r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2808
Expires: Fri, 02 Dec 2022 05:04:11 GMT
Date: Fri, 02 Dec 2022 04:17:23 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 926
Cache-Control: max-age=109755
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:17:23 GMT
Etag: "63888270-1d7"
Expires: Sat, 03 Dec 2022 10:46:38 GMT
Last-Modified: Thu, 01 Dec 2022 10:31:12 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 03:19:50 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3453
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12867
Expires: Fri, 02 Dec 2022 07:51:50 GMT
Date: Fri, 02 Dec 2022 04:17:23 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 9SMqK6DB4xTkq4UEa2FdhPhHmUKGTbHIho58DhKgnOn0eQLg93EBoKG3KJomUieMl5yccedbgkA=
x-amz-request-id: BASM3M0K21NCVT7Z
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 03:45:57 GMT
age: 1886
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 04:17:23 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
b3.bizzy.rocks/wp-content/themes/astra/assets/css/minified/style.min.css?ver=2.6.0
217.21.69.152200 OK 14 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/themes/astra/assets/css/minified/style.min.css?ver=2.6.0
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (63137), with CRLF line terminators
Hash 83b0c18c6d46e2993923773a30d6da4c
1bcb41b8d0c6fa8fec557851a9f992e56ea0dbde
96341fbbd427c9cb3eda76af8f9d0b9c525effc5be2db8b7c77484fa7bf6bc1c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/astra/assets/css/minified/style.min.css?ver=2.6.0 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: text/css
last-modified: Tue, 27 Oct 2020 01:09:20 GMT
etag: "15609-5f977340-73948149c34450ce;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 14179
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-includes/js/wp-emoji-release.min.js?ver=5.6.7
217.21.69.152200 OK 4.7 kB URL HTTP/1.1 b3.bizzy.rocks/wp-includes/js/wp-emoji-release.min.js?ver=5.6.7
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (11272)
Hash 16d9f3b0f9a39f431106e7fd27221a4c
fba1d3bb61389be59c6393dc0003d2f5a02b44ee
e5b90f92f1df803dff6bacb9785eba9ebf124901d5004604e9544d78cb036a10
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.6.7 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: application/x-javascript
last-modified: Tue, 26 Jan 2021 15:18:33 GMT
etag: "3795-601032c9-c648f5e7a62666c5;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4660
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/themes/astra/assets/css/minified/menu-animation.min.css?ver=2.6.0
217.21.69.152200 OK 380 B URL HTTP/1.1 b3.bizzy.rocks/wp-content/themes/astra/assets/css/minified/menu-animation.min.css?ver=2.6.0
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (3412), with no line terminators
Hash abb76d6e4093f35a72ca79b5d70ba5a6
d5411aba20b4810f6023dc7a3b2f1239770d18cc
f554de278e009ccfc198d251c81d5898894795791c2d555cb8d4a705aa17beac
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/astra/assets/css/minified/menu-animation.min.css?ver=2.6.0 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: text/css
last-modified: Tue, 27 Oct 2020 01:09:20 GMT
etag: "d54-5f977340-c145cf36b8b3049c;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 380
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-includes/css/dist/block-library/style.min.css?ver=5.6.7
217.21.69.152200 OK 7.8 kB URL HTTP/1.1 b3.bizzy.rocks/wp-includes/css/dist/block-library/style.min.css?ver=5.6.7
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (27525)
Hash 32df414273e17744b07e0d155e3d05ee
d3cfc1e21baf3903161320efef1fc038fe51dd11
a8d0f088611427ef5550f82e1ce5f76575d55a0ca83a7f834c5c45845394f71d
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.6.7 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: text/css
last-modified: Wed, 17 Feb 2021 14:16:26 GMT
etag: "c88a-602d253a-c1b3804beb75c54c;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 7782
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/plugins/audioigniter/player/build/style.css?ver=1.6.3
217.21.69.152200 OK 3.2 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/plugins/audioigniter/player/build/style.css?ver=1.6.3
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
Hash 98d637278b66e994bc42448647b1d5d7
458de88613628fe198b3e3da5aba9cb9bf5b4256
beef0897263890bd12a4b9b09d0f891c161c10f25fe91ceed1f0c6ace9e96bdc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/audioigniter/player/build/style.css?ver=1.6.3 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: text/css
last-modified: Sat, 21 Nov 2020 01:23:23 GMT
etag: "541b-5fb86c0b-a6b7562f82f0c590;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3189
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.9.1
217.21.69.152200 OK 3.4 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.9.1
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (16591)
Hash c43ec41488c41c6e5e8322931af50c8a
184a4b4cbe23ed2c53e07d66035849bd1ec486ae
6839ddc56fd53a7fff0cbb1e668b411ce5bf6b011e3b32c1134f110712ecb3d1
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.9.1 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: text/css
last-modified: Mon, 18 Jan 2021 21:39:50 GMT
etag: "40fc-60060026-b6e8770ccdd39fd5;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3407
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.0.16
217.21.69.152200 OK 536 B URL HTTP/1.1 b3.bizzy.rocks/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.0.16
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (3815)
Hash 262016696fb77a7244dd398d0e5b799f
46426474591ac1470ca939b505ea2fa5c8dd9285
039c71f8941a9fbc96da135355e9851f6ca4f80d8143a6c83a8c8aff118caf18
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.0.16 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: text/css
last-modified: Mon, 18 Jan 2021 21:39:50 GMT
etag: "f0f-60060026-72e898992c106324;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 536
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.0.16
217.21.69.152200 OK 16 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.0.16
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (65496)
Hash de38ac5185863df944bb19c513340172
61121d5ba446059c6b3e2975a91abd5663574fd3
1221a8021db1a7e35efa8d3aa4ec24c809256c5ccc260cea0fd2ecfde531bbaa
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.0.16 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: text/css
last-modified: Mon, 18 Jan 2021 21:39:50 GMT
etag: "1b655-60060026-561e7ecb60558bb3;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 15752
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.0.16
217.21.69.152200 OK 2.6 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.0.16
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (10019)
Hash 440e14bf6ff68356d85e58175d07934e
3ffc5c94aabb18b7b71d4439c7a2ad18d39a7693
891b94cb7e9f267bf5bfe678a8e6f14dfcdd4835a5ab451728e03f99bd9d3246
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.0.16 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: text/css
last-modified: Mon, 18 Jan 2021 21:39:50 GMT
etag: "4824-60060026-e2a38d58402e2a13;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2572
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/uploads/elementor/css/post-6.css?ver=1611006879
217.21.69.152200 OK 357 B URL HTTP/1.1 b3.bizzy.rocks/wp-content/uploads/elementor/css/post-6.css?ver=1611006879
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (1045), with no line terminators
Hash 1ea8980a5b70625f8fb0e31e441da75c
90a750e2233b7ada40dfc0b53477dfd5073ede5a
3985812c4f2ff836fdd062e9d49ebedb495b1711dc139a21a591ee873681fa6a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-6.css?ver=1611006879 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: text/css
last-modified: Mon, 18 Jan 2021 21:54:39 GMT
etag: "415-6006039f-e64ab0ccfa7dbda3;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 357
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/uploads/elementor/css/global.css?ver=1611006879
217.21.69.152200 OK 2.4 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/uploads/elementor/css/global.css?ver=1611006879
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (21032)
Hash 901aea20cf4f575624471345c987257c
d3a8d1ab06c3050e0af9ff90940c5f269240d45e
594f0c82eabd0dd86884d95e05e8a3183a24307138271754f9d21336f3e28d2c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/global.css?ver=1611006879 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: text/css
last-modified: Mon, 18 Jan 2021 21:54:39 GMT
etag: "871a-6006039f-622e4bec15409b0c;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2427
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/uploads/elementor/css/post-836.css?ver=1611006879
217.21.69.152200 OK 1.3 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/uploads/elementor/css/post-836.css?ver=1611006879
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (18556), with no line terminators
Hash cd9606c32ce02215d862f216694c0cb7
07ae7c89ef22dfdc947bb82bbb60d05dd1daa5bd
92445d0497a6bfd2263d79fa2e637bd11414d16c3ebf72413996aa8e73117077
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-836.css?ver=1611006879 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: text/css
last-modified: Mon, 18 Jan 2021 21:54:39 GMT
etag: "487c-6006039f-9b1a28d7fe822322;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1261
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/uploads/elementor/css/post-1485.css?ver=1611006879
217.21.69.152200 OK 1.1 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/uploads/elementor/css/post-1485.css?ver=1611006879
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (10144), with no line terminators
Hash d777ca7279c22138c142911174f39caf
b1c11c39df6292def96505336ece3c724e0e91ed
2d453d337a5413ae9768729a5293ac115100210a810c0bd704ae730c84d03ff9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-1485.css?ver=1611006879 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: text/css
last-modified: Mon, 18 Jan 2021 21:54:39 GMT
etag: "27a0-6006039f-763ee0e03ef31e30;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1095
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/uploads/elementor/css/post-66.css?ver=1611006879
217.21.69.152200 OK 2.9 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/uploads/elementor/css/post-66.css?ver=1611006879
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (35646), with no line terminators
Hash 97e9073f94011c7ed73e8ce37fe26435
f19e70c575b85b034b3358e9bad23d2419d8f0ec
58baabcd2e4c8d8582c9edee4a56bfc260d6c21a10955d673b42ff355c889e28
GET /wp-content/uploads/elementor/css/post-66.css?ver=1611006879 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: text/css
last-modified: Mon, 18 Jan 2021 21:54:39 GMT
etag: "8b3e-6006039f-6774be3caf8bf4aa;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2901
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=2.10.3
217.21.69.152200 OK 23 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=2.10.3
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (65492)
Hash 9921f7beb6c8b25a5fc23dccef503efc
d29b8b451c168fb4fef14d111bf2bc3606e764fc
cad6479f66ced1ee0a3d19fd3bca3f5e57d72a847bf490545e04959d1b807d05
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=2.10.3 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: text/css
last-modified: Tue, 01 Sep 2020 17:33:12 GMT
etag: "33b7a-5f4e85d8-9d02c7679a59320f;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 23011
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/plugins/ele-custom-skin/assets/css/ecs-style.css?ver=3.0.0
217.21.69.152200 OK 1.8 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/plugins/ele-custom-skin/assets/css/ecs-style.css?ver=3.0.0
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
Hash 2b5b7aa5f88cc48d9737574eb90d2bc1
961ca17c597108cfaaa2322520b6b44fea735919
f44cb26e7a89e9837bba86562f7cd221600991a46555a9e4b565e8c6186fefda
GET /wp-content/plugins/ele-custom-skin/assets/css/ecs-style.css?ver=3.0.0 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: text/css
last-modified: Tue, 01 Sep 2020 17:12:44 GMT
etag: "22da-5f4e810c-bc9db37f02f97fd8;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1792
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.12.0
217.21.69.152200 OK 12 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.12.0
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (55567)
Hash 437795eeea524a14367c92a2bf26ece2
b63d6e5e1f65507818d0e07dbd45395ae13cbe3a
ee47bc453a9f0d9dad264d1c6aa6ee17f1c4e43351d425bb6750b581a25cd2ee
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.12.0 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: text/css
last-modified: Mon, 18 Jan 2021 21:39:50 GMT
etag: "d9c9-60060026-24140ee788299aa6;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 11945
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.12.0
217.21.69.152200 OK 310 B URL HTTP/1.1 b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.12.0
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (482)
Hash 75cef4c54b9c37dc12391dc73cb9c622
c686bbae4186b699ca8bb902454b029bbd19ef49
a0df25312489d04feba47689c98d964cebd39150489bc0a4ed257465bbb67274
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.12.0 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: text/css
last-modified: Mon, 18 Jan 2021 21:39:50 GMT
etag: "29c-60060026-1f7bedebc6fe8a17;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 310
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.12.0
217.21.69.152200 OK 305 B URL HTTP/1.1 b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.12.0
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (475)
Hash 06eaa492df50f96a95e548563114fac5
2e2b09fcc22443920048a4d0542dc6b8400e9100
64936d67a78b068194e35d2c693c6e0cc424b9d86ecda435fc96157377a09d78
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.12.0 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: text/css
last-modified: Mon, 18 Jan 2021 21:39:50 GMT
etag: "295-60060026-c0d05f42c7950342;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 305
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.12.0
217.21.69.152200 OK 308 B URL HTTP/1.1 b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.12.0
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (490)
Hash eb841974080d7177fbf2b16154e2d9a1
4f461fba793776a3624b9d19e6ffa361ed8e6431
5e9ddc138f5fce00ceba14aa3522f7e35155c3a6f4c1e47f141e3409300e08c2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.12.0 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: text/css
last-modified: Mon, 18 Jan 2021 21:39:50 GMT
etag: "2a4-60060026-21272f3a13e30e75;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 308
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:17:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
b3.bizzy.rocks/
217.21.69.152200 OK 21 kB IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (17822), with CRLF, LF line terminators
Hash c1b6bf05c73734d0ee5c65441591b3fd
456e955f56b7753e5b395c9a43e03d05cf0fc053
343554efe0fdb61787e0a9c7eac0533b5fbf7c223b1a91f200839da537258d28
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/7.3.33
content-type: text/html; charset=UTF-8
link: <http://b3.bizzy.rocks/wp-json/>; rel="https://api.w.org/"
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-includes/js/jquery/jquery.min.js?ver=3.5.1
217.21.69.152200 OK 31 kB URL HTTP/1.1 b3.bizzy.rocks/wp-includes/js/jquery/jquery.min.js?ver=3.5.1
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (65451)
Hash f54b787ca05793d18b488f8f222e18c4
477a3f7f00a17fa98799840ede7ae8c28c8dff9a
de3c283eccea338fbfeda7492c719fb64b14f2965b312e3d4bb48b4c28a56d77
GET /wp-includes/js/jquery/jquery.min.js?ver=3.5.1 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: application/x-javascript
last-modified: Wed, 07 Oct 2020 16:33:25 GMT
etag: "15d98-5f7dedd5-52927434a2937ea8;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 30923
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
217.21.69.152200 OK 4.2 kB URL HTTP/1.1 b3.bizzy.rocks/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (11126)
Hash 0d5bb2a36d1fc2e095235bc201eb5579
98f0154e2ed5322a9f65077f954868d6c800b337
fe6382620c35c12aa4f3f96fe395e5813defe330c1d95fd3de1e94f8f5d1f0a5
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: application/x-javascript
last-modified: Thu, 19 Nov 2020 09:31:13 GMT
etag: "2bd8-5fb63b61-4d697032fb72d7d9;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4165
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/plugins/ele-custom-skin/assets/js/ecs.js?ver=3.0.0
217.21.69.152200 OK 284 B URL HTTP/1.1 b3.bizzy.rocks/wp-content/plugins/ele-custom-skin/assets/js/ecs.js?ver=3.0.0
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
Hash 447712f49ef92d24eda0381882e5f00b
b041299af91182f0d7a997769cd20e3a2f7ebef4
566d4c5dfefc9c4d867e6bef080917a4273b4228731a8700e81f1763eae3d861
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ele-custom-skin/assets/js/ecs.js?ver=3.0.0 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: application/x-javascript
last-modified: Tue, 01 Sep 2020 17:12:44 GMT
etag: "11c-5f4e810c-df60f68e0cbdfb9f;;;"
accept-ranges: bytes
content-length: 284
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/plugins/ele-custom-skin/assets/js/ecs_ajax_pagination.js?ver=3.0.0
217.21.69.152200 OK 1.2 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/plugins/ele-custom-skin/assets/js/ecs_ajax_pagination.js?ver=3.0.0
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
Hash bc1d04b8867f609039b847772c8ee908
274cb85f466816a16fd98f072efec295f874fe37
07e861fe947615f684b844164d4b925fbe2e8ebbff57c766ad84c84fcb8c4a3a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ele-custom-skin/assets/js/ecs_ajax_pagination.js?ver=3.0.0 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: application/x-javascript
last-modified: Tue, 01 Sep 2020 17:12:44 GMT
etag: "d5d-5f4e810c-eb347755a167c6cd;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1210
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/uploads/elementor/css/post-60.css?ver=1611006880
217.21.69.152200 OK 1.2 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/uploads/elementor/css/post-60.css?ver=1611006880
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (4557)
Hash 2c9f5e140e032103a6862e9d593b9969
f53cff99a5cf32aa1de9b897aa8701c1127516cd
e0f4a61e7b9910f91c789f0d64bfb0126fc68b21fe2ce3dd0e496e191294e61d
GET /wp-content/uploads/elementor/css/post-60.css?ver=1611006880 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: text/css
last-modified: Mon, 18 Jan 2021 21:54:40 GMT
etag: "2659-600603a0-ee22bf1d224e12a9;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1189
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/uploads/elementor/css/post-989.css?ver=1611006880
217.21.69.152200 OK 1.5 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/uploads/elementor/css/post-989.css?ver=1611006880
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (14437), with no line terminators
Hash 3baa24bbde23e989fc62249a6ddd60e5
36d2314aef5d328ea6ecd07f5fdd6a426bc6f725
f6cb028c175870f52ced9b7c56a25276b9fe96c9221f1e2140333ea37a37d859
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-989.css?ver=1611006880 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: text/css
last-modified: Mon, 18 Jan 2021 21:54:40 GMT
etag: "3865-600603a0-8c1b42e5b1ec3db9;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1464
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/uploads/elementor/css/post-833.css?ver=1611006880
217.21.69.152200 OK 1.6 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/uploads/elementor/css/post-833.css?ver=1611006880
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (12662)
Hash 880b2f6b208bf1c29938c58584d07ed7
4778d1819f816fdc37b9790aa4487ae79e0ede1b
5071acc3c442644f7fcbc57c28d290a67b2239425abeb4ead0bbd400a4199ce9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-833.css?ver=1611006880 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: text/css
last-modified: Mon, 18 Jan 2021 21:54:40 GMT
etag: "3c1a-600603a0-382d307174ad7390;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1559
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/themes/astra/assets/js/minified/style.min.js?ver=2.6.0
217.21.69.152200 OK 2.8 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/themes/astra/assets/js/minified/style.min.js?ver=2.6.0
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (10594), with no line terminators
Hash b39ba7e77f1c46dedc5da7a9427a9823
810284827f7387fba1d2dce64fefbbd5ff4c5213
84c50a98d21457cd057bb15c773ff985329020ee571ecd19948bdb7d97de871b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/astra/assets/js/minified/style.min.js?ver=2.6.0 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: application/x-javascript
last-modified: Tue, 27 Oct 2020 01:09:20 GMT
etag: "2962-5f977340-98dd229da81bd106;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2794
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/uploads/elementor/css/post-1018.css?ver=1611006880
217.21.69.152200 OK 1.5 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/uploads/elementor/css/post-1018.css?ver=1611006880
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (8757)
Hash e744a45a18abcac6a9d033cbdbe5a04a
89274bac551c3ca8cf07f72aa139b3d685efcd44
3ede37a0e95ff23604a489536663069a12e3d18058e2abd71de34ba887634e2e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-1018.css?ver=1611006880 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: text/css
last-modified: Mon, 18 Jan 2021 21:54:40 GMT
etag: "3cb3-600603a0-5dfa674c46d72b1e;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1544
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-includes/js/imagesloaded.min.js?ver=4.1.4
217.21.69.152200 OK 1.8 kB URL HTTP/1.1 b3.bizzy.rocks/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (5477)
Hash 5bc847fcae1a1a6c4b7f79c00d2b7e29
b2237db0dd679c2c8e397e833f04df00d43165e7
bfa7a74e5830c0c26da7ccc50b8e44b401ce1ee8604fceb62e6c1310c47ddb2a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: application/x-javascript
last-modified: Sat, 13 Jun 2020 18:53:27 GMT
etag: "15fd-5ee520a7-4abb8de7ecbc83c3;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1831
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-includes/js/wp-embed.min.js?ver=5.6.7
217.21.69.152200 OK 769 B URL HTTP/1.1 b3.bizzy.rocks/wp-includes/js/wp-embed.min.js?ver=5.6.7
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (1391)
Hash 82e67f050afdb38c20ac6eb305f97c17
df1349df76d66a9cf64377cf335c67c337d85470
5f6c33116e2106cd0f2f28c16062f1d584e74b8539a14ed45e17957634d71b7e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-embed.min.js?ver=5.6.7 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: application/x-javascript
last-modified: Tue, 26 Jan 2021 15:18:33 GMT
etag: "592-601032c9-6d5d89424810c201;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 769
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
217.21.69.152200 OK 7.2 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (25115)
Hash e9c54ac47a365797148fbe6a8a43d245
ffd81bef83a60a6a655b9e89b2cc14e87d16205d
f62b2cd004e6e5b7ff32a5b88906c1d8bc6e77674558ed83ca5c3bc323cbfe89
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: application/x-javascript
last-modified: Tue, 01 Sep 2020 17:33:12 GMT
etag: "6272-5f4e85d8-6eb2310a1f27c48a;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 7155
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.0.16
217.21.69.152200 OK 18 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.0.16
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with very long lines (47306), with LF, NEL line terminators
Hash 0b03a2f615fbc6a26a391483d42226ec
a29deaff540355af0a48264bac9c028eca933b55
83d9f1c5c59969ab84653ca06bf920f1c8dbbd1acd986d9492faee04d771ffb6
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.0.16 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: application/x-javascript
last-modified: Mon, 18 Jan 2021 21:39:50 GMT
etag: "fa7a-60060026-8f9dc02422bfb24b;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 18197
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1
217.21.69.152200 OK 6.9 kB URL HTTP/1.1 b3.bizzy.rocks/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (7973)
Hash cf531bc96eb7738aadb8cb39b20c8f4d
d390d31ef200d06e59034ed039b6abdda8c03186
1ec9b1778892e572d288ce3de0b8ab1eb5f46b4b402e3b614e5743008c56c00f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.12.1 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: application/x-javascript
last-modified: Fri, 26 Mar 2021 17:23:20 GMT
etag: "5133-605e1888-5e856d0daec2f109;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 6870
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1
217.21.69.152200 OK 3.5 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (10725)
Hash 7686c703ea923df2df42299b868359fe
26f76cb8329031ae39671b933e50f3477c47fbb3
a144aae5b36b392e41662c78f5ab73c9272c9ae96fa9f882d85bf10b5415606a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: application/x-javascript
last-modified: Mon, 18 Jan 2021 21:39:50 GMT
etag: "2a6f-60060026-160e641caaafdff3;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3522
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/plugins/elementor-pro/assets/lib/lottie/lottie.min.js?ver=5.6.6
217.21.69.152200 OK 64 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/plugins/elementor-pro/assets/lib/lottie/lottie.min.js?ver=5.6.6
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (65125)
Hash 9c04898a595b91a9b72a3f8d0fafe7b6
d0f417a9d4aaf76cb213b8794257c9b648b4666f
854e97616d41153fd7d7228cad42809cc01950e63834516c9e4a8ab11ddfa53d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/lib/lottie/lottie.min.js?ver=5.6.6 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: application/x-javascript
last-modified: Tue, 01 Sep 2020 17:33:12 GMT
etag: "3daac-5f4e85d8-9fa40695ffbde76b;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 63505
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/plugins/audioigniter/player/build/app.js?ver=1.6.3
217.21.69.152200 OK 81 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/plugins/audioigniter/player/build/app.js?ver=1.6.3
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (65536), with no line terminators
Hash c76f8012ea82550a429c7ebc28a69578
09dc37baa4eda7505564befb49f7e1877d54d358
6f85c54be21510d09707b3eb315b765d6fb62b7f52d3ff7c52d86f10a8de8ebb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/audioigniter/player/build/app.js?ver=1.6.3 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: application/x-javascript
last-modified: Sat, 21 Nov 2020 01:23:23 GMT
etag: "44c24-5fb86c0b-908eea467198a950;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 80551
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
217.21.69.152200 OK 35 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (65280)
Hash 4e353605235767d3b4b4d9533c40d37c
35b04fd5e8adde582642aef06da5f48adddc1db2
198b60273a1b4a2758eea898c030b8e878b59bcf16d58d73edb09deb1a75b615
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: application/x-javascript
last-modified: Mon, 18 Jan 2021 21:39:50 GMT
etag: "21f91-60060026-bdf902174a3e7db0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 35404
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
217.21.69.152200 OK 3.0 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (12198), with no line terminators
Hash 84e9f023c6094904e0c325fcec238ae5
b256e92835a5df281dd90fd99947ff06c6729646
d0794515dd8ae171ba8cb46e0e955c20372dd18887b9683de3f21edd9aae2862
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: application/x-javascript
last-modified: Mon, 18 Jan 2021 21:39:50 GMT
etag: "2fa6-60060026-2e719ce49439de9c;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2984
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.0.16
217.21.69.152200 OK 1.1 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.0.16
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (2577)
Hash ef33e279323208a350b8264ea5f75974
c6322353c3669c3fb01e59196d693b59d0edf9b3
3b0b22d4af14f3ca3210708bfc7594523d3d73e69c0eec76e9131fa878b13122
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.0.16 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: application/x-javascript
last-modified: Mon, 18 Jan 2021 21:39:50 GMT
etag: "a12-60060026-8a660879ea839280;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1100
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.0.16
217.21.69.152200 OK 32 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.0.16
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with very long lines (47471), with LF, NEL line terminators
Hash 0389de23a152099a94413dc98394225c
f7c7f8521447be166c6fe2d7d76a9a87c864e82d
b39f5a0be99c1058229c9d46780e9eb85b94fbb2c311147e49ba410843febef7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.0.16 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: application/x-javascript
last-modified: Mon, 18 Jan 2021 21:39:50 GMT
etag: "1d5a1-60060026-9d9df74a5a99c236;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 31579
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/plugins/ele-custom-skin-pro/assets/js/ecspro.js?ver=3.0.0
217.21.69.152200 OK 3.2 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/plugins/ele-custom-skin-pro/assets/js/ecspro.js?ver=3.0.0
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
Hash d0ee7718069337dbe14491c5179cf421
e1742429712d1929a071bf317a1b7193e0c0cc96
fd6fa6671f00d0bece79e27ce9dcbea27add5de8840f828369159060c805b751
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ele-custom-skin-pro/assets/js/ecspro.js?ver=3.0.0 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: application/x-javascript
last-modified: Wed, 21 Oct 2020 15:21:46 GMT
etag: "3391-5f90520a-bd0afea23c175aa4;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3226
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=2.10.3
217.21.69.152200 OK 1.9 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=2.10.3
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (6595), with no line terminators
Hash 1d638fc8a3af7e1509a0e1d3978f5b99
cc3715e68431c7ca93bb94a34b2b9b59e4dd7c5b
59ad138c1bb1522c891206980759b41e11777d406bf16058e1ae629eba1bda3d
GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=2.10.3 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: application/x-javascript
last-modified: Tue, 01 Sep 2020 17:33:12 GMT
etag: "19c3-5f4e85d8-92b95acd54b49497;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1900
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=2.10.3
217.21.69.152200 OK 30 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=2.10.3
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (65492)
Hash 5a7b7a2af23561980c6afa1f00b6f2ba
0f5cf5aa678bf7ef2820f826d07baff913bf343b
51373de2a0afcfc76ef80556d39c03074d97b45193e65e9a9eef29f9f633c927
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=2.10.3 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: application/x-javascript
last-modified: Tue, 01 Sep 2020 17:33:12 GMT
etag: "20d42-5f4e85d8-c4a91777c23b6acd;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 29733
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/uploads/2020/09/03782449-2984-34a2-8a5e-6ed83768e3e6.jpg
217.21.69.152200 OK 87 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/uploads/2020/09/03782449-2984-34a2-8a5e-6ed83768e3e6.jpg
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2 tar archive (old), type '\001' II*, uid \004, gid \001\22, size \001\002\003, seconds \300, comment: ",#\034\034(7),01444\037'9=82<.342\377\], progressive, precision 8, 1363x908, components 3\012- data
Hash 1adf8749e3b9b10c4441557c423b5f2c
dd69581aa99fd289abbe373a1f0b0168df484158
1943bd21caf9d5b5de9acbcb6dac174c94cbd8eebcb1c0f4de6fa0898a035263
GET /wp-content/uploads/2020/09/03782449-2984-34a2-8a5e-6ed83768e3e6.jpg HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/wp-content/uploads/elementor/css/post-66.css?ver=1611006879
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: image/jpeg
last-modified: Tue, 01 Sep 2020 16:55:42 GMT
etag: "153c7-5f4e7d0e-4a7c1572dcc1d42f;;;"
accept-ranges: bytes
content-length: 86983
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.9.1
217.21.69.152200 OK 84 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.9.1
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type Web Open Font Format (Version 2), TrueType, length 84384, version 1.0\012- data
Hash 39c01512d658d563a264041101fc48cf
d58f4484f3d5ce3179766030978e26c1ce805f96
592ae329d50413fb8f61112a94ac638ee7e1dd07ce079b660bf9ab1fd5d49b31
GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.9.1 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.9.1
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: font/woff2
last-modified: Mon, 18 Jan 2021 21:39:50 GMT
etag: "149a0-60060026-d59057bc4e68d677;;;"
accept-ranges: bytes
content-length: 84384
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 04:11:15 GMT
cache-control: public,max-age=3600
age: 368
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
217.21.69.152200 OK 76 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type Web Open Font Format (Version 2), TrueType, length 76084, version 330.-16253\012- data
Hash f6121be597a72928f54e7ab5b95512a1
b2c74520c3f506efbfefca867918e5ae28bd5222
787d76ad6deab67ccf8bac1b584260205e114f508fc5542b612e3f75d49a34e4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.12.0
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: font/woff2
last-modified: Mon, 18 Jan 2021 21:39:50 GMT
etag: "12934-60060026-a32db7fc401244ab;;;"
accept-ranges: bytes
content-length: 76084
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/uploads/2020/11/bjork-new-song.jpg
217.21.69.152200 OK 12 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/uploads/2020/11/bjork-new-song.jpg
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 223x226, components 3\012- data
Hash b1f0412f63a1c945dfed1993d3a7c9a7
21f3dace5682fdbc3e7c8183cf6c2a30c24ac0b9
06d6cb092505073551b3247fd39457f90090c5204ac2489a443cdc0660e10dda
GET /wp-content/uploads/2020/11/bjork-new-song.jpg HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: image/jpeg
last-modified: Tue, 24 Nov 2020 15:48:15 GMT
etag: "2f7b-5fbd2b3f-e162a46994c3141c;;;"
accept-ranges: bytes
content-length: 12155
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
217.21.69.152200 OK 76 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type Web Open Font Format (Version 2), TrueType, length 75936, version 330.-16253\012- data
Hash 822d94f19fe57477865209e1242a3c63
f356aa2e4d9b7245985d312d3bfba180f774e3b7
8e4560c16c7970efa47680450b2cf239d4a482c056d308acea12bb9022906c8b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.12.0
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: font/woff2
last-modified: Mon, 18 Jan 2021 21:39:50 GMT
etag: "128a0-60060026-2d49dd00013cd210;;;"
accept-ranges: bytes
content-length: 75936
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
217.21.69.152200 OK 14 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type Web Open Font Format (Version 2), TrueType, length 13576, version 330.-16253\012- data
Hash 9efb86976bd53e159166c12365f61e25
830f8653e5f4a5331ac0b47c5701f65fe9f1bb32
86e496b536b26ba60cdb68df9dd9143b19a63b65e30e373b0321833aab1295d6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://b3.bizzy.rocks/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.12.0
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: font/woff2
last-modified: Mon, 18 Jan 2021 21:39:50 GMT
etag: "3508-60060026-6f92440740e31bf2;;;"
accept-ranges: bytes
content-length: 13576
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:17:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
b3.bizzy.rocks/wp-content/uploads/2020/11/Bjork-all-is-full-of-love.jpg
217.21.69.152200 OK 78 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/uploads/2020/11/Bjork-all-is-full-of-love.jpg
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 512x341, components 3\012- data
Hash 9e5faed67b14f1c16a8a4ea93c9629cf
ed107d8486b8757462a42cca68f026ccd8bb2a40
7c3e0fd0151f7456b8d2d3466ea1f21409f23105940ecf27b24109e548352acf
GET /wp-content/uploads/2020/11/Bjork-all-is-full-of-love.jpg HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: image/jpeg
last-modified: Tue, 24 Nov 2020 15:48:02 GMT
etag: "130da-5fbd2b32-c8292c371a33d76c;;;"
accept-ranges: bytes
content-length: 78042
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:17:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://b3.bizzy.rocks
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:54 GMT
expires: Thu, 30 Nov 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 117810
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:17:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://b3.bizzy.rocks
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:56 GMT
expires: Thu, 30 Nov 2023 19:33:56 GMT
cache-control: public, max-age=31536000
age: 117808
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2
216.58.207.227200 OK 33 kB URL HTTP/2 fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 32860, version 1.0\012- data
Hash d010a9f2d5c7a0374b3b84706a43d2ec
c1fe465db08785c3f115555d39db23838960cb66
9a3993918629dfd6a59c4563e9b4d464152b51d4113957ab8ebfbdcbcdc7f536
GET /s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://b3.bizzy.rocks
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 32860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 27 Nov 2022 01:48:55 GMT
expires: Mon, 27 Nov 2023 01:48:55 GMT
cache-control: public, max-age=31536000
age: 440909
last-modified: Mon, 11 Jul 2022 19:12:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://b3.bizzy.rocks
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:34:15 GMT
expires: Thu, 30 Nov 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 117789
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
b3.bizzy.rocks/wp-content/uploads/2020/10/bjork-utopia.jpg
217.21.69.152200 OK 108 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/uploads/2020/10/bjork-utopia.jpg
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 540x540, components 3\012- data
Size 108 kB (108203 bytes)
Hash 7dfa4e05f568f46416f27a30ea571e20
04dcf1fe40701789533bcc4111ff37d180e5d152
7b3215a55500f8b38b2cf17218aafbf5aa8c0fa7793e267c810ad4252a361b1b
GET /wp-content/uploads/2020/10/bjork-utopia.jpg HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: image/jpeg
last-modified: Fri, 20 Nov 2020 22:44:49 GMT
etag: "1a6ab-5fb846e1-cb5c65d965a615ff;;;"
accept-ranges: bytes
content-length: 108203
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/uploads/2020/11/bjork-coronavirus.jpg
217.21.69.152200 OK 508 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/uploads/2020/11/bjork-coronavirus.jpg
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 0x0, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=9, manufacturer=Canon, model=Canon PowerShot S2 IS, orientation=upper-left, xresolution=150, yresolution=158, resolutionunit=2, datetime=2007:05:23 23:48:50], baseline, precision 8, 1536x2048, components 3\012- data
Size 508 kB (508504 bytes)
Hash e5fb9c87f047c0ab5c5cf5500751a624
d3c2ceba41250a99910a94a1db8bc70840e36616
4540a6cf82871030cf99d6be4aded0ca0c842e6b6289895b156fce3fd05f2667
GET /wp-content/uploads/2020/11/bjork-coronavirus.jpg HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:23 GMT
content-type: image/jpeg
last-modified: Tue, 24 Nov 2020 15:48:04 GMT
etag: "7c258-5fbd2b34-c839219d95efc64c;;;"
accept-ranges: bytes
content-length: 508504
date: Fri, 02 Dec 2022 04:17:23 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/uploads/2020/11/bjork.jpg
217.21.69.152200 OK 112 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/uploads/2020/11/bjork.jpg
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1600x1000, components 3\012- data
Size 112 kB (112043 bytes)
Hash 9b3218f22b4f51905ee31e8bdd08dfce
d4dda9f369567468dd02759554a9762fbd5d995c
5c34d814a42db8fb25a389f9cdd7fdbbd4699006ace55c51816b065094e100a4
GET /wp-content/uploads/2020/11/bjork.jpg HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:24 GMT
content-type: image/jpeg
last-modified: Tue, 24 Nov 2020 15:48:16 GMT
etag: "1b5ab-5fbd2b40-803483b44ffe6c77;;;"
accept-ranges: bytes
content-length: 112043
date: Fri, 02 Dec 2022 04:17:24 GMT
server: LiteSpeed
platform: hostinger
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:17:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 917
Cache-Control: max-age=104682
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:17:24 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 09:22:06 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:17:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
b3.bizzy.rocks/favicon.ico
217.21.69.152404 Not Found 1.2 kB URL HTTP/1.1 b3.bizzy.rocks/favicon.ico
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (355)
Hash 735b0c705671877e2e36f9cd112c6286
7ec84db3e1d7c0d0e3560b4d9276bd63a409ca39
13d6771a98e17653adb78d1dec12c5dd11abb03a811bfab0527fcb77c63d6d05
GET /favicon.ico HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
last-modified: Wed, 03 Nov 2021 22:07:17 GMT
etag: "999-61830815-b8cc8c479b558314;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1159
date: Fri, 02 Dec 2022 04:17:24 GMT
server: LiteSpeed
platform: hostinger
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash a6ad57d839c4b452d7118cf2052f9d35
50afdbe46f04c7611c1a0111bce3a76775e50272
4c5c20573601bde0f5c3567e02d02d74ab22d4ffe12f632e1def1b87dc86ad3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:17:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
34.218.164.174101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.218.164.174:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: XxzE8c7wEeRhKg/2nYb5fg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: dCdk96Wth1CCKSyt2RUWNCVM+ic=
www.youtube.com/iframe_api
216.58.207.206200 OK 994 B URL HTTP/2 www.youtube.com/iframe_api
IP 216.58.207.206:0
File type ASCII text, with very long lines (509)
Hash 9e17c28d794278fb34df60b99219a532
2616c2bffa0645331dcf10185eb27ac552adb189
ef331a05667373b9bc056d99be2625708def65a1d1c10462bdecc5576415ce32
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Fri, 02 Dec 2022 04:17:24 GMT
date: Fri, 02 Dec 2022 04:17:24 GMT
cache-control: private, max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=Dwi_SYtuScM; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=NHZ3ZKq24tk; Domain=.youtube.com; Expires=Wed, 31-May-2023 04:17:24 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+359; expires=Sun, 01-Dec-2024 04:17:24 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
b3.bizzy.rocks/wp-content/uploads/2020/11/bjork-coronavirus-768x1024.jpg
217.21.69.152200 OK 118 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/uploads/2020/11/bjork-coronavirus-768x1024.jpg
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 180x180, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=9, manufacturer=Canon, model=Canon PowerShot S2 IS, orientation=upper-left, xresolution=150, yresolution=158, resolutionunit=2, datetime=2007:05:23 23:48:50], baseline, precision 8, 768x1024, components 3\012- data
Size 118 kB (118010 bytes)
Hash 95c2be81ce5e90d9801f1254c1206e7b
1c15ee993de8c05d3e8ad30dd5a0177e82027c0c
b66dc05516afbbbc29c6b35f005b6802e5d1a5d57d6fddcbbc48650e7824224b
GET /wp-content/uploads/2020/11/bjork-coronavirus-768x1024.jpg HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:24 GMT
content-type: image/jpeg
last-modified: Tue, 24 Nov 2020 15:48:09 GMT
etag: "1ccfa-5fbd2b39-7888ce11b7615991;;;"
accept-ranges: bytes
content-length: 118010
date: Fri, 02 Dec 2022 04:17:24 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/uploads/2020/10/Clash-Rita-Ora.jpeg
217.21.69.152200 OK 85 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/uploads/2020/10/Clash-Rita-Ora.jpeg
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 628x838, components 3\012- data
Hash 4832617b3c3b0984b40d3d85bec66495
93167429331daff3baff49b033e0ccddbcdb729e
3571798795336ffd4f84c037c27fe5b63767f96682fc8e61c2292579e38dfb85
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/10/Clash-Rita-Ora.jpeg HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:24 GMT
content-type: image/jpeg
last-modified: Fri, 30 Oct 2020 00:13:12 GMT
etag: "14d06-5f9b5a98-cc1124fe077aed9;;;"
accept-ranges: bytes
content-length: 85254
date: Fri, 02 Dec 2022 04:17:24 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/uploads/2020/09/12988819-27e0-377b-b833-360a9767ed63-1024x683.jpg
217.21.69.152200 OK 85 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/uploads/2020/09/12988819-27e0-377b-b833-360a9767ed63-1024x683.jpg
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 82", baseline, precision 8, 1024x683, components 3\012- data
Hash 5e0b32d59008f45d963d13dc02727949
179f86e31dcece5d32ebadc9fd425afe5c6d6987
56c63ceeabffc20921f91fa91c884fcafc1b11f441008430fbb58ffbded64359
GET /wp-content/uploads/2020/09/12988819-27e0-377b-b833-360a9767ed63-1024x683.jpg HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:24 GMT
content-type: image/jpeg
last-modified: Tue, 01 Sep 2020 16:54:58 GMT
etag: "14ca1-5f4e7ce2-94ec55737309a630;;;"
accept-ranges: bytes
content-length: 85153
date: Fri, 02 Dec 2022 04:17:24 GMT
server: LiteSpeed
platform: hostinger
b3.bizzy.rocks/wp-content/uploads/2020/10/Paper-Rita-Ora-curly-hair.jpeg
217.21.69.152200 OK 95 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/uploads/2020/10/Paper-Rita-Ora-curly-hair.jpeg
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 620x808, components 3\012- data
Hash 2637aac18e6ad9c4b28e09c4ab0bf651
b8cf5029f4d0a789d2a6adf2346425e7ca6567e1
6457b4ab9738f6b0fe11d31103043cbf989c3d134ea218b5ca9bfca358d43b7d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/10/Paper-Rita-Ora-curly-hair.jpeg HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:24 GMT
content-type: image/jpeg
last-modified: Fri, 30 Oct 2020 00:13:14 GMT
etag: "17375-5f9b5a9a-a13b44c70ff716fa;;;"
accept-ranges: bytes
content-length: 95093
date: Fri, 02 Dec 2022 04:17:24 GMT
server: LiteSpeed
platform: hostinger
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 21:48:03 GMT
expires: Fri, 01 Dec 2023 21:48:03 GMT
cache-control: public, max-age=31536000
age: 23361
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 16:40:43 GMT
expires: Fri, 01 Dec 2023 16:40:43 GMT
cache-control: public, max-age=31536000
age: 41801
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
b3.bizzy.rocks/wp-content/uploads/2020/08/Rolling-Stone-Bjork.jpg
217.21.69.152200 OK 110 kB URL HTTP/1.1 b3.bizzy.rocks/wp-content/uploads/2020/08/Rolling-Stone-Bjork.jpg
IP 217.21.69.152:0
ASN #47583 Hostinger International Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, progressive, precision 8, 648x864, components 3\012- data
Size 110 kB (110178 bytes)
Hash d0bf1580e207d36bf75c708c3526bdbb
bdd20a54175b37a8bb472a98cffd09b51ae467bb
3c34dc06b2c49e1cff5b9b75bb16b7b401eaa61803e365042c647f1e24f1b389
GET /wp-content/uploads/2020/08/Rolling-Stone-Bjork.jpg HTTP/1.1
Host: b3.bizzy.rocks
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 04:17:24 GMT
content-type: image/jpeg
last-modified: Tue, 24 Nov 2020 18:21:07 GMT
etag: "1ae62-5fbd4f13-36a59257a5fe729d;;;"
accept-ranges: bytes
content-length: 110178
date: Fri, 02 Dec 2022 04:17:24 GMT
server: LiteSpeed
platform: hostinger
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash da32e4b24f4f95e4e807cff2459f54c3
02db1c6d628b2f51fa0b46fcb79a71178780bc47
4d6ff368a64dc83f4a637fbf44b2256523ca7c43b824022f8f6428de6cfae368
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:17:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 49a9684674e0f1b3974c6427c5354fe4
c201e61bcda9cc91369f0c57f8236fcdd3db26c6
27b8d50242836a45aca1fcd0cb58e7f685011c1f93b57d0e3ea9a02400f8d801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:17:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.134200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.134:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 04:06:04 GMT
expires: Fri, 02 Dec 2022 04:21:04 GMT
cache-control: public, max-age=900
age: 681
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.130302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Fri, 02 Dec 2022 04:17:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash da32e4b24f4f95e4e807cff2459f54c3
02db1c6d628b2f51fa0b46fcb79a71178780bc47
4d6ff368a64dc83f4a637fbf44b2256523ca7c43b824022f8f6428de6cfae368
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:17:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 51d5484b700426c5612c309bbf14b114
026994960bfaaa4e2604b66cb795b2787fe300a2
e3e30a64f2e4fc59120c46b320d104f1b9d9a8af90106ab78715d14e49e11ae0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:17:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/id?slf_rd=1
142.250.74.130200 OK 120 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id?slf_rd=1
IP 142.250.74.130:0
Hash b1cc1d1651b2ca3eac64d4e0a15d673c
b8bb3586e6953b23ed709c9244c5576f02517407
b9d3a1c19f03aff0d6cf0e2daca18cf7db169a054569c48c483f5bf91a1f87f6
GET /pagead/id?slf_rd=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Referer: https://www.youtube.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
content-type: application/json; charset=UTF-8
date: Fri, 02 Dec 2022 04:17:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 120
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.42200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.42:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 02 Dec 2022 04:17:25 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 16c3ad4a2bc7f419fb354b37778f8b2f
d193a1336556dcf6b4975a057e7c849037eef0ff
5993deb5a53b2e844b9027a6b6906c718f6e9f69c27388199c4343a80ef067f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:17:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.42200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.42:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 6dcea44d48b059a7ebd9297aee99c8f6
fb289a1dfc4a7aebf096be26da0bd295b51bf36b
eb0694ba63d7251aecbb6fb665a50df0b9647f2d7cc3b5efc24dce75ecbc1233
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 02 Dec 2022 04:17:25 GMT
server: ESF
cache-control: private
content-length: 31067
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js
216.58.211.4200 OK 14 kB URL HTTP/2 www.google.com/js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js
IP 216.58.211.4:0
File type ASCII text, with very long lines (36106)
Hash 7fc7e22ecccb0cfd0ae897bb40a58efe
5d46470a711120793c362235105836fe49e699a4
1907005cab41fbd6d1d67df3b25586f3232e053a261c9e2b2503459f4980b1c5
GET /js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14302
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 16:31:55 GMT
expires: Tue, 28 Nov 2023 16:31:55 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 03 Nov 2022 10:00:00 GMT
content-type: text/javascript
age: 301530
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 0a7b2c025a2920fe089ddebaf876d45d
f189d6c447af2b5405fd62036e2a42d15fcdccf6
752b233c690105130d22c8d7df624c97b21e9864e7ae140987ecf04d153c0dfa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:17:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi_webp/Sqbv7cCM5AI/maxresdefault.webp
142.250.74.54200 OK 63 kB URL HTTP/2 i.ytimg.com/vi_webp/Sqbv7cCM5AI/maxresdefault.webp
IP 142.250.74.54:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e2906ec460d3f1326c9e0c0d7a5d08cd
e2558dd43f17ec27852314f775124110f1cdfbb3
2770a722caad3981409612560491968168b5609f03180ccb7919628d0a06bf90
GET /vi_webp/Sqbv7cCM5AI/maxresdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 63184
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 04:17:25 GMT
expires: Fri, 02 Dec 2022 06:17:25 GMT
cache-control: public, max-age=7200
etag: "1512738877"
content-type: image/webp
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9744
Expires: Fri, 02 Dec 2022 06:59:49 GMT
Date: Fri, 02 Dec 2022 04:17:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9744
Expires: Fri, 02 Dec 2022 06:59:49 GMT
Date: Fri, 02 Dec 2022 04:17:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9744
Expires: Fri, 02 Dec 2022 06:59:49 GMT
Date: Fri, 02 Dec 2022 04:17:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9744
Expires: Fri, 02 Dec 2022 06:59:49 GMT
Date: Fri, 02 Dec 2022 04:17:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9744
Expires: Fri, 02 Dec 2022 06:59:49 GMT
Date: Fri, 02 Dec 2022 04:17:25 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07af64d-c287-4b0a-9677-9a1000422afc.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07af64d-c287-4b0a-9677-9a1000422afc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 498ab4412ed5cf977bc23e4e870894b0
23753fe8af09ec8ffa10eed4d201a71833885c99
036042656f15e42b4d1537c45f5b8e7190c70305fa9a69c1287c6739ad0b7122
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07af64d-c287-4b0a-9677-9a1000422afc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7334
x-amzn-requestid: a6b8b420-8394-496b-8be8-26dee52e3887
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoHJOoAMF75g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-0b38d07f518c8b3134457df2;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: tuKmV_nb4HVbqkhtCnZY3b33VB-bB6UxaBl6HsY_JgWesbUB8SPt-g==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:09:38 GMT
age: 22067
etag: "23753fe8af09ec8ffa10eed4d201a71833885c99"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fw6nrporwF27NW0-vXpaolW79nDXLF2RyS-lqhhp1osHt7q98VpI3g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:49:56 GMT
age: 23249
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe82fdd03-be1f-4def-adb8-61eefd79def6.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe82fdd03-be1f-4def-adb8-61eefd79def6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6e65083422468e512aa73eb68f20b2ec
73884daab5e71e4917637b3679c0bb5a1f0447de
f0d97bb9e3f01bbdbe91ba1f9b6ea0f649c66192383c51fe5c7ca9ac2a38ebdb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe82fdd03-be1f-4def-adb8-61eefd79def6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9719
x-amzn-requestid: c4ba3502-e191-40fa-8ae0-71dc6f733db4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPjhHE8woAMFyKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382e606-70ab0e5523c91e5420efec78;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 04:22:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oBn917CDV6DjSs9TAL2iBU0Rn8_f8ny1rAVXrbI9KML2P7pxusbdjA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 03:43:52 GMT
age: 2013
etag: "73884daab5e71e4917637b3679c0bb5a1f0447de"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F092f8542-1ed2-47c2-82aa-d5ef970a77ca.png
34.120.237.76200 OK 3.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F092f8542-1ed2-47c2-82aa-d5ef970a77ca.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 89e1a735e16f55c78fa75ae434294029
6c56f4015305eff04a99cec9758cd40bf4e5f704
26e8b042c0bbef2c7f93f77451563cf6e12af282251ef864652574be2b2c5b15
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F092f8542-1ed2-47c2-82aa-d5ef970a77ca.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3711
x-amzn-requestid: 68772438-16c4-40ab-a40e-860425d8301c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGyhHVsIAMFmsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e76-21d27db6708228002e738938;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JOCSKxy4WUDbS22Gd9BlyN1gmcDsDNlNWnT57KITGlNwfOe_Iaco9g==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:48:59 GMT
age: 23306
etag: "6c56f4015305eff04a99cec9758cd40bf4e5f704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 0a7b2c025a2920fe089ddebaf876d45d
f189d6c447af2b5405fd62036e2a42d15fcdccf6
752b233c690105130d22c8d7df624c97b21e9864e7ae140987ecf04d153c0dfa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:17:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F321bfec8-0690-49d3-ba43-a2899f137b6b.jpeg
34.120.237.76200 OK 1.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F321bfec8-0690-49d3-ba43-a2899f137b6b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 367a113e3826442861c63ba501d2d67d
764f6910ecc1ee436a70aa83f5bd363c2e500341
5e5cc53aba99e68211c86a2fd83ac4a023d1c82875d60a09d52875ef129cbb71
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F321bfec8-0690-49d3-ba43-a2899f137b6b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 1654
x-amzn-requestid: 537d523f-a3fb-4514-bda5-ecc834c1ed39
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGgBEFNIAMFTjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891dff-0c12ccea20e953c236ca2b1b;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: IXNpFJsiqPvrg8f-op2tcIVW2qoV7ZPm12wsTTXfYu0369N4Csy8BA==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:34:56 GMT
age: 24149
etag: "764f6910ecc1ee436a70aa83f5bd363c2e500341"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd78aa69439c995167f32b8a41a1f4f6
d07d6145182f312f3ed86ecf96b4ffa175416fa0
3b08cf3fad31ee0cf3ee25abc2484fb4283543865a42dfc568b14f9856fd3bb5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7722
x-amzn-requestid: 8d7c4800-6c06-43ed-afa1-94840d42f591
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGy2Gr1IAMFWeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e78-429ae3135d47e3b020c4c7a1;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Z8thSamrCRejcAcQEGAp4WpSMzMEvstuZtVpKAjiCH4dyJyf1yihBA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:50:11 GMT
age: 23234
etag: "d07d6145182f312f3ed86ecf96b4ffa175416fa0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash ebd276a987cbfec50bf95ce593a6dbc6
0b03e0bb38915c84e23d9369d7f2947d6d73bafb
de4074bc2d166b559380d23f3d9e70e7eda87fd0fef61d5104db6d2ba221f45c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:17:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/_X-fyMMSYhm5PSxkU0vJ5G_rPosh1MGqr8P5SEymwzSeOZraVuoecY358LjTEaQIu-XW8wl3cw=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 3.3 kB URL HTTP/2 yt3.ggpht.com/_X-fyMMSYhm5PSxkU0vJ5G_rPosh1MGqr8P5SEymwzSeOZraVuoecY358LjTEaQIu-XW8wl3cw=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash bd453d0f35e1abef870167267c48f666
f1c6585363684ac35166bc14d6919bfed2a9a77b
e6721546089236caf5054ac963a5c47b16860a5bec17ce9b0d6fe76e0dbb5bb3
GET /_X-fyMMSYhm5PSxkU0vJ5G_rPosh1MGqr8P5SEymwzSeOZraVuoecY358LjTEaQIu-XW8wl3cw=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 3342
x-xss-protection: 0
date: Fri, 02 Dec 2022 01:06:56 GMT
expires: Sat, 29 Oct 2022 22:54:40 GMT
cache-control: public, max-age=86400, no-transform
age: 11429
etag: "v1"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash ebd276a987cbfec50bf95ce593a6dbc6
0b03e0bb38915c84e23d9369d7f2947d6d73bafb
de4074bc2d166b559380d23f3d9e70e7eda87fd0fef61d5104db6d2ba221f45c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:17:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.42200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.42:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 02 Dec 2022 04:17:25 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.42200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.42:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 4714e11f40230cf19e12a28c1417d705
69d194ddccffeac6ae90cb04d44b38245f58f189
0699b63587ee961196b242f7d2cb6fe1a2344c3e2deee8d44b4ac51c499abf66
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 866
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 02 Dec 2022 04:17:25 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 687e04d91de0188de0a524fcb4a61172
9f3a40b98eb9497cfebad979779daa483091aa5b
481ed623a68f76fb18fce55868021280e592883370000ce1a31dabaf11899a81
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:17:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 687e04d91de0188de0a524fcb4a61172
9f3a40b98eb9497cfebad979779daa483091aa5b
481ed623a68f76fb18fce55868021280e592883370000ce1a31dabaf11899a81
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:17:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1669976246&ei=VXyJY9-aOdOBpATyiZyoCA&ip=91.90.42.154&id=o-AGzoGuHILfrW3KUqsGkEOCHD5hrksINbgRND8QPqHafw&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&mh=If&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=1&pl=21&gcr=no&initcwndbps=2001250&spc=SFxXNmHH5lXJy_rpE07Fp0EPwpnXoVA&vprv=1&mime=video%2Fwebm&ns=iIX1cKyDCrgrCAPCgthnkVAJ&gir=yes&clen=13800198&dur=224.160&lmt=1577484512651448&mt=1669954413&fvip=4&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5535432&n=JwQJ3O23G6qMgA&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cgcr%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgP3rq762o_nP4AVe0jS5UynKVp8t-al-Voqr9AQzQAIwCICTS9n4GVNByumvpIEhFky6W1oDlc4N4cYOJb_7QR6yV&alr=yes&sig=AOq0QJ8wRgIhANmEmk0aAsCOblmHuNtx_54lBRc47okVohewi_INbEYiAiEA_v-p2QQ4T0QGe-oqozJhtC1nXpSvUTDToDImqa-yl0I%3D&cpn=Ij-KsjCxqwPBEs9V&cver=1.20221130.01.00&range=0-975&rn=1&rbuf=0&pot=D4Q353ifZ9x_hAxreHsUui13y1TnqkLWQb9Rde2Uj84MjnTZdUnoMi5i6w_rZ9GgVZ6dBKEqKM5UT1ACUK3X58o_0typ_BoOoj7gxTfSPhYJnn2qpCHYc4zad42dLivnMh8TcsOVPHU=
91.90.45.172200 OK 1.3 kB URL HTTP/1.1 rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1669976246&ei=VXyJY9-aOdOBpATyiZyoCA&ip=91.90.42.154&id=o-AGzoGuHILfrW3KUqsGkEOCHD5hrksINbgRND8QPqHafw&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&mh=If&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=1&pl=21&gcr=no&initcwndbps=2001250&spc=SFxXNmHH5lXJy_rpE07Fp0EPwpnXoVA&vprv=1&mime=video%2Fwebm&ns=iIX1cKyDCrgrCAPCgthnkVAJ&gir=yes&clen=13800198&dur=224.160&lmt=1577484512651448&mt=1669954413&fvip=4&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5535432&n=JwQJ3O23G6qMgA&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cgcr%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgP3rq762o_nP4AVe0jS5UynKVp8t-al-Voqr9AQzQAIwCICTS9n4GVNByumvpIEhFky6W1oDlc4N4cYOJb_7QR6yV&alr=yes&sig=AOq0QJ8wRgIhANmEmk0aAsCOblmHuNtx_54lBRc47okVohewi_INbEYiAiEA_v-p2QQ4T0QGe-oqozJhtC1nXpSvUTDToDImqa-yl0I%3D&cpn=Ij-KsjCxqwPBEs9V&cver=1.20221130.01.00&range=0-975&rn=1&rbuf=0&pot=D4Q353ifZ9x_hAxreHsUui13y1TnqkLWQb9Rde2Uj84MjnTZdUnoMi5i6w_rZ9GgVZ6dBKEqKM5UT1ACUK3X58o_0typ_BoOoj7gxTfSPhYJnn2qpCHYc4zad42dLivnMh8TcsOVPHU=
IP 91.90.45.172:0
ASN #50304 Blix Solutions AS
File type ASCII text, with very long lines (1300), with no line terminators
Hash 4e427efdd7715939cd8eb7cbec59a199
eb4a3045984244350caa470df627e5838d501651
850a232d6665411ff6953e1e58420204d5ce8da8ef2fa552e26b21507f49ab2d
GET /videoplayback?expire=1669976246&ei=VXyJY9-aOdOBpATyiZyoCA&ip=91.90.42.154&id=o-AGzoGuHILfrW3KUqsGkEOCHD5hrksINbgRND8QPqHafw&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&mh=If&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=1&pl=21&gcr=no&initcwndbps=2001250&spc=SFxXNmHH5lXJy_rpE07Fp0EPwpnXoVA&vprv=1&mime=video%2Fwebm&ns=iIX1cKyDCrgrCAPCgthnkVAJ&gir=yes&clen=13800198&dur=224.160&lmt=1577484512651448&mt=1669954413&fvip=4&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5535432&n=JwQJ3O23G6qMgA&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cgcr%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgP3rq762o_nP4AVe0jS5UynKVp8t-al-Voqr9AQzQAIwCICTS9n4GVNByumvpIEhFky6W1oDlc4N4cYOJb_7QR6yV&alr=yes&sig=AOq0QJ8wRgIhANmEmk0aAsCOblmHuNtx_54lBRc47okVohewi_INbEYiAiEA_v-p2QQ4T0QGe-oqozJhtC1nXpSvUTDToDImqa-yl0I%3D&cpn=Ij-KsjCxqwPBEs9V&cver=1.20221130.01.00&range=0-975&rn=1&rbuf=0&pot=D4Q353ifZ9x_hAxreHsUui13y1TnqkLWQb9Rde2Uj84MjnTZdUnoMi5i6w_rZ9GgVZ6dBKEqKM5UT1ACUK3X58o_0typ_BoOoj7gxTfSPhYJnn2qpCHYc4zad42dLivnMh8TcsOVPHU= HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Fri, 02 Dec 2022 04:17:26 GMT
Expires: Fri, 02 Dec 2022 04:17:26 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 1300
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1669976246&ei=VXyJY9-aOdOBpATyiZyoCA&ip=91.90.42.154&id=o-AGzoGuHILfrW3KUqsGkEOCHD5hrksINbgRND8QPqHafw&itag=251&source=youtube&requiressl=yes&mh=If&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=1&pl=21&gcr=no&initcwndbps=2001250&spc=SFxXNmHH5lXJy_rpE07Fp0EPwpnXoVA&vprv=1&mime=audio%2Fwebm&ns=iIX1cKyDCrgrCAPCgthnkVAJ&gir=yes&clen=4070946&dur=224.181&lmt=1577482045210273&mt=1669954413&fvip=4&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5531432&n=JwQJ3O23G6qMgA&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cgcr%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRgIhAOeq90Wyj8Kirbci4xqacV5frIcCNzUuyYGTbqsclo23AiEA5MFY2m0memqZPen9a5rH0uYL_Mg-aqCKlfGady4Ldo4%3D&alr=yes&sig=AOq0QJ8wRAIgUC4HJUK4M-YMDTvXSkG8a7KKn0rKZeoXw9Zi-cla0sQCIEjfZrdsgkB6SrswB5UQisjgqxYALG0b-OgnsbJj3FO5&cpn=Ij-KsjCxqwPBEs9V&cver=1.20221130.01.00&range=0-653&rn=2&rbuf=0&pot=D4Q353ifZ9x_hAxreHsUui13y1TnqkLWQb9Rde2Uj84MjnTZdUnoMi5i6w_rZ9GgVZ6dBKEqKM5UT1ACUK3X58o_0typ_BoOoj7gxTfSPhYJnn2qpCHYc4zad42dLivnMh8TcsOVPHU=
91.90.45.172200 OK 1.2 kB URL HTTP/1.1 rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1669976246&ei=VXyJY9-aOdOBpATyiZyoCA&ip=91.90.42.154&id=o-AGzoGuHILfrW3KUqsGkEOCHD5hrksINbgRND8QPqHafw&itag=251&source=youtube&requiressl=yes&mh=If&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=1&pl=21&gcr=no&initcwndbps=2001250&spc=SFxXNmHH5lXJy_rpE07Fp0EPwpnXoVA&vprv=1&mime=audio%2Fwebm&ns=iIX1cKyDCrgrCAPCgthnkVAJ&gir=yes&clen=4070946&dur=224.181&lmt=1577482045210273&mt=1669954413&fvip=4&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5531432&n=JwQJ3O23G6qMgA&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cgcr%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRgIhAOeq90Wyj8Kirbci4xqacV5frIcCNzUuyYGTbqsclo23AiEA5MFY2m0memqZPen9a5rH0uYL_Mg-aqCKlfGady4Ldo4%3D&alr=yes&sig=AOq0QJ8wRAIgUC4HJUK4M-YMDTvXSkG8a7KKn0rKZeoXw9Zi-cla0sQCIEjfZrdsgkB6SrswB5UQisjgqxYALG0b-OgnsbJj3FO5&cpn=Ij-KsjCxqwPBEs9V&cver=1.20221130.01.00&range=0-653&rn=2&rbuf=0&pot=D4Q353ifZ9x_hAxreHsUui13y1TnqkLWQb9Rde2Uj84MjnTZdUnoMi5i6w_rZ9GgVZ6dBKEqKM5UT1ACUK3X58o_0typ_BoOoj7gxTfSPhYJnn2qpCHYc4zad42dLivnMh8TcsOVPHU=
IP 91.90.45.172:0
ASN #50304 Blix Solutions AS
File type ASCII text, with very long lines (1178), with no line terminators
Hash 9b3a877bfa409effd4280d26db788724
dadd786dfa657aa4cd93d78e9426f1d637d19926
a2fec97553052dcd8e28d7c5de140cf98a5f888b138549e1a12f1c01e881006a
GET /videoplayback?expire=1669976246&ei=VXyJY9-aOdOBpATyiZyoCA&ip=91.90.42.154&id=o-AGzoGuHILfrW3KUqsGkEOCHD5hrksINbgRND8QPqHafw&itag=251&source=youtube&requiressl=yes&mh=If&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=1&pl=21&gcr=no&initcwndbps=2001250&spc=SFxXNmHH5lXJy_rpE07Fp0EPwpnXoVA&vprv=1&mime=audio%2Fwebm&ns=iIX1cKyDCrgrCAPCgthnkVAJ&gir=yes&clen=4070946&dur=224.181&lmt=1577482045210273&mt=1669954413&fvip=4&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5531432&n=JwQJ3O23G6qMgA&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cgcr%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRgIhAOeq90Wyj8Kirbci4xqacV5frIcCNzUuyYGTbqsclo23AiEA5MFY2m0memqZPen9a5rH0uYL_Mg-aqCKlfGady4Ldo4%3D&alr=yes&sig=AOq0QJ8wRAIgUC4HJUK4M-YMDTvXSkG8a7KKn0rKZeoXw9Zi-cla0sQCIEjfZrdsgkB6SrswB5UQisjgqxYALG0b-OgnsbJj3FO5&cpn=Ij-KsjCxqwPBEs9V&cver=1.20221130.01.00&range=0-653&rn=2&rbuf=0&pot=D4Q353ifZ9x_hAxreHsUui13y1TnqkLWQb9Rde2Uj84MjnTZdUnoMi5i6w_rZ9GgVZ6dBKEqKM5UT1ACUK3X58o_0typ_BoOoj7gxTfSPhYJnn2qpCHYc4zad42dLivnMh8TcsOVPHU= HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Fri, 02 Dec 2022 04:17:26 GMT
Expires: Fri, 02 Dec 2022 04:17:26 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 1178
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 687e04d91de0188de0a524fcb4a61172
9f3a40b98eb9497cfebad979779daa483091aa5b
481ed623a68f76fb18fce55868021280e592883370000ce1a31dabaf11899a81
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:17:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 80fa6008da81e8712c6249d056d603ec
2a77b2e3f9933bee4d2080dcda82be0347e81a74
7cb2ab90b82e5be95929b5803de045ad9faabaab9bba6fa032d5fd0263f956a8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:17:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 79e80787534035cb4b3531d77a0d4432
61477b58a4caa41e02f12ddb606fb9059fea76ac
487a083d5db20fc4afe03e307ec0605954f43e3acd48feabd206c7aa599852bb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:17:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr4---sn-5goeenez.googlevideo.com/videoplayback?expire=1669976246&ei=VXyJY9-aOdOBpATyiZyoCA&ip=91.90.42.154&id=o-AGzoGuHILfrW3KUqsGkEOCHD5hrksINbgRND8QPqHafw&itag=251&source=youtube&requiressl=yes&gcr=no&spc=SFxXNmHH5lXJy_rpE07Fp0EPwpnXoVA&vprv=1&mime=audio%2Fwebm&ns=iIX1cKyDCrgrCAPCgthnkVAJ&gir=yes&clen=4070946&dur=224.181&lmt=1577482045210273&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5531432&n=JwQJ3O23G6qMgA&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cgcr%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&alr=yes&sig=AOq0QJ8wRAIgUC4HJUK4M-YMDTvXSkG8a7KKn0rKZeoXw9Zi-cla0sQCIEjfZrdsgkB6SrswB5UQisjgqxYALG0b-OgnsbJj3FO5&cpn=Ij-KsjCxqwPBEs9V&cver=1.20221130.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=If&mm=29&mn=sn-5goeenez&ms=rdu&mt=1669954410&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhALIMpSpBOmwdtiwk-am-_wGYhQFWq2Hz-evkLoT1G1WwAiEA4k_zRacADua_l5Q81JR4aT8aQkUv2n7n96gbZU2HHnU%3D&range=0-653&rn=4&rbuf=0&pot=D4Q353ifZ9x_hAxreHsUui13y1TnqkLWQb9Rde2Uj84MjnTZdUnoMi5i6w_rZ9GgVZ6dBKEqKM5UT1ACUK3X58o_0typ_BoOoj7gxTfSPhYJnn2qpCHYc4zad42dLivnMh8TcsOVPHU=
74.125.111.9200 OK 1.2 kB URL HTTP/1.1 rr4---sn-5goeenez.googlevideo.com/videoplayback?expire=1669976246&ei=VXyJY9-aOdOBpATyiZyoCA&ip=91.90.42.154&id=o-AGzoGuHILfrW3KUqsGkEOCHD5hrksINbgRND8QPqHafw&itag=251&source=youtube&requiressl=yes&gcr=no&spc=SFxXNmHH5lXJy_rpE07Fp0EPwpnXoVA&vprv=1&mime=audio%2Fwebm&ns=iIX1cKyDCrgrCAPCgthnkVAJ&gir=yes&clen=4070946&dur=224.181&lmt=1577482045210273&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5531432&n=JwQJ3O23G6qMgA&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cgcr%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&alr=yes&sig=AOq0QJ8wRAIgUC4HJUK4M-YMDTvXSkG8a7KKn0rKZeoXw9Zi-cla0sQCIEjfZrdsgkB6SrswB5UQisjgqxYALG0b-OgnsbJj3FO5&cpn=Ij-KsjCxqwPBEs9V&cver=1.20221130.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=If&mm=29&mn=sn-5goeenez&ms=rdu&mt=1669954410&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhALIMpSpBOmwdtiwk-am-_wGYhQFWq2Hz-evkLoT1G1WwAiEA4k_zRacADua_l5Q81JR4aT8aQkUv2n7n96gbZU2HHnU%3D&range=0-653&rn=4&rbuf=0&pot=D4Q353ifZ9x_hAxreHsUui13y1TnqkLWQb9Rde2Uj84MjnTZdUnoMi5i6w_rZ9GgVZ6dBKEqKM5UT1ACUK3X58o_0typ_BoOoj7gxTfSPhYJnn2qpCHYc4zad42dLivnMh8TcsOVPHU=
IP 74.125.111.9:0
File type ASCII text, with very long lines (1191), with no line terminators
Hash b2579f2a068676f55ee1b0622a5336fc
6d79b95fabed67d3ba70f151afb8ce8df790647a
8153753373bcc62e6bfc1683aad182b22ad7a5269f1a71a8c8dec00f1aecf47b
GET /videoplayback?expire=1669976246&ei=VXyJY9-aOdOBpATyiZyoCA&ip=91.90.42.154&id=o-AGzoGuHILfrW3KUqsGkEOCHD5hrksINbgRND8QPqHafw&itag=251&source=youtube&requiressl=yes&gcr=no&spc=SFxXNmHH5lXJy_rpE07Fp0EPwpnXoVA&vprv=1&mime=audio%2Fwebm&ns=iIX1cKyDCrgrCAPCgthnkVAJ&gir=yes&clen=4070946&dur=224.181&lmt=1577482045210273&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5531432&n=JwQJ3O23G6qMgA&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cgcr%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&alr=yes&sig=AOq0QJ8wRAIgUC4HJUK4M-YMDTvXSkG8a7KKn0rKZeoXw9Zi-cla0sQCIEjfZrdsgkB6SrswB5UQisjgqxYALG0b-OgnsbJj3FO5&cpn=Ij-KsjCxqwPBEs9V&cver=1.20221130.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=If&mm=29&mn=sn-5goeenez&ms=rdu&mt=1669954410&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhALIMpSpBOmwdtiwk-am-_wGYhQFWq2Hz-evkLoT1G1WwAiEA4k_zRacADua_l5Q81JR4aT8aQkUv2n7n96gbZU2HHnU%3D&range=0-653&rn=4&rbuf=0&pot=D4Q353ifZ9x_hAxreHsUui13y1TnqkLWQb9Rde2Uj84MjnTZdUnoMi5i6w_rZ9GgVZ6dBKEqKM5UT1ACUK3X58o_0typ_BoOoj7gxTfSPhYJnn2qpCHYc4zad42dLivnMh8TcsOVPHU= HTTP/1.1
Host: rr4---sn-5goeenez.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Fri, 02 Dec 2022 04:17:26 GMT
Expires: Fri, 02 Dec 2022 04:17:26 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 1191
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 79e80787534035cb4b3531d77a0d4432
61477b58a4caa41e02f12ddb606fb9059fea76ac
487a083d5db20fc4afe03e307ec0605954f43e3acd48feabd206c7aa599852bb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:17:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr5---sn-5hne6nsz.googlevideo.com/videoplayback?expire=1669976246&ei=VXyJY9-aOdOBpATyiZyoCA&ip=91.90.42.154&id=o-AGzoGuHILfrW3KUqsGkEOCHD5hrksINbgRND8QPqHafw&itag=251&source=youtube&requiressl=yes&gcr=no&spc=SFxXNmHH5lXJy_rpE07Fp0EPwpnXoVA&vprv=1&mime=audio%2Fwebm&ns=iIX1cKyDCrgrCAPCgthnkVAJ&gir=yes&clen=4070946&dur=224.181&lmt=1577482045210273&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5531432&n=JwQJ3O23G6qMgA&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cgcr%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&alr=yes&sig=AOq0QJ8wRAIgUC4HJUK4M-YMDTvXSkG8a7KKn0rKZeoXw9Zi-cla0sQCIEjfZrdsgkB6SrswB5UQisjgqxYALG0b-OgnsbJj3FO5&cpn=Ij-KsjCxqwPBEs9V&cver=1.20221130.01.00&cm2rm=sn-capm-vnae7e,sn-5gos77z&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=If&mm=34&mn=sn-5hne6nsz&ms=ltu&mt=1669954375&mv=m&mvi=5&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgfYhYO0T-ja8vEUR6H_8WiWSbKKEL4sVEzqDKsULeZJoCIQC0NbFKidsOUCf04jmaYLBSjSXFmW9y_gcoACI8HJJ-Gw%3D%3D&range=0-653&rn=5&rbuf=0&pot=D4Q353ifZ9x_hAxreHsUui13y1TnqkLWQb9Rde2Uj84MjnTZdUnoMi5i6w_rZ9GgVZ6dBKEqKM5UT1ACUK3X58o_0typ_BoOoj7gxTfSPhYJnn2qpCHYc4zad42dLivnMh8TcsOVPHU=
74.125.100.74200 OK 654 B URL HTTP/1.1 rr5---sn-5hne6nsz.googlevideo.com/videoplayback?expire=1669976246&ei=VXyJY9-aOdOBpATyiZyoCA&ip=91.90.42.154&id=o-AGzoGuHILfrW3KUqsGkEOCHD5hrksINbgRND8QPqHafw&itag=251&source=youtube&requiressl=yes&gcr=no&spc=SFxXNmHH5lXJy_rpE07Fp0EPwpnXoVA&vprv=1&mime=audio%2Fwebm&ns=iIX1cKyDCrgrCAPCgthnkVAJ&gir=yes&clen=4070946&dur=224.181&lmt=1577482045210273&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5531432&n=JwQJ3O23G6qMgA&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cgcr%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&alr=yes&sig=AOq0QJ8wRAIgUC4HJUK4M-YMDTvXSkG8a7KKn0rKZeoXw9Zi-cla0sQCIEjfZrdsgkB6SrswB5UQisjgqxYALG0b-OgnsbJj3FO5&cpn=Ij-KsjCxqwPBEs9V&cver=1.20221130.01.00&cm2rm=sn-capm-vnae7e,sn-5gos77z&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=If&mm=34&mn=sn-5hne6nsz&ms=ltu&mt=1669954375&mv=m&mvi=5&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgfYhYO0T-ja8vEUR6H_8WiWSbKKEL4sVEzqDKsULeZJoCIQC0NbFKidsOUCf04jmaYLBSjSXFmW9y_gcoACI8HJJ-Gw%3D%3D&range=0-653&rn=5&rbuf=0&pot=D4Q353ifZ9x_hAxreHsUui13y1TnqkLWQb9Rde2Uj84MjnTZdUnoMi5i6w_rZ9GgVZ6dBKEqKM5UT1ACUK3X58o_0typ_BoOoj7gxTfSPhYJnn2qpCHYc4zad42dLivnMh8TcsOVPHU=
IP 74.125.100.74:0
File type WebM\012- EBML file, creator webmB\20\012- data
Hash 4954d90085862c491402a78d020f0674
3ddc078992cb14205bf227abb86328546a9b3826
c9cb2c235cfd04415654e93d50b0d20173a168419de781689c2d94f439464887
GET /videoplayback?expire=1669976246&ei=VXyJY9-aOdOBpATyiZyoCA&ip=91.90.42.154&id=o-AGzoGuHILfrW3KUqsGkEOCHD5hrksINbgRND8QPqHafw&itag=251&source=youtube&requiressl=yes&gcr=no&spc=SFxXNmHH5lXJy_rpE07Fp0EPwpnXoVA&vprv=1&mime=audio%2Fwebm&ns=iIX1cKyDCrgrCAPCgthnkVAJ&gir=yes&clen=4070946&dur=224.181&lmt=1577482045210273&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5531432&n=JwQJ3O23G6qMgA&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cgcr%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&alr=yes&sig=AOq0QJ8wRAIgUC4HJUK4M-YMDTvXSkG8a7KKn0rKZeoXw9Zi-cla0sQCIEjfZrdsgkB6SrswB5UQisjgqxYALG0b-OgnsbJj3FO5&cpn=Ij-KsjCxqwPBEs9V&cver=1.20221130.01.00&cm2rm=sn-capm-vnae7e,sn-5gos77z&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=If&mm=34&mn=sn-5hne6nsz&ms=ltu&mt=1669954375&mv=m&mvi=5&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgfYhYO0T-ja8vEUR6H_8WiWSbKKEL4sVEzqDKsULeZJoCIQC0NbFKidsOUCf04jmaYLBSjSXFmW9y_gcoACI8HJJ-Gw%3D%3D&range=0-653&rn=5&rbuf=0&pot=D4Q353ifZ9x_hAxreHsUui13y1TnqkLWQb9Rde2Uj84MjnTZdUnoMi5i6w_rZ9GgVZ6dBKEqKM5UT1ACUK3X58o_0typ_BoOoj7gxTfSPhYJnn2qpCHYc4zad42dLivnMh8TcsOVPHU= HTTP/1.1
Host: rr5---sn-5hne6nsz.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Fri, 27 Dec 2019 21:27:25 GMT
Content-Type: audio/webm
Date: Fri, 02 Dec 2022 04:17:26 GMT
Expires: Fri, 02 Dec 2022 04:17:26 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 654
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr4---sn-5goeenez.googlevideo.com/videoplayback?expire=1669976246&ei=VXyJY9-aOdOBpATyiZyoCA&ip=91.90.42.154&id=o-AGzoGuHILfrW3KUqsGkEOCHD5hrksINbgRND8QPqHafw&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&gcr=no&spc=SFxXNmHH5lXJy_rpE07Fp0EPwpnXoVA&vprv=1&mime=video%2Fwebm&ns=iIX1cKyDCrgrCAPCgthnkVAJ&gir=yes&clen=13800198&dur=224.160&lmt=1577484512651448&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5535432&n=JwQJ3O23G6qMgA&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cgcr%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&alr=yes&sig=AOq0QJ8wRgIhANmEmk0aAsCOblmHuNtx_54lBRc47okVohewi_INbEYiAiEA_v-p2QQ4T0QGe-oqozJhtC1nXpSvUTDToDImqa-yl0I%3D&cpn=Ij-KsjCxqwPBEs9V&cver=1.20221130.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=If&mm=29&mn=sn-5goeenez&ms=rdu&mt=1669954410&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhAOkp2kSQWLOGPoSa88nK1qmjP1JVwtXqFm1RaUAfh5i0AiEAvzZwELMghmjKp_m5BStpG0p8zCZBRoQLPeKoSj9azFo%3D&range=0-975&rn=3&rbuf=0&pot=D4Q353ifZ9x_hAxreHsUui13y1TnqkLWQb9Rde2Uj84MjnTZdUnoMi5i6w_rZ9GgVZ6dBKEqKM5UT1ACUK3X58o_0typ_BoOoj7gxTfSPhYJnn2qpCHYc4zad42dLivnMh8TcsOVPHU=
74.125.111.9200 OK 976 B URL HTTP/1.1 rr4---sn-5goeenez.googlevideo.com/videoplayback?expire=1669976246&ei=VXyJY9-aOdOBpATyiZyoCA&ip=91.90.42.154&id=o-AGzoGuHILfrW3KUqsGkEOCHD5hrksINbgRND8QPqHafw&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&gcr=no&spc=SFxXNmHH5lXJy_rpE07Fp0EPwpnXoVA&vprv=1&mime=video%2Fwebm&ns=iIX1cKyDCrgrCAPCgthnkVAJ&gir=yes&clen=13800198&dur=224.160&lmt=1577484512651448&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5535432&n=JwQJ3O23G6qMgA&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cgcr%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&alr=yes&sig=AOq0QJ8wRgIhANmEmk0aAsCOblmHuNtx_54lBRc47okVohewi_INbEYiAiEA_v-p2QQ4T0QGe-oqozJhtC1nXpSvUTDToDImqa-yl0I%3D&cpn=Ij-KsjCxqwPBEs9V&cver=1.20221130.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=If&mm=29&mn=sn-5goeenez&ms=rdu&mt=1669954410&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhAOkp2kSQWLOGPoSa88nK1qmjP1JVwtXqFm1RaUAfh5i0AiEAvzZwELMghmjKp_m5BStpG0p8zCZBRoQLPeKoSj9azFo%3D&range=0-975&rn=3&rbuf=0&pot=D4Q353ifZ9x_hAxreHsUui13y1TnqkLWQb9Rde2Uj84MjnTZdUnoMi5i6w_rZ9GgVZ6dBKEqKM5UT1ACUK3X58o_0typ_BoOoj7gxTfSPhYJnn2qpCHYc4zad42dLivnMh8TcsOVPHU=
IP 74.125.111.9:0
File type WebM\012- EBML file, creator webmB\20\012- data
Hash 816c1e09c311eeef5da2fc141a1e3f58
f8a12b13c3cb2f93be6f8d4932d24a3a71203909
625cc897e77d8525512a7c7867446022f39606f4c109b0d5e88f8f485a4e8bb2
GET /videoplayback?expire=1669976246&ei=VXyJY9-aOdOBpATyiZyoCA&ip=91.90.42.154&id=o-AGzoGuHILfrW3KUqsGkEOCHD5hrksINbgRND8QPqHafw&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278%2C394%2C395%2C396%2C397%2C398%2C399&source=youtube&requiressl=yes&gcr=no&spc=SFxXNmHH5lXJy_rpE07Fp0EPwpnXoVA&vprv=1&mime=video%2Fwebm&ns=iIX1cKyDCrgrCAPCgthnkVAJ&gir=yes&clen=13800198&dur=224.160&lmt=1577484512651448&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5535432&n=JwQJ3O23G6qMgA&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cgcr%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&alr=yes&sig=AOq0QJ8wRgIhANmEmk0aAsCOblmHuNtx_54lBRc47okVohewi_INbEYiAiEA_v-p2QQ4T0QGe-oqozJhtC1nXpSvUTDToDImqa-yl0I%3D&cpn=Ij-KsjCxqwPBEs9V&cver=1.20221130.01.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=If&mm=29&mn=sn-5goeenez&ms=rdu&mt=1669954410&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhAOkp2kSQWLOGPoSa88nK1qmjP1JVwtXqFm1RaUAfh5i0AiEAvzZwELMghmjKp_m5BStpG0p8zCZBRoQLPeKoSj9azFo%3D&range=0-975&rn=3&rbuf=0&pot=D4Q353ifZ9x_hAxreHsUui13y1TnqkLWQb9Rde2Uj84MjnTZdUnoMi5i6w_rZ9GgVZ6dBKEqKM5UT1ACUK3X58o_0typ_BoOoj7gxTfSPhYJnn2qpCHYc4zad42dLivnMh8TcsOVPHU= HTTP/1.1
Host: rr4---sn-5goeenez.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Fri, 27 Dec 2019 22:08:32 GMT
Content-Type: video/webm
Date: Fri, 02 Dec 2022 04:17:26 GMT
Expires: Fri, 02 Dec 2022 04:17:26 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 976
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr5---sn-5hne6nsz.googlevideo.com/videoplayback?expire=1669976246&ei=VXyJY9-aOdOBpATyiZyoCA&ip=91.90.42.154&id=o-AGzoGuHILfrW3KUqsGkEOCHD5hrksINbgRND8QPqHafw&itag=251&source=youtube&requiressl=yes&gcr=no&spc=SFxXNmHH5lXJy_rpE07Fp0EPwpnXoVA&vprv=1&mime=audio%2Fwebm&ns=iIX1cKyDCrgrCAPCgthnkVAJ&gir=yes&clen=4070946&dur=224.181&lmt=1577482045210273&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5531432&n=JwQJ3O23G6qMgA&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cgcr%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&alr=yes&sig=AOq0QJ8wRAIgUC4HJUK4M-YMDTvXSkG8a7KKn0rKZeoXw9Zi-cla0sQCIEjfZrdsgkB6SrswB5UQisjgqxYALG0b-OgnsbJj3FO5&cpn=Ij-KsjCxqwPBEs9V&cver=1.20221130.01.00&cm2rm=sn-capm-vnae7e,sn-5gos77z&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=If&mm=34&mn=sn-5hne6nsz&ms=ltu&mt=1669954375&mv=m&mvi=5&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgfYhYO0T-ja8vEUR6H_8WiWSbKKEL4sVEzqDKsULeZJoCIQC0NbFKidsOUCf04jmaYLBSjSXFmW9y_gcoACI8HJJ-Gw%3D%3D&range=3293861-3359396&rn=6&rbuf=0&pot=D4Q353ifZ9x_hAxreHsUui13y1TnqkLWQb9Rde2Uj84MjnTZdUnoMi5i6w_rZ9GgVZ6dBKEqKM5UT1ACUK3X58o_0typ_BoOoj7gxTfSPhYJnn2qpCHYc4zad42dLivnMh8TcsOVPHU=
74.125.100.74200 OK 66 kB URL HTTP/1.1 rr5---sn-5hne6nsz.googlevideo.com/videoplayback?expire=1669976246&ei=VXyJY9-aOdOBpATyiZyoCA&ip=91.90.42.154&id=o-AGzoGuHILfrW3KUqsGkEOCHD5hrksINbgRND8QPqHafw&itag=251&source=youtube&requiressl=yes&gcr=no&spc=SFxXNmHH5lXJy_rpE07Fp0EPwpnXoVA&vprv=1&mime=audio%2Fwebm&ns=iIX1cKyDCrgrCAPCgthnkVAJ&gir=yes&clen=4070946&dur=224.181&lmt=1577482045210273&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5531432&n=JwQJ3O23G6qMgA&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cgcr%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&alr=yes&sig=AOq0QJ8wRAIgUC4HJUK4M-YMDTvXSkG8a7KKn0rKZeoXw9Zi-cla0sQCIEjfZrdsgkB6SrswB5UQisjgqxYALG0b-OgnsbJj3FO5&cpn=Ij-KsjCxqwPBEs9V&cver=1.20221130.01.00&cm2rm=sn-capm-vnae7e,sn-5gos77z&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=If&mm=34&mn=sn-5hne6nsz&ms=ltu&mt=1669954375&mv=m&mvi=5&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgfYhYO0T-ja8vEUR6H_8WiWSbKKEL4sVEzqDKsULeZJoCIQC0NbFKidsOUCf04jmaYLBSjSXFmW9y_gcoACI8HJJ-Gw%3D%3D&range=3293861-3359396&rn=6&rbuf=0&pot=D4Q353ifZ9x_hAxreHsUui13y1TnqkLWQb9Rde2Uj84MjnTZdUnoMi5i6w_rZ9GgVZ6dBKEqKM5UT1ACUK3X58o_0typ_BoOoj7gxTfSPhYJnn2qpCHYc4zad42dLivnMh8TcsOVPHU=
IP 74.125.100.74:0
Hash 7c43dd809f3f730fdab5a2f1287e9dfc
64fa6b7b5ab127731986bc7d378b79a822f91e14
a47e3827e5973536852aee6022e06a588a70acc26d0ec71bf5d0ad05a501c580
GET /videoplayback?expire=1669976246&ei=VXyJY9-aOdOBpATyiZyoCA&ip=91.90.42.154&id=o-AGzoGuHILfrW3KUqsGkEOCHD5hrksINbgRND8QPqHafw&itag=251&source=youtube&requiressl=yes&gcr=no&spc=SFxXNmHH5lXJy_rpE07Fp0EPwpnXoVA&vprv=1&mime=audio%2Fwebm&ns=iIX1cKyDCrgrCAPCgthnkVAJ&gir=yes&clen=4070946&dur=224.181&lmt=1577482045210273&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5531432&n=JwQJ3O23G6qMgA&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cgcr%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&alr=yes&sig=AOq0QJ8wRAIgUC4HJUK4M-YMDTvXSkG8a7KKn0rKZeoXw9Zi-cla0sQCIEjfZrdsgkB6SrswB5UQisjgqxYALG0b-OgnsbJj3FO5&cpn=Ij-KsjCxqwPBEs9V&cver=1.20221130.01.00&cm2rm=sn-capm-vnae7e,sn-5gos77z&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=If&mm=34&mn=sn-5hne6nsz&ms=ltu&mt=1669954375&mv=m&mvi=5&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgfYhYO0T-ja8vEUR6H_8WiWSbKKEL4sVEzqDKsULeZJoCIQC0NbFKidsOUCf04jmaYLBSjSXFmW9y_gcoACI8HJJ-Gw%3D%3D&range=3293861-3359396&rn=6&rbuf=0&pot=D4Q353ifZ9x_hAxreHsUui13y1TnqkLWQb9Rde2Uj84MjnTZdUnoMi5i6w_rZ9GgVZ6dBKEqKM5UT1ACUK3X58o_0typ_BoOoj7gxTfSPhYJnn2qpCHYc4zad42dLivnMh8TcsOVPHU= HTTP/1.1
Host: rr5---sn-5hne6nsz.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Fri, 27 Dec 2019 21:27:25 GMT
Content-Type: audio/webm
Date: Fri, 02 Dec 2022 04:17:26 GMT
Expires: Fri, 02 Dec 2022 04:17:26 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 65536
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
assets9.lottiefiles.com/temp/lf20_J1XkLr.json
54.230.111.52200 OK 0 B URL HTTP/2 assets9.lottiefiles.com/temp/lf20_J1XkLr.json
IP 54.230.111.52:0
GET /temp/lf20_J1XkLr.json HTTP/1.1
Host: assets9.lottiefiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://b3.bizzy.rocks
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
date: Fri, 02 Dec 2022 04:17:25 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 1800
last-modified: Thu, 14 Mar 2019 06:44:17 GMT
etag: W/"b69b496a5daef3b035b7f6fa1fb7f8e9"
x-amz-version-id: eZzic_AG6.hsy.tV1VzNc4sEoq.VUy5u
server: AmazonS3
content-encoding: br
vary: Accept-Encoding,Origin
x-cache: Miss from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _pkjw_7DrTPo_ymvml_7fn0FKrfhmkwklRU0Sacs3Zw1n93QNen6gA==
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=5.6.7
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=5.6.7
IP 142.250.74.106:0
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=5.6.7 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Dec 2022 04:17:23 GMT
date: Fri, 02 Dec 2022 04:17:23 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s.w.org/images/core/emoji/13.0.1/svg/1f1ec-1f1e7.svg
192.0.77.48200 OK 0 B URL HTTP/2 s.w.org/images/core/emoji/13.0.1/svg/1f1ec-1f1e7.svg
IP 192.0.77.48:0
GET /images/core/emoji/13.0.1/svg/1f1ec-1f1e7.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://b3.bizzy.rocks/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 04:17:24 GMT
content-type: image/svg+xml
last-modified: Tue, 20 Oct 2020 16:13:30 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 2
x-content-type-options: nosniff
X-Firefox-Spdy: h2