r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 81713f952b51a865ad9764cde68e3fdb
278c3a9c4bb2a0ffb7375f90d89a1ba6e90a766a
c2eb0d8a24ecb51af28f1c71db4b9a95c568dcf6c94b41ee8c78787a4ebebcef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2EB0D8A24ECB51AF28F1C71DB4B9A95C568DCF6C94B41EE8C78787A4EBEBCEF"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15340
Expires: Sat, 04 Feb 2023 09:46:41 GMT
Date: Sat, 04 Feb 2023 05:31:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13161
Expires: Sat, 04 Feb 2023 09:10:22 GMT
Date: Sat, 04 Feb 2023 05:31:01 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 04:36:13 GMT
content-type: application/json
age: 3288
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7d2222d41721947297aaeb5a6e3d0714
04cc1ee417c8bf6338657fd4c2e4e1c1ddfd3065
de0e45969a2ad95e52f7e2fbd0d021d9075dd7b14666c929346efe111f648f7c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DE0E45969A2AD95E52F7E2FBD0D021D9075DD7B14666C929346EFE111F648F7C"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15003
Expires: Sat, 04 Feb 2023 09:41:04 GMT
Date: Sat, 04 Feb 2023 05:31:01 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 34Vpso3GjIz2oAjRhk9RtbNS6KLcaVjrDcWZRBxy4VoPBEGYvYJQBlq0OPmSVY5odnaGNFcBCOI=
x-amz-request-id: KQ2PBT8G40Z8Z0EP
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 04:52:42 GMT
age: 2299
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 05:31:01 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 04:49:07 GMT
age: 2514
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13932
Expires: Sat, 04 Feb 2023 09:23:14 GMT
Date: Sat, 04 Feb 2023 05:31:02 GMT
Connection: keep-alive
push.services.mozilla.com/
44.241.148.153101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.241.148.153:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: HrDSGjKDmTjENp5u4QspRg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 5MJ6E02gARBvBztU1LqzP+7q220=
nightfame.com/style/researcher-earns-120k-in-7-days-by-exposing-bugs-in-eos-source-code
103.6.196.236301 Moved Permanently 0 B URL HTTP/1.1 nightfame.com/style/researcher-earns-120k-in-7-days-by-exposing-bugs-in-eos-source-code
IP 103.6.196.236:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /style/researcher-earns-120k-in-7-days-by-exposing-bugs-in-eos-source-code HTTP/1.1
Host: nightfame.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 04 Feb 2023 05:31:01 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://nightfame.com/style/researcher-earns-120k-in-7-days-by-exposing-bugs-in-eos-source-code/
Keep-Alive: timeout=5, max=100
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2784
Expires: Sat, 04 Feb 2023 06:17:27 GMT
Date: Sat, 04 Feb 2023 05:31:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2784
Expires: Sat, 04 Feb 2023 06:17:27 GMT
Date: Sat, 04 Feb 2023 05:31:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2784
Expires: Sat, 04 Feb 2023 06:17:27 GMT
Date: Sat, 04 Feb 2023 05:31:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2784
Expires: Sat, 04 Feb 2023 06:17:27 GMT
Date: Sat, 04 Feb 2023 05:31:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2784
Expires: Sat, 04 Feb 2023 06:17:27 GMT
Date: Sat, 04 Feb 2023 05:31:03 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72a06bff-2a3c-4fc8-9c7a-5649a696581e.png
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72a06bff-2a3c-4fc8-9c7a-5649a696581e.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a032104cf4ccc6ea31f163ca16386487
a0573916c3d72f0554928963c0a74413fdcb3558
8ba7b6e9b3fa28f6fd27f5f006cedac10f50d7da6c109155a2476cf04f4df932
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72a06bff-2a3c-4fc8-9c7a-5649a696581e.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8909
x-amzn-requestid: 29f57721-99ae-4927-b324-b0a40668e2f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyDqqEPuIAMFqpg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd7fdd-156c25027894630b61e5770c;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:42:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6-RtedWR4ubEBwe85bNcobzqb2Cy9aEUzyT3tlhJ95zD5SgiuS7coA==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:11:43 GMT
age: 26360
etag: "a0573916c3d72f0554928963c0a74413fdcb3558"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cf80667db0c35c9c6139eca4ba5d12fd
4c4cfdc2463e8704a7bf8e1477c43b6adf7c7590
d63e69f4b6ea16333d242bf33d4f02a4a6c96a739ca018d86afc5741d85b774d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13065
x-amzn-requestid: 20c6f462-0f1f-44d1-9b6b-6afbc4e79e8b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpYpcELtIAMFvFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63da07d5-44cd803c0feba28919b0a9ec;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 06:33:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T3PhGRcHX1X2hn8K_4587fXBrEyuY5Em-b9Jg41uH4uyQXeFoRBIYg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:55:01 GMT
age: 27362
etag: "4c4cfdc2463e8704a7bf8e1477c43b6adf7c7590"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c030376-7935-4601-969c-86a91f4f5e85.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c030376-7935-4601-969c-86a91f4f5e85.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d7afd5ce8fb9ec7b62e528bf97705e49
afbf22f5d8f54adcb00e8980a9b22f2c5b6703c3
b2d93ba6c0ed2c858d91afba1c81251afbffa41c779be2e9203994dcfb7bbc9d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c030376-7935-4601-969c-86a91f4f5e85.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7249
x-amzn-requestid: 007ce521-ed5c-4074-a314-684ad0df2e22
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD9GH5goAMF_ag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8053-7060f02b767c90371991a190;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5fTV_e56nzjiXo4Guu67WXDDvp3nrjB0Yfyy6ByjcDSx23J-8r0fmQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:21 GMT
age: 26442
etag: "afbf22f5d8f54adcb00e8980a9b22f2c5b6703c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3ac51fd6789cbe19c2d484c9022b0e39
bcba22a7b7f5dd1f59fffd1027e5d7002cecb6e9
300b5e50cb910f9f4905ee7313d98763b68f85f5874db499cc94469fb14cabfe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9500
x-amzn-requestid: 8fe94388-e8d9-4329-b73a-e9a356df76bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD9QEA1IAMF3Ug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8054-51f954ac4bec16d1055e38f5;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FkTJ6wQ4eFYBPDyS0l5vLeWvHHiQIx-cYyFzT4ggHJ8M5Gg3dozFxQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:59:51 GMT
age: 27072
etag: "bcba22a7b7f5dd1f59fffd1027e5d7002cecb6e9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e5b4e4f15da3323c73974c3f1cdb5d74
1f14971d0cf979cc34ff191849dc43d86e8ac463
5893d7e5b2fd9de92829b303c42d0c07ff32b3f6b8705b6f5b4a784315c8808e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5174
x-amzn-requestid: 35630c70-3bad-47b4-94bb-09c873632194
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7EFAHIAMFQQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-317b1fbb3bee0f377697bf3d;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OD5cy75AkNMwTIvIool2nKbKgr5Jpo1Plm_X_YPr3rdPbg86_V2fdA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:00:26 GMT
age: 27037
etag: "1f14971d0cf979cc34ff191849dc43d86e8ac463"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e245a51-5c03-4b84-b42a-29fa3a7806e9.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e245a51-5c03-4b84-b42a-29fa3a7806e9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 65cd12302c9ca5468dbc9a98155970e0
a0c63213c3021e40f8ea54f2da6a5c165ed5cfd1
8463155faca74f13ec4500fed98289d8bfbdc4a989d1cb7580736018eadf1000
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e245a51-5c03-4b84-b42a-29fa3a7806e9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7992
x-amzn-requestid: ba4f95d9-6081-4b34-955c-bbe8e7b2335c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEEjGsdIAMF84w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8083-7666baa66ccdec9b5fec8736;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:45:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: A3c6sSs_b8KkREPa26a8X9NTEZpHGDjElR9hT-NXwg6dYpeuRNZXfA==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:21 GMT
age: 26442
etag: "a0c63213c3021e40f8ea54f2da6a5c165ed5cfd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a32e3f29bbfa3e438429bd19e73f74c0
a5a80ec5c1df7c4a78b8f412f1a5093904407ed0
c1099fa1477bd2dbdf6301faab4eb494292835653a955578d451e0dbc54f7d6b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5087
Cache-Control: max-age=140467
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:31:04 GMT
Etag: "63dd5b6c-117"
Expires: Sun, 05 Feb 2023 20:32:11 GMT
Last-Modified: Fri, 03 Feb 2023 19:07:24 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279
code.jquery.com/jquery-1.11.3.js
69.16.175.42200 OK 84 kB URL HTTP/2 code.jquery.com/jquery-1.11.3.js
IP 69.16.175.42:0
Hash 15fc0bb1cf6de1468e8ae59876600c82
96374f44c205f70bd4dfffd06c6f9ee5cc6c4856
11b162523a530028cabc1019822d09d294b9f911ee651e0819a78e5677d2b846
GET /jquery-1.11.3.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://nightfame.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:31:04 GMT
content-encoding: gzip
content-length: 84538
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-456ea"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1675488664.dop021.sk1.t,1675488664.cds018.sk1.hn,1675488664.cds203.sk1.c
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a32e3f29bbfa3e438429bd19e73f74c0
a5a80ec5c1df7c4a78b8f412f1a5093904407ed0
c1099fa1477bd2dbdf6301faab4eb494292835653a955578d451e0dbc54f7d6b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5087
Cache-Control: max-age=140467
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:31:04 GMT
Etag: "63dd5b6c-117"
Expires: Sun, 05 Feb 2023 20:32:11 GMT
Last-Modified: Fri, 03 Feb 2023 19:07:24 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279
nightfame.com/style/researcher-earns-120k-in-7-days-by-exposing-bugs-in-eos-source-code/
103.6.196.236200 OK 23 kB URL HTTP/1.1 nightfame.com/style/researcher-earns-120k-in-7-days-by-exposing-bugs-in-eos-source-code/
IP 103.6.196.236:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1746), with CRLF, LF line terminators
Hash 2de25c434e23b9c2b5d59171469ffe29
1d7953b0e4737f42397af93e8a07a61a105fa826
da399d7fc1f6b293ba60b47d418d078da7b240f4b28934590f62d642e458c451
GET /style/researcher-earns-120k-in-7-days-by-exposing-bugs-in-eos-source-code/ HTTP/1.1
Host: nightfame.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 05:31:02 GMT
Server: Apache
Link: <http://nightfame.com/style/wp-json/>; rel="https://api.w.org/", <http://nightfame.com/style/?p=39668>; rel=shortlink
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Keep-Alive: timeout=5, max=100
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.travelpayouts.com/ducklett/scripts_en.js?widget_type=slider¤cy=usd&host=www.jetradar.com%2Fsearches%2Fnew&marker=20042.&limit=21
188.42.198.252302 Found 0 B URL HTTP/1.1 www.travelpayouts.com/ducklett/scripts_en.js?widget_type=slider¤cy=usd&host=www.jetradar.com%2Fsearches%2Fnew&marker=20042.&limit=21
IP 188.42.198.252:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ducklett/scripts_en.js?widget_type=slider¤cy=usd&host=www.jetradar.com%2Fsearches%2Fnew&marker=20042.&limit=21 HTTP/1.1
Host: www.travelpayouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nightfame.com/
HTTP/1.1 302 Found
content-length: 0
location: https://www.travelpayouts.com/ducklett/scripts_en.js?widget_type=slider¤cy=usd&host=www.jetradar.com%2Fsearches%2Fnew&marker=20042.&limit=21
cache-control: no-cache
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a02cb4e448990a70dd5da3eec49cbca4
78d22652f44f4868c594a94b525079c989b2eec4
8bc81ae88a87235cf17f400cb61029b1f2c9d4e39ea0391be5ddd392d3eeaca3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2297
Cache-Control: max-age=99099
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:31:04 GMT
Etag: "63dcc4ba-117"
Expires: Sun, 05 Feb 2023 09:02:43 GMT
Last-Modified: Fri, 03 Feb 2023 08:24:26 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279
adbit.biz/js/show_ads.js
188.114.97.1200 OK 4.4 kB IP 188.114.97.1:0
File type ASCII text, with very long lines (13618), with no line terminators
Hash 6a8b49af6057a2f548cddd430416e6dd
a9d2194319d45bd857f275528ec6b25d117b6536
a4421c780faa287ccae3d94ac248d96392fc6d339b3b5faea8a86f5024270b3f
GET /js/show_ads.js HTTP/1.1
Host: adbit.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://nightfame.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:31:04 GMT
content-type: application/javascript
cache-control: max-age=604800
cf-bgj: minify
cf-polished: origSize=13619
etag: W/"62b02fd0-3533"
expires: Mon, 06 Feb 2023 15:06:04 GMT
last-modified: Mon, 20 Jun 2022 08:29:04 GMT
cf-cache-status: HIT
age: 202978
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Vk939%2BHsY4Lq2Mu00GcP4xYcMdfCeX342BKBT14Naxm13XvL8VNxvGd6baW2B6zwMsi5ons8BVXuQgPiAncgkCiMa9ZrzCmOBzVubCr1P90biyIjjLZ6vrxc2wY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794104975d84b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 720a2e81de69de894c767dc67151c99e
4feba63c930207c4fe5435ba08bc5a97ea1d4323
7c736e6b914e49d0c9a3091865833c37ab7c6cf25444e52c0d5e512e1bcdea48
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7C736E6B914E49D0C9A3091865833C37AB7C6CF25444E52C0D5E512E1BCDEA48"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4288
Expires: Sat, 04 Feb 2023 06:42:32 GMT
Date: Sat, 04 Feb 2023 05:31:04 GMT
Connection: keep-alive
nightfame.com/style/wp-content/themes/newschannel/library/js/scripts.js?ver=1.0.0
103.6.196.236200 OK 269 B URL HTTP/1.1 nightfame.com/style/wp-content/themes/newschannel/library/js/scripts.js?ver=1.0.0
IP 103.6.196.236:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with CRLF line terminators
Hash eace98bf24bedd1fcd5da4aa8e891eb3
e68ee0c09e8cb749a01bd330511123147d6db77a
8864ecf525be8e1880e704484e06cb8d69b41a6b75c302a3143ed31a591f86c1
GET /style/wp-content/themes/newschannel/library/js/scripts.js?ver=1.0.0 HTTP/1.1
Host: nightfame.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nightfame.com/style/researcher-earns-120k-in-7-days-by-exposing-bugs-in-eos-source-code/
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 05:31:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 30 Oct 2013 11:58:18 GMT
Accept-Ranges: bytes
Content-Length: 269
Keep-Alive: timeout=5, max=100
Content-Type: application/javascript
nightfame.com/style/wp-includes/js/wp-emoji-release.min.js?ver=4.9.22
103.6.196.236200 OK 12 kB URL HTTP/1.1 nightfame.com/style/wp-includes/js/wp-emoji-release.min.js?ver=4.9.22
IP 103.6.196.236:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with very long lines (9063)
Hash fe0575b66568074463f12485d90f6d4c
aeedd9ab3b7874e63f647042963cb1301a38b391
647a6b36f3fd1f21bae171270111096b4613c23a47e6621628a51bae9c82b0b7
GET /style/wp-includes/js/wp-emoji-release.min.js?ver=4.9.22 HTTP/1.1
Host: nightfame.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nightfame.com/style/researcher-earns-120k-in-7-days-by-exposing-bugs-in-eos-source-code/
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 05:31:04 GMT
Server: Apache
Last-Modified: Fri, 16 Apr 2021 00:01:34 GMT
Accept-Ranges: bytes
Content-Length: 11943
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
nightfame.com/style/wp-includes/js/wp-embed.min.js?ver=4.9.22
103.6.196.236200 OK 1.4 kB URL HTTP/1.1 nightfame.com/style/wp-includes/js/wp-embed.min.js?ver=4.9.22
IP 103.6.196.236:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with very long lines (1391), with no line terminators
Hash 570ae0f3c201604926ea599d3d1f6c04
2c29243a73660964d4712b969d2a15e27777bc14
5138d39633dc69fcd0ed7f33a5e38dc339123f682fa7f5242066879c2bbc8c9b
GET /style/wp-includes/js/wp-embed.min.js?ver=4.9.22 HTTP/1.1
Host: nightfame.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nightfame.com/style/researcher-earns-120k-in-7-days-by-exposing-bugs-in-eos-source-code/
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 05:31:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 16 Apr 2021 00:01:34 GMT
Accept-Ranges: bytes
Content-Length: 1391
Keep-Alive: timeout=5, max=100
Content-Type: application/javascript
nightfame.com/style/wp-content/themes/newschannel/style.css?ver=4.9.22
103.6.196.236200 OK 36 kB URL HTTP/1.1 nightfame.com/style/wp-content/themes/newschannel/style.css?ver=4.9.22
IP 103.6.196.236:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
Hash efeb4f627fa05965897c132aac839782
346f89623f971e76690d5476f5e38c69c282addc
a246d8f45c4b7a7412af538dd33310ff86da339a7c5e48be15126b94fe00d5f2
GET /style/wp-content/themes/newschannel/style.css?ver=4.9.22 HTTP/1.1
Host: nightfame.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nightfame.com/style/researcher-earns-120k-in-7-days-by-exposing-bugs-in-eos-source-code/
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 05:31:03 GMT
Server: Apache
Last-Modified: Wed, 14 Sep 2022 01:38:15 GMT
Accept-Ranges: bytes
Content-Length: 36134
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
fonts.googleapis.com/css?family=Droid+Sans+Mono
142.250.74.106200 OK 286 B URL HTTP/1.1 fonts.googleapis.com/css?family=Droid+Sans+Mono
IP 142.250.74.106:0
Hash fa4c272cf4a9ca64ed0c4d73726fce29
f40ec5b0ea2da104ac86a271d542d9d89a54e138
4c44d71671c0eb4df93495bcc2c0c7879584b6d8632c6383ce3e2b406ff52f49
GET /css?family=Droid+Sans+Mono HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nightfame.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 04 Feb 2023 05:31:04 GMT
Date: Sat, 04 Feb 2023 05:31:04 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Droid+Serif:400,700,400italic
142.250.74.106200 OK 325 B URL HTTP/1.1 fonts.googleapis.com/css?family=Droid+Serif:400,700,400italic
IP 142.250.74.106:0
Hash 6a6c1866ba77d458bc7701cd16a4f949
3a0d69ed1aeff882e7b1b6d1a6047abbe17ff4e2
8a5f65f17c58a766321b03a7651ca22887eb8544c27dd3b87e6192e9dd42838a
GET /css?family=Droid+Serif:400,700,400italic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nightfame.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 04 Feb 2023 05:31:04 GMT
Date: Sat, 04 Feb 2023 05:31:04 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Droid+Sans:400,700
142.250.74.106200 OK 304 B URL HTTP/1.1 fonts.googleapis.com/css?family=Droid+Sans:400,700
IP 142.250.74.106:0
Hash 37bd97ab5d600328cee799bbc856e70f
b81303809a55a104a709773e53737aedcaec1f44
37d6bf70e3ca3db4fc2d0ce9c7f364c91fdf3d8a5ff2bb17d5d7a94d3b63e64e
GET /css?family=Droid+Sans:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nightfame.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 04 Feb 2023 05:31:04 GMT
Date: Sat, 04 Feb 2023 05:31:04 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
nightfame.com/style/wp-content/themes/newschannel/library/js/modernizr-2.6.1.min.js?ver=2.6.1
103.6.196.236200 OK 14 kB URL HTTP/1.1 nightfame.com/style/wp-content/themes/newschannel/library/js/modernizr-2.6.1.min.js?ver=2.6.1
IP 103.6.196.236:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type HTML document, ASCII text, with very long lines (13812), with CRLF line terminators
Hash cf1697ae947512399034da17d3748c99
435faae5dd13af8699302061b443252bd5011f56
a9a385616f72fa8d7fd75cb5d868c41207411e8d1cf30b51caa2270bf9c3980b
GET /style/wp-content/themes/newschannel/library/js/modernizr-2.6.1.min.js?ver=2.6.1 HTTP/1.1
Host: nightfame.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nightfame.com/style/researcher-earns-120k-in-7-days-by-exposing-bugs-in-eos-source-code/
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 05:31:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 30 Oct 2013 11:58:18 GMT
Accept-Ranges: bytes
Content-Length: 14414
Keep-Alive: timeout=5, max=100
Content-Type: application/javascript
nightfame.com/style/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
103.6.196.236200 OK 10 kB URL HTTP/1.1 nightfame.com/style/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 103.6.196.236:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with very long lines (9959)
Hash 7121994eec5320fbe6586463bf9651c2
90532aff6d4121954254cdf04994d834f7ec169b
48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d
GET /style/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: nightfame.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nightfame.com/style/researcher-earns-120k-in-7-days-by-exposing-bugs-in-eos-source-code/
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 05:31:04 GMT
Server: Apache
Last-Modified: Wed, 20 Jun 2018 14:49:12 GMT
Accept-Ranges: bytes
Content-Length: 10056
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
nightfame.com/style/wp-content/plugins/icegram/assets/js/main.min.js?ver=1.10.10
103.6.196.236200 OK 2.7 kB URL HTTP/1.1 nightfame.com/style/wp-content/plugins/icegram/assets/js/main.min.js?ver=1.10.10
IP 103.6.196.236:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type HTML document text\012- HTML document, ASCII text, with very long lines (2707), with no line terminators
Hash 5e8cd70ac2ddd2bf5db5d3d8d66f80d6
9457b988879ca9a18f09df373f34e547ebf04084
9ebff7017dd268671621d8ee78f8d0fbbc8acf656f7f7988aec31da68be69e2a
GET /style/wp-content/plugins/icegram/assets/js/main.min.js?ver=1.10.10 HTTP/1.1
Host: nightfame.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nightfame.com/style/researcher-earns-120k-in-7-days-by-exposing-bugs-in-eos-source-code/
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 05:31:04 GMT
Server: Apache
Last-Modified: Sun, 15 Oct 2017 09:22:25 GMT
Accept-Ranges: bytes
Content-Length: 2707
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.travelpayouts.com/ducklett/scripts_en.js?widget_type=slider¤cy=usd&host=www.jetradar.com%2Fsearches%2Fnew&marker=20042.&limit=21
188.42.198.252200 OK 21 kB URL HTTP/2 www.travelpayouts.com/ducklett/scripts_en.js?widget_type=slider¤cy=usd&host=www.jetradar.com%2Fsearches%2Fnew&marker=20042.&limit=21
IP 188.42.198.252:0
File type ASCII text, with CRLF line terminators
Hash ebdf8c81b948461d7464566ebcff6c78
b1c790074f01cf14f23497b98bf5e4bf70ff688e
8761eb45329c336ba1961bf817c8dafdc1eeb2579532d8d2c395f0e5d0e93e4d
GET /ducklett/scripts_en.js?widget_type=slider¤cy=usd&host=www.jetradar.com%2Fsearches%2Fnew&marker=20042.&limit=21 HTTP/1.1
Host: www.travelpayouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://nightfame.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 05:31:04 GMT
content-type: application/javascript; charset=utf-8
cache-control: private, max-age=0
timing-allow-origin: *
x-promo-id: 4019
x-request-id: 7a6344f285ce66c70ec7565d45f8f249
x-robots-tag: noindex
content-encoding: br
set-cookie: auid_tp=CtYRWmPd7ZgbfKGOzf1gAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; path=/
X-Firefox-Spdy: h2
nightfame.com/style/wp-includes/js/jquery/jquery.js?ver=1.12.4
103.6.196.236200 OK 97 kB URL HTTP/1.1 nightfame.com/style/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP 103.6.196.236:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type ASCII text, with very long lines (31997)
Hash dc5ba5044fccc0297be7b262ce669a7c
f137ff98ae379e35b0702967d3b6866a0a40e3be
cf34e1b87bbfd9d9b185dec994924a496e279d8dc9387ad8d35bc0110134c4d3
GET /style/wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: nightfame.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nightfame.com/style/researcher-earns-120k-in-7-days-by-exposing-bugs-in-eos-source-code/
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 05:31:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 05 Sep 2019 07:06:04 GMT
Accept-Ranges: bytes
Content-Length: 96874
Keep-Alive: timeout=5, max=100
Content-Type: application/javascript
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 58ffe26ef103fcce86c086be4b5fde97
cb78d4e55f4178695b60956133f6d9492418c57b
2bef2392a819d9a416112f9b39aba6687e7ffdfd4a7b3fc118814a6062b52a1a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1463
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:31:05 GMT
Last-Modified: Sat, 04 Feb 2023 05:06:42 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 8176ac8bbb8fa05f36bdfa163da09e0c
b936c84c5fa7e781b12a17952c82bca546ca0575
1aa7e39fd02514a4023036a8a100d7e7898ee220063ebfb41c509264c81ed727
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:31:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
assets.portalhc.com/banners/affiliate/en/inspirational_468x60.gif?cdn=3
151.101.129.29200 OK 38 kB URL HTTP/1.1 assets.portalhc.com/banners/affiliate/en/inspirational_468x60.gif?cdn=3
IP 151.101.129.29:0
File type GIF image data, version 89a, 468 x 60\012- data
Hash 88d9d99108a928c91fca1601c28ac047
a9ffee127ce2a3011bcbbc085c28e13eb34cc9f9
beebf5730c91bf6e35dc9f37cdb1b03ca27987f6bc2122f356980018674ee8fe
GET /banners/affiliate/en/inspirational_468x60.gif?cdn=3 HTTP/1.1
Host: assets.portalhc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nightfame.com/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 38271
x-amz-id-2: 1KUvINybp8/I6fvVpwRPM+ZggAv49B56h89IBoc7uNtJICocKlUeuCoH7VHvm3KYTSgrmW6HMGw=
x-amz-request-id: QBQ8AGVDF4F1PPC5
Last-Modified: Tue, 13 Dec 2011 06:19:48 GMT
ETag: "88d9d99108a928c91fca1601c28ac047"
Cache-Control: public, max-age=31556926
x-amz-version-id: null
Content-Type: image/gif
Server: AmazonS3
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 05:31:05 GMT
Age: 3117449
X-Served-By: cache-iad-kjyo7100052-IAD, cache-bma1640-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 61, 1
X-Timer: S1675488665.036399,VS0,VE1
fonts.gstatic.com/s/droidserif/v19/tDbI2oqRg1oM3QBjjcaDkOr9rAU.woff2
216.58.207.227200 OK 22 kB URL HTTP/1.1 fonts.gstatic.com/s/droidserif/v19/tDbI2oqRg1oM3QBjjcaDkOr9rAU.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 22476, version 1.0\012- data
Hash c221fd7b9d189773de5e54745a6dc28c
9a58a6bd08f6cda6acbfaaa160375d3e1c5c93f0
aee4051a20e975b9bb6fdc20984a091eb1f55c35ea87abe441db4cdbe8c116d0
GET /s/droidserif/v19/tDbI2oqRg1oM3QBjjcaDkOr9rAU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://nightfame.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 22476
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 02 Feb 2023 21:53:12 GMT
Expires: Fri, 02 Feb 2024 21:53:12 GMT
Cache-Control: public, max-age=31536000
Age: 113873
Last-Modified: Tue, 19 Apr 2022 19:19:08 GMT
Content-Type: font/woff2
static.rollercoin.com/static/img/ref/gen3/w300h250.gif
104.26.14.99200 OK 263 kB URL HTTP/2 static.rollercoin.com/static/img/ref/gen3/w300h250.gif
IP 104.26.14.99:0
Size 263 kB (263000 bytes)
Hash 4a0f1d1628441b344dce80fb8a204f26
dc605ee30832ae7203df3b9f5ba8236e1d01bb60
f63e4be92540ea0557f03ab7731acae5a4041d28517fddc09f53d30a7d48451a
GET /static/img/ref/gen3/w300h250.gif HTTP/1.1
Host: static.rollercoin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://nightfame.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:31:05 GMT
content-type: image/gif
content-length: 246652
access-control-allow-origin: *
cf-bgj: imgq:100,h2pri
cf-polished: origSize=253899, status=vary_header_present
etag: "0a8e65b406b1139406dfda85cb59e357"
last-modified: Thu, 19 Jan 2023 11:51:18 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
x-amz-request-id: tx00000000000000311ea1b-0063d6bdfa-57daea9d-nyc3c
x-rgw-object-type: Normal
cache-control: max-age=1382400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dDBAsyv8wjlxVJaMToSJldT9yBIRF6H%2BowBfXNAfsAX9RP5Qe%2BLTrhdy37iWl38H5CszGsSyqKU%2Fhaf4h05YUyxn9NGEVJryM%2FC5FVcPGbjn0jQWSeXjZAcSfx%2BReoYYHd%2FgPKxHeQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7941049ca926b523-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/droidsans/v18/SlGVmQWMvZQIdix7AFxXkHNSbQ.woff2
216.58.207.227200 OK 21 kB URL HTTP/1.1 fonts.gstatic.com/s/droidsans/v18/SlGVmQWMvZQIdix7AFxXkHNSbQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 21224, version 1.0\012- data
Hash 13bdfb843f942ccd9f485eb6c0bc1934
2bad44362ff7569f24f2a3df2521b27a97ec1297
7a291479495fbb281655d5e870c6d118dc6b7ed18e8c235aef5974c1e9de4e6c
GET /s/droidsans/v18/SlGVmQWMvZQIdix7AFxXkHNSbQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://nightfame.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 21224
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 01 Feb 2023 21:23:02 GMT
Expires: Thu, 01 Feb 2024 21:23:02 GMT
Cache-Control: public, max-age=31536000
Age: 202083
Last-Modified: Tue, 19 Apr 2022 18:04:18 GMT
Content-Type: font/woff2
ad.a-ads.com/693989?size=728x90
176.9.77.232200 OK 4.7 kB URL HTTP/1.1 ad.a-ads.com/693989?size=728x90
IP 176.9.77.232:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (11122)
Hash 27c06fbc2f01cbced4f453ed6df7fc90
bbff79f2a84f4073427b3be7a00bd84906e15268
4139bd8eaf35da94986e73940289c2c155901875bc87b654c28e275961132e45
GET /693989?size=728x90 HTTP/1.1
Host: ad.a-ads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nightfame.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 05:31:05 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Accept-Encoding
Status: 200 OK
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Powered-By: Phusion Passenger(R)
X-Original-Referer: http://nightfame.com/
X-Robots-Tag: noindex, nofollow, nosnippet, noarchive
Content-Encoding: gzip
ad.a-ads.com/678173?size=468x60
176.9.77.232200 OK 4.7 kB URL HTTP/1.1 ad.a-ads.com/678173?size=468x60
IP 176.9.77.232:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (11122)
Hash ab8c1384cf86c11ceefa1b4e6ad3d438
f80727b12d440930317e79ec83e08b3f32f5e116
7c85879cbb91d79a84bb82c5e2b54f399b527766788275511a6269fe80ae69cc
GET /678173?size=468x60 HTTP/1.1
Host: ad.a-ads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nightfame.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 05:31:05 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Accept-Encoding
Status: 200 OK
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Powered-By: Phusion Passenger(R)
X-Original-Referer: http://nightfame.com/
X-Robots-Tag: noindex, nofollow, nosnippet, noarchive
Content-Encoding: gzip
ad.a-ads.com/678168?size=300x250
176.9.77.232200 OK 4.7 kB URL HTTP/1.1 ad.a-ads.com/678168?size=300x250
IP 176.9.77.232:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (11122)
Hash 0fc04e6c0ade897d8cdb42c66c82ca5a
03fc93fadf644f4388eda0da0c97bc027519e581
c52675969f1524e78a48388bd4319fcd843067a8b34c415363076eb72d7cb388
GET /678168?size=300x250 HTTP/1.1
Host: ad.a-ads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nightfame.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 05:31:05 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Accept-Encoding
Status: 200 OK
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Powered-By: Phusion Passenger(R)
X-Original-Referer: http://nightfame.com/
X-Robots-Tag: noindex, nofollow, nosnippet, noarchive
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash c986db60d109cebe9edea95ae334367a
3ecc6c872853328590f56af9e2607af3b7ea7e6d
be33e54625bddc8d3e0797a6922d2a5c081d6322513cad8b2033039c3a54f3f0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2303
Cache-Control: max-age=141244
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:31:05 GMT
Etag: "63dd6956-116"
Expires: Sun, 05 Feb 2023 20:45:09 GMT
Last-Modified: Fri, 03 Feb 2023 20:06:46 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 278
fonts.gstatic.com/s/droidserif/v19/tDbK2oqRg1oM3QBjjcaDkOr4nAfcHg.woff2
216.58.207.227200 OK 20 kB URL HTTP/1.1 fonts.gstatic.com/s/droidserif/v19/tDbK2oqRg1oM3QBjjcaDkOr4nAfcHg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 20452, version 1.0\012- data
Hash 748e4474d6c6b46abba5a50f0a986152
575fd87ae9167d233d8c024ade8544d09c1b9eef
722d1d506241600936dd8a2bd82430e214405cefb4ee2496194ddedc92f0d193
GET /s/droidserif/v19/tDbK2oqRg1oM3QBjjcaDkOr4nAfcHg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://nightfame.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 20452
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 31 Jan 2023 06:43:09 GMT
Expires: Wed, 31 Jan 2024 06:43:09 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 19 Apr 2022 19:27:49 GMT
Content-Type: font/woff2
Age: 341276
fonts.gstatic.com/s/droidsans/v18/SlGWmQWMvZQIdix7AFxXmMh3eDs1Zw.woff2
216.58.207.227200 OK 22 kB URL HTTP/1.1 fonts.gstatic.com/s/droidsans/v18/SlGWmQWMvZQIdix7AFxXmMh3eDs1Zw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 22376, version 1.0\012- data
Hash e6af16165f9bfda6aafd0088b8c01daa
c9c0ee8309619643e65ba1b22bfffcd1a7ca1e51
e803cd8c5031ac6b0d099a2d96ba1c3ee44782649a7f7c6f0d09b6410d93e216
GET /s/droidsans/v18/SlGWmQWMvZQIdix7AFxXmMh3eDs1Zw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://nightfame.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 22376
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 01 Feb 2023 02:08:37 GMT
Expires: Thu, 01 Feb 2024 02:08:37 GMT
Cache-Control: public, max-age=31536000
Age: 271348
Last-Modified: Tue, 19 Apr 2022 18:25:01 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/droidsansmono/v20/6NUO8FuJNQ2MbkrZ5-J8lKFrp7pRef2r.woff2
216.58.207.227200 OK 18 kB URL HTTP/1.1 fonts.gstatic.com/s/droidsansmono/v20/6NUO8FuJNQ2MbkrZ5-J8lKFrp7pRef2r.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 18400, version 1.0\012- data
Hash bca50bf4a4e3b8abac8f1665032dfe34
edcb128ece330477d413d42a7fdb081cfb95f39e
1a8e7108949ee83e8eeadd9cd0ed0f98bd8870f2afa75c26ccdc9e795fb58e30
GET /s/droidsansmono/v20/6NUO8FuJNQ2MbkrZ5-J8lKFrp7pRef2r.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://nightfame.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 18400
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 04 Feb 2023 05:06:02 GMT
Expires: Sun, 04 Feb 2024 05:06:02 GMT
Cache-Control: public, max-age=31536000
Age: 1503
Last-Modified: Tue, 19 Apr 2022 17:56:00 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/droidserif/v19/tDbV2oqRg1oM3QBjjcaDkOJGiRD7OwE.woff2
216.58.207.227200 OK 26 kB URL HTTP/1.1 fonts.gstatic.com/s/droidserif/v19/tDbV2oqRg1oM3QBjjcaDkOJGiRD7OwE.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 25980, version 1.0\012- data
Hash a73882a3738e4aa2ed2e10b93d97c94e
052309efbebfd9acc7e03599ddc3efcafd746feb
4fa898d9bdc34304905c4b165e561c8dc3fe452b0bdd7259140e1aa530a42136
GET /s/droidserif/v19/tDbV2oqRg1oM3QBjjcaDkOJGiRD7OwE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://nightfame.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 25980
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 02 Feb 2023 01:39:35 GMT
Expires: Fri, 02 Feb 2024 01:39:35 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 19 Apr 2022 18:47:46 GMT
Content-Type: font/woff2
Age: 186690
nightfame.com/style/wp-content/themes/newschannel/library/images/date.png
103.6.196.236200 OK 1.4 kB URL HTTP/1.1 nightfame.com/style/wp-content/themes/newschannel/library/images/date.png
IP 103.6.196.236:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type PNG image data, 64 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 45aba90e54a148fe6fe5d321fff204aa
560a31527b78b1387b144c4a3f9c62839463c992
f11a58af26a15dd8190aeb8ed2dc7db2c56fd839df65c4b2c5e8de26c9e1e473
GET /style/wp-content/themes/newschannel/library/images/date.png HTTP/1.1
Host: nightfame.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nightfame.com/style/wp-content/themes/newschannel/style.css?ver=4.9.22
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 05:31:04 GMT
Server: Apache
Last-Modified: Wed, 30 Oct 2013 11:58:18 GMT
Accept-Ranges: bytes
Content-Length: 1393
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
nightfame.com/style/wp-content/themes/newschannel/library/images/icon-search.png
103.6.196.236200 OK 3.2 kB URL HTTP/1.1 nightfame.com/style/wp-content/themes/newschannel/library/images/icon-search.png
IP 103.6.196.236:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type PNG image data, 23 x 19, 8-bit/color RGBA, non-interlaced\012- data
Hash 4ef4d1e60737326f3c5f5983f4380313
a20bd996a739e59b05a2332ab93588c27930bd06
9a271d8c8dfe26865c570997bbcf5afc2638fda8387e2623c889b30d92fc2c58
GET /style/wp-content/themes/newschannel/library/images/icon-search.png HTTP/1.1
Host: nightfame.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nightfame.com/style/wp-content/themes/newschannel/style.css?ver=4.9.22
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 05:31:04 GMT
Server: Apache
Last-Modified: Wed, 30 Oct 2013 11:58:18 GMT
Accept-Ranges: bytes
Content-Length: 3150
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 8176ac8bbb8fa05f36bdfa163da09e0c
b936c84c5fa7e781b12a17952c82bca546ca0575
1aa7e39fd02514a4023036a8a100d7e7898ee220063ebfb41c509264c81ed727
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:31:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
nightfame.com/style/wp-content/themes/newschannel/library/images/bg.jpg
103.6.196.236200 OK 16 kB URL HTTP/1.1 nightfame.com/style/wp-content/themes/newschannel/library/images/bg.jpg
IP 103.6.196.236:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 512x512, components 3\012- data
Hash a62f2c40eaa5c073244c6e4f51ef5ad8
e3d8078e3048d0ea6ccec07171f38141e87d212f
f22c93c2a41ee3a07e46aa2cf982e954a5f6e04d4983eb6f2ff68128127c3db6
GET /style/wp-content/themes/newschannel/library/images/bg.jpg HTTP/1.1
Host: nightfame.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nightfame.com/style/researcher-earns-120k-in-7-days-by-exposing-bugs-in-eos-source-code/
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 05:31:04 GMT
Server: Apache
Last-Modified: Wed, 30 Oct 2013 11:58:18 GMT
Accept-Ranges: bytes
Content-Length: 16142
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
www.youtube.com/s/player/97ea7458/www-player.css
216.58.207.238200 OK 50 kB URL HTTP/2 www.youtube.com/s/player/97ea7458/www-player.css
IP 216.58.207.238:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 06da032848dee0d02f299eb5d9d0b47b
9328ede00a7daa3c3af4e9a745b2f288a89985e1
1b4032e39d4869ac4d51be6750760b10108ce5d47c357fec81c66dbc90578601
GET /s/player/97ea7458/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/wSLuHJJ-kPU
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 49954
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 15:52:28 GMT
expires: Thu, 01 Feb 2024 15:52:28 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 Feb 2023 01:21:00 GMT
content-type: text/css
age: 221917
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
nightfame.com/style/wp-content/plugins/page-views-count/chart-bar.png
103.6.196.236200 OK 541 B URL HTTP/1.1 nightfame.com/style/wp-content/plugins/page-views-count/chart-bar.png
IP 103.6.196.236:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 8d60518c6d18af693cfeea9c066026c1
4e9576a56db3d142113b8905d7aa93e31c9f441b
29be9ef9bc6f6a08c7d514035e29c1b751d2f4b697bb6c8317361f9a08163c07
GET /style/wp-content/plugins/page-views-count/chart-bar.png HTTP/1.1
Host: nightfame.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nightfame.com/style/researcher-earns-120k-in-7-days-by-exposing-bugs-in-eos-source-code/
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 05:31:04 GMT
Server: Apache
Last-Modified: Thu, 19 Dec 2013 08:22:01 GMT
Accept-Ranges: bytes
Content-Length: 541
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
www.youtube.com/s/player/97ea7458/www-embed-player.vflset/www-embed-player.js
216.58.207.238200 OK 110 kB URL HTTP/2 www.youtube.com/s/player/97ea7458/www-embed-player.vflset/www-embed-player.js
IP 216.58.207.238:0
File type ASCII text, with very long lines (679)
Size 110 kB (110070 bytes)
Hash ebe79d652346a39f78ba70ecfb911269
b996db460e2862473018d11947ac7711bc8ca537
445ae1b45376bf82466aa698c16011ea0781d16f3e25653713d935a9bc39fda9
GET /s/player/97ea7458/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/wSLuHJJ-kPU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 110070
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 15:52:28 GMT
expires: Thu, 01 Feb 2024 15:52:28 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 Feb 2023 01:21:00 GMT
content-type: text/javascript
age: 221917
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.travelpayouts.com/ducklett/styles.css
188.42.198.252302 Found 0 B URL HTTP/1.1 www.travelpayouts.com/ducklett/styles.css
IP 188.42.198.252:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ducklett/styles.css HTTP/1.1
Host: www.travelpayouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nightfame.com/
HTTP/1.1 302 Found
content-length: 0
location: https://www.travelpayouts.com/ducklett/styles.css
cache-control: no-cache
www.youtube.com/s/player/97ea7458/player_ias.vflset/en_US/base.js
216.58.207.238200 OK 613 kB URL HTTP/2 www.youtube.com/s/player/97ea7458/player_ias.vflset/en_US/base.js
IP 216.58.207.238:0
File type ASCII text, with very long lines (517)
Size 613 kB (612749 bytes)
Hash 83c1c7c77b3e875a13d9caa902b9faa3
3da245b3aa77682c47e0fc016a536bbd827189ad
254753ab92f0e04763ce89d741819cf20ce5281f10ee7ace7444ac8b4d07e98c
GET /s/player/97ea7458/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/wSLuHJJ-kPU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding, Origin
content-encoding: br
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 612749
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 16:02:00 GMT
expires: Thu, 01 Feb 2024 16:02:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 Feb 2023 01:21:00 GMT
content-type: text/javascript
age: 221345
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
st.avsplow.com/19.18.9/sp.js
104.26.6.119200 OK 14 kB URL HTTP/1.1 st.avsplow.com/19.18.9/sp.js
IP 104.26.6.119:0
File type C source, ASCII text, with very long lines (42421), with no line terminators
Hash d1dc617e8609681b522f882027f36d2f
5e2f0899e483a8ce2601d8a41c312caca3028d31
65696064e13761b665b488108bfc7965e4ee4c55657eddacfc084ffeabb8080e
GET /19.18.9/sp.js HTTP/1.1
Host: st.avsplow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nightfame.com/
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 05:31:05 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=42630
cache-control: public, max-age=86400
etag: W/"fb6c75c607bf3120c5b82845fbd28e71"
last-modified: Mon, 11 Jul 2022 06:29:08 GMT
CF-Cache-Status: HIT
Age: 49713
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bpU9w1YzW5EXK%2FkQIpo%2BOMC3FSQ1kcG2KGu0O%2FtkcXxZRiNGM%2FQZjjksG2XN0x4z88bgxQ1qL0cRrUDjKmCCSnBQAE2y%2B%2F%2BNAVKmtxSWQOq7LmsbpL5vhRNtWMHE7yU7"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7941049ecd89b51d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:31:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 16:40:43 GMT
expires: Fri, 02 Feb 2024 16:40:43 GMT
cache-control: public, max-age=31536000
age: 132622
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 21:48:03 GMT
expires: Fri, 02 Feb 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 114182
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
nightfame.com/style/wp-content/themes/newschannel/library/images/off-white.png
103.6.196.236200 OK 26 kB URL HTTP/1.1 nightfame.com/style/wp-content/themes/newschannel/library/images/off-white.png
IP 103.6.196.236:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type PNG image data, 200 x 200, 8-bit/color RGB, non-interlaced\012- data
Hash 3d9cdcad5172259a3f447c3b721f3bfd
ef49daeaafa496e4ee16ebdde97f9a5187c05583
4e4d75a247aebfceefa1062b2ebc1743096455e1e9d71a627469f4d0a143322d
GET /style/wp-content/themes/newschannel/library/images/off-white.png HTTP/1.1
Host: nightfame.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nightfame.com/style/wp-content/themes/newschannel/style.css?ver=4.9.22
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 05:31:05 GMT
Server: Apache
Last-Modified: Wed, 30 Oct 2013 11:58:18 GMT
Accept-Ranges: bytes
Content-Length: 25548
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:31:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.a-ads.com/a-ads-banners/425765/468x60?region=eu-central-1
176.9.77.232200 OK 222 kB URL HTTP/1.1 static.a-ads.com/a-ads-banners/425765/468x60?region=eu-central-1
IP 176.9.77.232:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 468 x 60\012- data
Size 222 kB (221679 bytes)
Hash c5abe1cfe7c4f0b1727d0d9e4535a555
f1909b1b7d41f61707e74e10abe6067abb59081e
81f1a55cfddf62200c79c0fd73a85ef0997b1320d76410db54875846fb7a4d13
GET /a-ads-banners/425765/468x60?region=eu-central-1 HTTP/1.1
Host: static.a-ads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ad.a-ads.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 05:31:05 GMT
Content-Type: image/gif
Content-Length: 221679
Connection: keep-alive
x-amz-id-2: ZoR887yqWI0cWsZ/8GJam5xO6kRiToAtaK6sz1/5HgB5Ie+y2PKiBVh7t14Fwqo5R8DT1x3Uyyo=
x-amz-request-id: MQRW5TQXF3K4HFDH
x-amz-replication-status: COMPLETED
Last-Modified: Mon, 14 Nov 2022 10:39:42 GMT
ETag: "c5abe1cfe7c4f0b1727d0d9e4535a555"
Cache-Control: max-age=315360000
x-amz-version-id: TPhvIITZexvcA.atcUg_G3F.wjW6R.RL
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Accept-Ranges: bytes
static.a-ads.com/a-ads-banners/425766/728x90?region=eu-central-1
176.9.77.232200 OK 375 kB URL HTTP/1.1 static.a-ads.com/a-ads-banners/425766/728x90?region=eu-central-1
IP 176.9.77.232:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 728 x 90\012- data
Size 375 kB (374571 bytes)
Hash f6d66f50eadb26337152f835b2e15cfe
180deab932b760072afceb12df51bbd2a1860e95
6c29278e595a3a16d11ccf826f41f6b7630f6eb34f7873fc64e0b2429e46a68b
GET /a-ads-banners/425766/728x90?region=eu-central-1 HTTP/1.1
Host: static.a-ads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ad.a-ads.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 05:31:05 GMT
Content-Type: image/gif
Content-Length: 374571
Connection: keep-alive
x-amz-id-2: seb0Zp9JjWu8qkON5MxF4JHRdqJX4hj39A3JCguJ8KAXKsBoX3iIkTcj8L4vOAyXeGIwtNVAT8c=
x-amz-request-id: 3KM1ZJ5QF5N1EX1C
x-amz-replication-status: COMPLETED
Last-Modified: Mon, 14 Nov 2022 10:39:43 GMT
ETag: "f6d66f50eadb26337152f835b2e15cfe"
Cache-Control: max-age=315360000
x-amz-version-id: o_liSgMVyR3D17n.FThgIF6sC9cPw94f
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Accept-Ranges: bytes
static.a-ads.com/a-ads-banners/425767/300x250?region=eu-central-1
176.9.77.232200 OK 553 kB URL HTTP/1.1 static.a-ads.com/a-ads-banners/425767/300x250?region=eu-central-1
IP 176.9.77.232:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 300 x 250\012- data
Size 553 kB (552597 bytes)
Hash 5c0fd175092e25b5de58f290130b733e
000b2ac0d1c8995e66b7b4ae791669d68f0ab5c0
3f58e323e0745728f7fd308f10db7937e3a8a5489eeae60b9bbb74f43a51390c
GET /a-ads-banners/425767/300x250?region=eu-central-1 HTTP/1.1
Host: static.a-ads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ad.a-ads.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 05:31:05 GMT
Content-Type: image/gif
Content-Length: 552597
Connection: keep-alive
x-amz-id-2: +x6xONektiuCpC7rCRmmbWiXz9uRZ9y5eRYJDY8s3lf+TCHmJYpZU8UzLtBe3s6DIrx9LPXypsI=
x-amz-request-id: VVBA00YD8F5NB2T2
x-amz-replication-status: COMPLETED
Last-Modified: Mon, 14 Nov 2022 10:39:43 GMT
ETag: "5c0fd175092e25b5de58f290130b733e"
Cache-Control: max-age=315360000
x-amz-version-id: pn1p08TBgSXsvFMFjZkGq2BsNKxSewr9
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Accept-Ranges: bytes
avsplow.com/a/j
188.42.198.44200 OK 2 B IP 188.42.198.44:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /a/j HTTP/1.1
Host: avsplow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: text/plain;charset=UTF-8
Content-Length: 1126
Origin: http://nightfame.com
Connection: keep-alive
Referer: http://nightfame.com/
HTTP/1.1 200 OK
date: Sat, 04 Feb 2023 05:31:05 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
set-cookie: nuid=7586b5dc-bf3b-4970-b5ed-33b96a3a5a15; Expires=Sun, 04 Feb 2024 05:31:05 GMT; Domain=avsplow.com; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT CAO"
access-control-allow-origin: http://nightfame.com
access-control-allow-credentials: true
suggest.travelpayouts.com/aviasales/v3/ducklett_special_offers?origin=&destination=&airline=&locale=en¤cy=usd&limit=21
188.42.198.252200 OK 796 B URL HTTP/2 suggest.travelpayouts.com/aviasales/v3/ducklett_special_offers?origin=&destination=&airline=&locale=en¤cy=usd&limit=21
IP 188.42.198.252:0
File type JSON data\012- , ASCII text, with very long lines (2344), with no line terminators
Hash 939b0b5991875761cca76b4e4a7e8052
145273262314eed76905bcdd4d221c08a0fcd7c8
c07dd401e18079703fb79cacd06f5b4f00bf890411d0a7ba5c1d65ab20b1f4e7
GET /aviasales/v3/ducklett_special_offers?origin=&destination=&airline=&locale=en¤cy=usd&limit=21 HTTP/1.1
Host: suggest.travelpayouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://nightfame.com
Connection: keep-alive
Referer: http://nightfame.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 05:31:05 GMT
content-type: application/json; charset=utf-8
content-length: 796
access-control-allow-origin: *
content-encoding: gzip
vary: Accept-Encoding
x-krakend: Version undefined
x-krakend-completed: false
x-request-id: 6ebce82c161b8bbb12656a68032237ce
x-robots-tag: noindex
X-Firefox-Spdy: h2
viewm.moonicorn.network/
104.19.232.94200 OK 18 kB IP 104.19.232.94:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (60290), with no line terminators
Hash aa33a891e8976b6e78a6bd78ddbfdcbb
fae24ae0fe359673b380541ad020f1b3ad010044
3a08fe73e714daab138df6ea58b074c4f2fc68af99dcfd4d5f33102d651b3ab5
GET / HTTP/1.1
Host: viewm.moonicorn.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://nightfame.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:31:05 GMT
content-type: text/html; charset=utf-8
last-modified: Sat, 30 Apr 2022 11:09:04 GMT
access-control-allow-origin: *
expires: Tue, 24 Jan 2023 22:54:18 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: C238:CC86:7ACFCD:7F9C0E:63D05F42
via: 1.1 varnish
age: 86
x-served-by: cache-bma1669-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1675488666.569643,VS0,VE0
vary: Accept-Encoding
x-fastly-request-id: f549e7156f46306806610bba679737dd466ef0da
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7941049fabf8b4ff-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v13/cJZKeOuBrn4kERxqtaUH3ZBw1xU1rKptJj_0jans920.woff2
216.58.207.227200 OK 10 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v13/cJZKeOuBrn4kERxqtaUH3ZBw1xU1rKptJj_0jans920.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 10352, version 1.6554\012- data
Hash 4124088fdd8c315a6d096b65b6cbf428
0477e48f455cbfe729f90389d3fd8aaca6cc483b
732d5765c33eff81c7825dcc5e8cd1eda32dc04f39da7cae66accf9580b1e3a7
GET /s/opensans/v13/cJZKeOuBrn4kERxqtaUH3ZBw1xU1rKptJj_0jans920.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://nightfame.com
Connection: keep-alive
Referer: https://www.travelpayouts.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10352
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Feb 2023 02:07:04 GMT
expires: Sat, 03 Feb 2024 02:07:04 GMT
cache-control: public, max-age=31536000
age: 98641
last-modified: Mon, 27 Apr 2015 23:45:29 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v13/MTP_ySUJH_bn48VBG8sNShampu5_7CjHW5spxoeN3Vs.woff2
216.58.207.227200 OK 10 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v13/MTP_ySUJH_bn48VBG8sNShampu5_7CjHW5spxoeN3Vs.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 10328, version 1.6554\012- data
Hash d8411d8bb1d6060de4fee4f3a20973cc
bda09aa58d916d532c9981c6e1c32215ab027742
417e156e282af4b7d146d16b8fc9505255de2d8d085d40e37afe5089b8fe9b77
GET /s/opensans/v13/MTP_ySUJH_bn48VBG8sNShampu5_7CjHW5spxoeN3Vs.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://nightfame.com
Connection: keep-alive
Referer: https://www.travelpayouts.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10328
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 13:11:01 GMT
expires: Fri, 02 Feb 2024 13:11:01 GMT
cache-control: public, max-age=31536000
age: 145204
last-modified: Mon, 27 Apr 2015 23:45:49 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
nightfame.com/style/wp-content/uploads/2017/10/FaucetBanner-copy.jpg
103.6.196.236200 OK 97 kB URL HTTP/1.1 nightfame.com/style/wp-content/uploads/2017/10/FaucetBanner-copy.jpg
IP 103.6.196.236:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS3 Windows, datetime=2017:10:04 17:04:28], baseline, precision 8, 300x250, components 3\012- data
Hash 4e3ab10fbf583d0e4f22daf761f47cce
4f7124bb97e81c3a70da01f883cd1cdb57864f19
3f0a08d328b42694a6bb8b80a21567a4426170d0ac6b4cb2409aa65623906ffe
GET /style/wp-content/uploads/2017/10/FaucetBanner-copy.jpg HTTP/1.1
Host: nightfame.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nightfame.com/style/researcher-earns-120k-in-7-days-by-exposing-bugs-in-eos-source-code/
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 05:31:04 GMT
Server: Apache
Last-Modified: Wed, 04 Oct 2017 09:06:18 GMT
Accept-Ranges: bytes
Content-Length: 96664
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
www.travelpayouts.com/currency_fonts/currency-regular-webfont.woff2
188.42.198.252200 OK 3.6 kB URL HTTP/2 www.travelpayouts.com/currency_fonts/currency-regular-webfont.woff2
IP 188.42.198.252:0
File type Web Open Font Format (Version 2), TrueType, length 3592, version 1.0\012- data
Hash d7725472f96a0f82bb3dac6f0f859832
37230c80f32cc5372821bc6a19e01bcae72cf7e5
4ba3cac275ae4d06824607aa55da87e077a60cc9608aa0d6d8b6004922573d2e
GET /currency_fonts/currency-regular-webfont.woff2 HTTP/1.1
Host: www.travelpayouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://nightfame.com
Connection: keep-alive
Referer: https://www.travelpayouts.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 05:31:05 GMT
content-type: application/octet-stream
content-length: 3592
last-modified: Fri, 23 Dec 2022 06:07:30 GMT
etag: "63a545a2-e08"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
set-cookie: auid_tp=CtY4rGPd7Zmy/6i//M6WAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; path=/
accept-ranges: bytes
X-Firefox-Spdy: h2
pics.avs.io/122/56/FR@2x.png
185.106.81.236200 OK 2.2 kB URL HTTP/1.1 pics.avs.io/122/56/FR@2x.png
IP 185.106.81.236:0
File type PNG image data, 244 x 112, 8-bit colormap, non-interlaced\012- data
Hash 855348a7e2b514d6c26f3e753b527340
c219ac375e1a951a23a522716d5dcf14fa8e272d
43cae36b53474e0c5749490798e4edf32e8ffb5d3c6605e8077ff3d6bc499ae2
GET /122/56/FR@2x.png HTTP/1.1
Host: pics.avs.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nightfame.com/
HTTP/1.1 200 OK
server: nginx/1.12.0
date: Sat, 04 Feb 2023 05:31:05 GMT
content-type: image/png
content-length: 2240
last-modified: Mon, 27 Dec 2021 11:24:49 GMT
etag: "61c9a281-8c0"
expires: Sun, 05 Feb 2023 05:31:05 GMT
cache-control: max-age=86400
access-control-allow-origin: *
vary: Accept
accept-ranges: bytes
pics.avs.io/122/56/SK@2x.png
185.106.81.236200 OK 2.4 kB URL HTTP/1.1 pics.avs.io/122/56/SK@2x.png
IP 185.106.81.236:0
File type PNG image data, 244 x 112, 8-bit colormap, non-interlaced\012- data
Hash 8de6ea609874e7bf1847d2b86bbb6728
98b54e3adf4c5ffd62e35703d0bc7a98676dca36
d1fdb411a3b491e42066ce7cae094da2ae84f7d03fe93a7f411c202416120af4
GET /122/56/SK@2x.png HTTP/1.1
Host: pics.avs.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nightfame.com/
HTTP/1.1 200 OK
server: nginx/1.12.0
date: Sat, 04 Feb 2023 05:31:05 GMT
content-type: image/png
content-length: 2393
last-modified: Sat, 04 Feb 2023 02:43:38 GMT
etag: "63ddc65a-959"
expires: Sun, 05 Feb 2023 05:31:05 GMT
cache-control: max-age=86400
access-control-allow-origin: *
vary: Accept
accept-ranges: bytes
pics.avs.io/122/56/D8@2x.png
185.106.81.236200 OK 2.9 kB URL HTTP/1.1 pics.avs.io/122/56/D8@2x.png
IP 185.106.81.236:0
File type PNG image data, 244 x 112, 8-bit colormap, non-interlaced\012- data
Hash 9588ccc7f80fe21ab00f3638e2e1a998
4d1ec840db16d73febde979615d215adc10dbee7
24a62525926be7bf632fcac3e641bfabf15819dc79ae5a94dce0b1f144f4b9a1
GET /122/56/D8@2x.png HTTP/1.1
Host: pics.avs.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nightfame.com/
HTTP/1.1 200 OK
server: nginx/1.12.0
date: Sat, 04 Feb 2023 05:31:05 GMT
content-type: image/png
content-length: 2946
last-modified: Mon, 27 Dec 2021 12:43:55 GMT
etag: "61c9b50b-b82"
expires: Sun, 05 Feb 2023 05:31:05 GMT
cache-control: max-age=86400
access-control-allow-origin: *
vary: Accept
accept-ranges: bytes
nightfame.com/favicon.ico
103.6.196.236404 Not Found 315 B URL HTTP/1.1 nightfame.com/favicon.ico
IP 103.6.196.236:0
ASN #46015 Exa Bytes Network Sdn.Bhd.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /favicon.ico HTTP/1.1
Host: nightfame.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nightfame.com/style/researcher-earns-120k-in-7-days-by-exposing-bugs-in-eos-source-code/
HTTP/1.1 404 Not Found
Date: Sat, 04 Feb 2023 05:31:05 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.travelpayouts.com/powered_by/img/tp.png
188.42.198.252200 OK 3.6 kB URL HTTP/2 www.travelpayouts.com/powered_by/img/tp.png
IP 188.42.198.252:0
File type PNG image data, 283 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash d8934cc1961da6926042c24e4db53164
8afbdf789f7e3059eb48919217577f13771c5a48
2485b6352182e9b84c6010dedea330b64058983d22008327a64fd7d9b10df905
GET /powered_by/img/tp.png HTTP/1.1
Host: www.travelpayouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://nightfame.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 05:31:07 GMT
content-type: image/png
content-length: 3584
last-modified: Tue, 13 Sep 2022 13:39:39 GMT
etag: "6320881b-e00"
set-cookie: auid_tp=CtYRWmPd7ZsbBaGLJ9NpAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; path=/
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 42f7bb86070a306c0902a2947bfd5db1
679751d86f7520d1e5e30b5bc050015450de75a7
ebccfef4e98d659e8e275dd6b2797b1154e42572695aefc916825bc0819e96dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:31:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash d2e174531b474d26a32c11aaa9965c69
6356e52468c57397bd01afe8c7cb861b4fe931ee
5eefef5a21ca2e611d0904b3adcff0005053a0d1f23a024808b436141cadd6b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:31:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.166200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.166:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 Feb 2023 05:28:12 GMT
expires: Sat, 04 Feb 2023 05:43:12 GMT
cache-control: public, max-age=900
age: 175
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.98302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.98:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Sat, 04 Feb 2023 05:31:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:31:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:31:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash d2e174531b474d26a32c11aaa9965c69
6356e52468c57397bd01afe8c7cb861b4fe931ee
5eefef5a21ca2e611d0904b3adcff0005053a0d1f23a024808b436141cadd6b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:31:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.234200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sat, 04 Feb 2023 05:31:07 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 42f7bb86070a306c0902a2947bfd5db1
679751d86f7520d1e5e30b5bc050015450de75a7
ebccfef4e98d659e8e275dd6b2797b1154e42572695aefc916825bc0819e96dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:31:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/id?slf_rd=1
142.250.74.98200 OK 120 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id?slf_rd=1
IP 142.250.74.98:0
Hash 83108fa24c7e60b1b374f4e574361971
a7e7eac9ee89292939afaf9d1bfe9ff8265d09cd
9e37df4b297d414ce72462d064b003491bdc5af13de9a47c9c8000a161fd8a24
GET /pagead/id?slf_rd=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Referer: https://www.youtube.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
content-type: application/json; charset=UTF-8
date: Sat, 04 Feb 2023 05:31:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 120
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.234200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.234:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash b55b6a7a035dfc125062460cfe68d04a
f0b783c79ed783d87b1f272c1ec14497849a4b5f
12a16f9bc104e594ada54958c614354cf0ae46161c253a376469c431a01992ea
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 04 Feb 2023 05:31:07 GMT
server: ESF
cache-control: private
content-length: 31050
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:31:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
market.moonicorn.network/units-for-slot/QmTV9pSRbznaVwRuJ39Mb8Z3gcxTYzEM61HTT2PQKW48jQ?pubPrefix=50F2250D&depositAsset=0x6B175474E89094C44Da98b954EedeAC495271d0F
104.19.232.94200 OK 377 B URL HTTP/2 market.moonicorn.network/units-for-slot/QmTV9pSRbznaVwRuJ39Mb8Z3gcxTYzEM61HTT2PQKW48jQ?pubPrefix=50F2250D&depositAsset=0x6B175474E89094C44Da98b954EedeAC495271d0F
IP 104.19.232.94:0
File type JSON data\012- , ASCII text, with very long lines (509), with no line terminators
Hash 2795cfae8c7d1f626a56e597f7700b55
a7df37e5d02a6066ff54cbf36357432c9771b249
2f8f4a7895ecb76a6ef01cf8791db94c7ff2ee144920c4e2cb884990f198e5f0
GET /units-for-slot/QmTV9pSRbznaVwRuJ39Mb8Z3gcxTYzEM61HTT2PQKW48jQ?pubPrefix=50F2250D&depositAsset=0x6B175474E89094C44Da98b954EedeAC495271d0F HTTP/1.1
Host: market.moonicorn.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://viewm.moonicorn.network/
Origin: https://viewm.moonicorn.network
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:31:07 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-User-Signature, X-User-Address, X-Auth-Token, Cache-Control, Expires, Pragma
access-control-allow-methods: POST, GET, PUT, DELETE, OPTIONS
cache-control: public, max-age=30
etag: W/"1fd-GEeuTdVLmdKJ1sc8Os5j9NNWF3I"
x-cache-status: MISS
cf-cache-status: MISS
expires: Sat, 04 Feb 2023 05:31:37 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 794104a98fceb509-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.207.234200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.207.234:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 79a093654e6be4bccb6e1ef75f26ec59
3601286ec6313f708348428bf274d0362bb8aed2
b7336c1d0cc7d781a1c618b5c000c343906033c9a171256f7b4f5df1dd7dc81f
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1112
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 04 Feb 2023 05:31:07 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62f8fa6a-620a-4d0c-aec7-0863ae11b871.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62f8fa6a-620a-4d0c-aec7-0863ae11b871.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 83ac46e378ad452aeb212d709ab70232
7514ed93fd2f256e5aad386fdd0ebc723785291b
e199498691268526a6ecfe58abb88ced8661272cd7ad8270811c84fb15dbb547
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62f8fa6a-620a-4d0c-aec7-0863ae11b871.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 14221
x-amzn-requestid: a74ee3d4-6163-4dec-ab62-97279cf52282
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEC3ERhIAMFh1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8078-3e5d4b3d39919497215866df;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3TIbnpwYk9CIeoXeW4T-ouwV7X1y-LgKV7wB4XJwFKSKx248jIJyBQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:08:39 GMT
age: 26551
etag: "7514ed93fd2f256e5aad386fdd0ebc723785291b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
viewm.moonicorn.network/
104.19.232.94200 OK 0 B IP 104.19.232.94:0
GET / HTTP/1.1
Host: viewm.moonicorn.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://nightfame.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:31:05 GMT
content-type: text/html; charset=utf-8
last-modified: Sat, 30 Apr 2022 11:09:04 GMT
access-control-allow-origin: *
expires: Tue, 24 Jan 2023 22:54:18 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: C238:CC86:7ACFCD:7F9C0E:63D05F42
via: 1.1 varnish
age: 86
x-served-by: cache-bma1669-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1675488666.593531,VS0,VE0
vary: Accept-Encoding
x-fastly-request-id: aeacdec05ccc90be373aea09a54b7f443c256bb8
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7941049fec17b4ff-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.youtube.com/embed/wSLuHJJ-kPU
216.58.207.238200 OK 0 B URL HTTP/2 www.youtube.com/embed/wSLuHJJ-kPU
IP 216.58.207.238:0
GET /embed/wSLuHJJ-kPU HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://nightfame.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 04 Feb 2023 05:31:05 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=ITtKy09jzXg; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TmpFMk9UQXlNalV5T1RJMk5UWXlOUT09EJnb954GGJnb954G; Domain=.youtube.com; Expires=Thu, 03-Aug-2023 05:31:05 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=SDyEvPhISYc; Domain=.youtube.com; Expires=Thu, 03-Aug-2023 05:31:05 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+367; expires=Mon, 03-Feb-2025 05:31:05 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
aswidgets.travelpayouts.com/ducklett/scripts_en.js?widget_type=slider¤cy=usd&host=www.jetradar.com%2Fsearches%2Fnew&marker=20042.&limit=21
188.42.198.252200 OK 0 B URL HTTP/2 aswidgets.travelpayouts.com/ducklett/scripts_en.js?widget_type=slider¤cy=usd&host=www.jetradar.com%2Fsearches%2Fnew&marker=20042.&limit=21
IP 188.42.198.252:0
GET /ducklett/scripts_en.js?widget_type=slider¤cy=usd&host=www.jetradar.com%2Fsearches%2Fnew&marker=20042.&limit=21 HTTP/1.1
Host: aswidgets.travelpayouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://nightfame.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 05:31:05 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 04 Nov 2021 11:39:19 GMT
cache-control: public, max-age=600
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
www.travelpayouts.com/opt_in/show/20042?callback=tpPoweredByCallback0
188.42.198.252200 OK 0 B URL HTTP/2 www.travelpayouts.com/opt_in/show/20042?callback=tpPoweredByCallback0
IP 188.42.198.252:0
GET /opt_in/show/20042?callback=tpPoweredByCallback0 HTTP/1.1
Host: www.travelpayouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://nightfame.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 05:31:05 GMT
content-type: text/javascript; charset=utf-8
status: 200 OK
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-ua-compatible: chrome=1
etag: W/"afa68adf785eb9464e6b365e84aa4f12"
cache-control: max-age=0, private, must-revalidate
set-cookie: marker=20042; domain=.travelpayouts.com; path=/; expires=Sat, 04 Mar 2023 05:31:05 -0000
currency=usd; path=/; expires=Wed, 04 Feb 2043 05:31:05 -0000
auid_tp=CtY4rGPd7Zmy/6i//M6XAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; path=/
x-request-id: ae5286287bdb29f6a2e12242a68618b6
x-runtime: 0.013634
content-encoding: gzip
X-Firefox-Spdy: h2