8f2c5dcb3a16c9b53619c6fe51
2d8dfb540d366ce4f134045ad3dbd532054be5a9
0f36de9e8c8f8c75ba0bdc9be78f51928b4cf4c4453aab163fa25238f43d981b
GET /vi/9gspElv1yvc/hqdefault.jpg?sqp=-oaymwEmCOADEOgC8quKqQMa8AEB-AGqAoAC8AGKAgwIABABGHIgSyg0MA8=&rs=AOn4CLBXXsM6fp_kdPSrxF8UjMhlxJ6eBg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 16516
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 27 Nov 2023 23:20:01 GMT
expires: Tue, 28 Nov 2023 01:20:01 GMT
cache-control: public, max-age=7200
etag: "0"
content-type: image/jpeg
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/s/player/63e90c30/player_ias.vflset/en_US/remote.js
200 OK 34 kB URL GET HTTP/3 www.youtube.com/s/player/63e90c30/player_ias.vflset/en_US/remote.js
IP
Requested by https://www.youtube.com/embed/9gspElv1yvc?feature=oembed
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (537)
Hash bb11333549b97c894abafc17939eb2d4
10a398d001c1f1ea93cf07861387c6995d0d8b37
01c5f418a4a809a6d77d96d45400039618c369827340e94db9dc6248571c52f0
GET /s/player/63e90c30/player_ias.vflset/en_US/remote.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/9gspElv1yvc?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 33498
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 27 Nov 2023 08:37:43 GMT
expires: Tue, 26 Nov 2024 08:37:43 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 20 Nov 2023 02:45:49 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 52938
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
yt3.ggpht.com/ytc/APkrFKb33AcJgUcrYPhanMbCXo7m3jaHQDHE7K4aUQ=s68-c-k-c0x00ffffff-no-rj
200 OK 697 B URL GET HTTP/2 yt3.ggpht.com/ytc/APkrFKb33AcJgUcrYPhanMbCXo7m3jaHQDHE7K4aUQ=s68-c-k-c0x00ffffff-no-rj
IP
Requested by https://www.youtube.com/embed/9gspElv1yvc?feature=oembed
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash d3ff16f3651f7cfb678d590509a1a5f2
53d6aae548d500599d86a0593713f2b92aae80c3
c2907f0ec13ecaea70d67e33f613035e75f41ee497b865f8e3b3f9ed906028ab
GET /ytc/APkrFKb33AcJgUcrYPhanMbCXo7m3jaHQDHE7K4aUQ=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
expires: Tue, 28 Nov 2023 23:20:01 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
x-content-type-options: nosniff
date: Mon, 27 Nov 2023 23:20:01 GMT
server: fife
content-length: 697
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/js/th/iPEf94t7kg41AT9t4roGKH7lRPlVKxurQ2Q3DUZ2d_o.js
200 OK 15 kB URL GET HTTP/2 www.google.com/js/th/iPEf94t7kg41AT9t4roGKH7lRPlVKxurQ2Q3DUZ2d_o.js
IP
Requested by https://www.youtube.com/embed/9gspElv1yvc?feature=oembed
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintB0:8E:97:10:7E:30:90:F6:42:A1:32:63:5C:78:27:D3:A8:F1:05:D1
ValidityMon, 23 Oct 2023 11:24:57 GMT - Mon, 15 Jan 2024 11:24:56 GMT
File type ASCII text, with very long lines (38778)
Hash 611664198e75adad39f34b46876810f4
e4a80a37ddbebff8794b6edcaa73e55152208f24
88f11ff78b7b920e35013f6de2ba06287ee544f9552b1bab4364370d467677fa
GET /js/th/iPEf94t7kg41AT9t4roGKH7lRPlVKxurQ2Q3DUZ2d_o.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 15286
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 25 Nov 2023 05:20:10 GMT
expires: Sun, 24 Nov 2024 05:20:10 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 06 Nov 2023 17:00:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 237591
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 0 B URL POST HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
Requested by https://www.youtube.com/embed/9gspElv1yvc?feature=oembed
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Mon, 27 Nov 2023 23:20:01 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 33 kB URL POST HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
Requested by https://www.youtube.com/embed/9gspElv1yvc?feature=oembed
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 14472585c90527f20e727de84aaa2984
1d96f9c2df2396ada2acba86646505c9443b0044
1d1b55e833250b5afc743b955eab3df505dd544578313782f5fcc4027f30f288
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Mon, 27 Nov 2023 23:20:01 GMT
server: ESF
cache-control: private
content-length: 33171
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/generate_204?Nf02vA
204 No Content 0 B URL GET HTTP/3 www.youtube.com/generate_204?Nf02vA
IP
Requested by https://www.youtube.com/embed/9gspElv1yvc?feature=oembed
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?Nf02vA HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/9gspElv1yvc?feature=oembed
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Mon, 27 Nov 2023 23:20:01 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 0 B URL OPTIONS HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
Requested by https://www.youtube.com/embed/9gspElv1yvc?feature=oembed
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Mon, 27 Nov 2023 23:20:01 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 114 B URL OPTIONS HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
Requested by https://www.youtube.com/embed/9gspElv1yvc?feature=oembed
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash a5751cbc88b534630b5434da59688243
43a4fb8136e798226ff6530807c93b369661ace2
e8305bad856ea75649937ef0a97db967a6838d51a963849fe8b3761767a39a28
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1106
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Mon, 27 Nov 2023 23:20:01 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
200 OK 31 B URL POST HTTP/3 www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP
Requested by https://www.youtube.com/embed/9gspElv1yvc?feature=oembed
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type JSON data\012- , ASCII text
Hash 5e1fa6fd9abd549a576f3f24b1d3c8d4
d5335d7f7d33be6a0b663f03b2df4df2521c4a87
d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1701127207323
Content-Type: application/json
X-Goog-Visitor-Id: Cgtab3JLeHYxNEZVOCifyJSrBjIICgJOTxICEgA%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20231119.00.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1701127203431&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=23&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C650%2C488&vis=1&wgl=true&ca_type=image
Content-Length: 17112
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/9gspElv1yvc?feature=oembed
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Mon, 27 Nov 2023 23:20:03 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+391; expires=Wed, 26-Nov-2025 23:20:03 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Mon, 27 Nov 2023 23:20:03 GMT
cache-control: private
coads.eu/_hcms/perf
302 Moved Temporarily 0 B IP
ASN #21499 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /_hcms/perf HTTP/1.1
Host: coads.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-type: application/json
Content-Length: 695
Origin: http://coads.eu
DNT: 1
Connection: keep-alive
Referer: http://coads.eu/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Date: Mon, 27 Nov 2023 23:20:04 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
Location: https://s.deltraff.com/?k=5e61457615e78
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
s.deltraff.com/?k=5e61457615e78
150 B URL GET s.deltraff.com/?k=5e61457615e78
IP
Certificate IssuerLet's Encrypt
Subjects.deltraff.com
FingerprintB6:DB:2B:85:AE:A8:90:D8:37:39:8D:3D:8B:6A:FA:FF:0E:E3:0C:73
ValidityMon, 11 Sep 2023 15:34:04 GMT - Sun, 10 Dec 2023 15:34:03 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1858899995d46bf1ba568aa7f11761dc
b23ed1b60427a697aaba8a8ddbed3be232eeb777
dace2a571c147da773724738bb0b80d39c430cce12f770210d8f270e958db773
OPTIONS /?k=5e61457615e78 HTTP/1.1
Host: s.deltraff.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Referer: http://coads.eu/
Origin: http://coads.eu
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 405 Method Not Allowed
server: nginx
date: Mon, 27 Nov 2023 23:20:04 GMT
content-type: text/html
content-length: 150
X-Firefox-Spdy: h2
www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
200 OK 31 B URL POST HTTP/3 www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP
Requested by https://www.youtube.com/embed/9gspElv1yvc?feature=oembed
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type JSON data\012- , ASCII text
Hash 5e1fa6fd9abd549a576f3f24b1d3c8d4
d5335d7f7d33be6a0b663f03b2df4df2521c4a87
d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1701127219018
Content-Type: application/json
X-Goog-Visitor-Id: Cgtab3JLeHYxNEZVOCifyJSrBjIICgJOTxICEgA%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20231119.00.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1701127203431&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=23&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C650%2C488&vis=1&wgl=true&ca_type=image
Content-Length: 813
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/9gspElv1yvc?feature=oembed
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Mon, 27 Nov 2023 23:20:15 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+957; expires=Wed, 26-Nov-2025 23:20:15 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Mon, 27 Nov 2023 23:20:15 GMT
cache-control: private
www.youtube.com/embed/9gspElv1yvc?feature=oembed
200 OK 93 kB URL GET HTTP/2 www.youtube.com/embed/9gspElv1yvc?feature=oembed
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (58200)
Hash 911eac1f04d85567c949dd4683d63799
920e8d2b9415ad1eeab74664a9793558ae2b6814
d46898143021b3d2c859ff104ba9d6c245631f1e7f5b7c906d7a750164007159
GET /embed/9gspElv1yvc?feature=oembed HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://coads.eu/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 27 Nov 2023 23:19:59 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
origin-trial: AvC9UlR6RDk2crliDsFl66RWLnTbHrDbp+DiY6AYz/PNQ4G4tdUTjrHYr2sghbkhGQAVxb7jaPTHpEVBz0uzQwkAAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTcxOTUzMjc5OSwiaXNTdWJkb21haW4iOnRydWV9
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=75qE7tj4rsk; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=ZorKxv14FU8; Domain=.youtube.com; Expires=Sat, 25-May-2024 23:19:59 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxICEgA%3D; Domain=.youtube.com; Expires=Sat, 25-May-2024 23:19:59 GMT; Path=/; Secure; HttpOnly; SameSite=lax
CONSENT=PENDING+437; expires=Wed, 26-Nov-2025 23:19:59 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.hsappstatic.net/affiliates-landing-embed/ex/referral.js
200 OK 1.8 kB URL GET HTTP/2 static.hsappstatic.net/affiliates-landing-embed/ex/referral.js
IP
Certificate IssuerCloudflare, Inc.
Subjecthsappstatic.net
Fingerprint2C:1B:91:25:45:1D:07:61:1C:48:ED:C4:02:57:55:58:47:C8:26:F4
ValidityMon, 10 Apr 2023 00:00:00 GMT - Tue, 09 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (1906), with no line terminators
Hash 69e8cbe939dc796dd2fa11e8f96d6a6c
9a4214936ff17cb34ccda4e05ee28a381a351f91
4012e255772b22a21a720615d912808d4217a0ba05f3a526cc0542cb844ceec1
GET /affiliates-landing-embed/ex/referral.js HTTP/1.1
Host: static.hsappstatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://coads.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 27 Nov 2023 23:19:58 GMT
content-type: application/javascript
x-amz-replication-status: COMPLETED
last-modified: Mon, 28 Jun 2021 09:28:02 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: qDPZcIzj86.Dvveg1PJSuqtL85HHSQJp
etag: W/"823c990a386301e7b6fda02d6af459c5"
vary: Origin,Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: RefreshHit from cloudfront
via: 1.1 52e9ff09c55e90b0ce0815fde7edef3c.cloudfront.net (CloudFront)
x-amz-cf-pop: HEL50-C1
x-amz-cf-id: -XxDYKR7jRRDV5CtdeM-uSFD7pKE2CVRwxr72gyW7x9S-z9ZgOx8KA==
cf-cache-status: HIT
age: 38
expires: Mon, 27 Nov 2023 23:20:58 GMT
cache-control: public, max-age=60
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gUc%2Bfxo%2BNM%2FEuHD2228VjiM9ucw%2FoUT5twZW8AlJ33fu6XgqY4g15W2ThZDGnDFHPrW9SflyOUNZx%2B0ryLXodLmJLD%2F3xCKTsA9y3d3AumjW6ZArHCKJcP2869qlQGOaezcA13%2FPKFw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 82ce195c6bca7129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
wt-assets/static-files/3009/core-nav/scripts.js
0 B URL GET wt-assets/static-files/3009/core-nav/scripts.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /static-files/3009/core-nav/scripts.js HTTP/1.1
Host: wt-assets
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://coads.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
wt-assets/static-files/3009/core-nav/scripts.js
0 B URL GET wt-assets/static-files/3009/core-nav/scripts.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /static-files/3009/core-nav/scripts.js HTTP/1.1
Host: wt-assets
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://coads.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
92.205.10.134
151.101.86.208
142.250.74.129
0.0.0.0