dbursted.com/all-thoughts-are-all-lies-all-the-time-about-anything/
301 Moved Permanently 707 B URL HTTP/1.1 dbursted.com/all-thoughts-are-all-lies-all-the-time-about-anything/
IP
ASN #50613 Advania Island ehf
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
GET /all-thoughts-are-all-lies-all-the-time-about-anything/ HTTP/1.1
Host: dbursted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Thu, 24 Nov 2022 15:51:15 GMT
server: LiteSpeed
location: https://dbursted.com/all-thoughts-are-all-lies-all-the-time-about-anything/
referrer-policy: no-referrer-when-downgrade
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7c60904d097cde276e4e5632cef1b9f1
4f805026462589345d85e8df2d18eafba6237504
12af026999398f4976749e320667d43da3f99b7a2e8254aca7a410a964a106aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5215
Expires: Thu, 24 Nov 2022 17:18:12 GMT
Date: Thu, 24 Nov 2022 15:51:17 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash af40a2fcf8debb90c3608002da6c907a
3c75d6c0b557a3bd8d5db50155b8d896e852c145
555617a51ee3077552545a29a3baf0b43e8a82367e4c08110ee480ebedc8b523
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2205
Cache-Control: max-age=155799
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:17 GMT
Etag: "637f47ef-1d7"
Expires: Sat, 26 Nov 2022 11:07:56 GMT
Last-Modified: Thu, 24 Nov 2022 10:31:11 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 260e9998c20d831b66f1029c8f47aac9
716d630f647c54dc69a7f9c63a6cac294b3df7f7
c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7618
Expires: Thu, 24 Nov 2022 17:58:15 GMT
Date: Thu, 24 Nov 2022 15:51:17 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 15:18:58 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1939
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 8ksTlHj7Y6YLHZ3Q8KaMVSez+yx6cq/demL1njg//2M0jCFoUztAGwZdrLhMQnSWD9xz0ydOz80=
x-amz-request-id: 0B8E4JPDK8H8NV3X
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 15:43:27 GMT
age: 470
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 15:51:17 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 15:08:53 GMT
cache-control: public,max-age=3600
age: 2544
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash fb6949e7abaa473393f7c604691de14f
599681bba3947709baa603bbae2dd7afd04059a4
36c5165526ea9d34de14d36655ed494d0cffaa11ca3271ee47824ac11246ba13
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4954
Cache-Control: max-age=153486
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:17 GMT
Etag: "637f3429-1d7"
Expires: Sat, 26 Nov 2022 10:29:23 GMT
Last-Modified: Thu, 24 Nov 2022 09:06:49 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yN+nM2t/gtsJMjTznekpYw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: DI4UAY8N9Nf20HnxoXgRNHt8F2k=
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dbursted.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
200 OK 12 kB URL HTTP/2 dbursted.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP
ASN #50613 Advania Island ehf
File type ASCII text, with very long lines (47826)
Hash c4d7cc056b49b00e05cc29cc59aa3d5a
48c426bec60099d2a8628df430ed682c72aab42a
8009c12f2674a8d38401f4b5faad1fef2cfcd18a8c927ed2561ae9d7de9b57b5
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: dbursted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbursted.com/all-thoughts-are-all-lies-all-the-time-about-anything/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 15:51:18 GMT
content-type: text/css
last-modified: Wed, 16 Nov 2022 03:49:13 GMT
etag: "172a9-63745db9-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11616
date: Thu, 24 Nov 2022 15:51:18 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
dbursted.com/wp-includes/css/classic-themes.min.css?ver=1
200 OK 217 B URL HTTP/2 dbursted.com/wp-includes/css/classic-themes.min.css?ver=1
IP
ASN #50613 Advania Island ehf
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: dbursted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbursted.com/all-thoughts-are-all-lies-all-the-time-about-anything/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 15:51:18 GMT
content-type: text/css
last-modified: Thu, 03 Nov 2022 03:56:27 GMT
etag: "d9-63633beb-0;;;"
accept-ranges: bytes
content-length: 217
date: Thu, 24 Nov 2022 15:51:18 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
dbursted.com/all-thoughts-are-all-lies-all-the-time-about-anything/
200 OK 36 kB URL HTTP/2 dbursted.com/all-thoughts-are-all-lies-all-the-time-about-anything/
IP
ASN #50613 Advania Island ehf
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381)
Hash 9e59e55e41bcee8a7b7c1d8adf82ef40
1e8a15c814addd85a530fe4a4bd4c897ad0e2e83
93a28bfb60d9dc49a428724c1e629174207f589f2f40c80bfb2f5c871d0c14fd
GET /all-thoughts-are-all-lies-all-the-time-about-anything/ HTTP/1.1
Host: dbursted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
x-pingback: https://dbursted.com/xmlrpc.php
x-content-security-policy: default-src 'self'; script-src 'self' https://hcaptcha.com https://*.hcaptcha.com; frame-src 'self' https://hcaptcha.com https://*.hcaptcha.com; style-src 'self' https://hcaptcha.com https://*.hcaptcha.com; connect-src 'self' https://hcaptcha.com https://*.hcaptcha.com; unsafe-eval 'self' https://hcaptcha.com https://*.hcaptcha.com; unsafe-inline 'self' https://hcaptcha.com https://*.hcaptcha.com;
link: <https://dbursted.com/wp-json/>; rel="https://api.w.org/", <https://dbursted.com/wp-json/wp/v2/posts/287548>; rel="alternate"; type="application/json", <https://dbursted.com/?p=287548>; rel=shortlink
content-encoding: br
vary: Accept-Encoding
date: Thu, 24 Nov 2022 15:51:17 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
dbursted.com/wp-content/plugins/tabs-responsive/assets/css/bootstrap-front.css?ver=6.1.1
200 OK 2.5 kB URL HTTP/2 dbursted.com/wp-content/plugins/tabs-responsive/assets/css/bootstrap-front.css?ver=6.1.1
IP
ASN #50613 Advania Island ehf
Hash 031fb6b5c7cfec483347d9dd5dbf212f
1b15a2d26acc84a6c568e0be4a3764f6ee8fd3d5
e7332a161b24e47cb287d72b89b3cff83466a439bb003bc3ba99170013040a83
GET /wp-content/plugins/tabs-responsive/assets/css/bootstrap-front.css?ver=6.1.1 HTTP/1.1
Host: dbursted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbursted.com/all-thoughts-are-all-lies-all-the-time-about-anything/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 15:51:18 GMT
content-type: text/css
last-modified: Thu, 17 Nov 2022 18:51:47 GMT
etag: "4871-637682c3-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2462
date: Thu, 24 Nov 2022 15:51:18 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
dbursted.com/wp-content/plugins/tabs-responsive/assets/css/animate.css?ver=6.1.1
200 OK 4.7 kB URL HTTP/2 dbursted.com/wp-content/plugins/tabs-responsive/assets/css/animate.css?ver=6.1.1
IP
ASN #50613 Advania Island ehf
Hash 3c68691e52842d16067d3c4bb1e47431
8c701361fe40b26d3c1b4e5de1d900cf30feb6ce
3af58675270a511d81db11a304a47c0be1e8cf03229bea1197cf460053abb055
GET /wp-content/plugins/tabs-responsive/assets/css/animate.css?ver=6.1.1 HTTP/1.1
Host: dbursted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbursted.com/all-thoughts-are-all-lies-all-the-time-about-anything/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 15:51:18 GMT
content-type: text/css
last-modified: Thu, 17 Nov 2022 18:51:47 GMT
etag: "134dc-637682c3-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4677
date: Thu, 24 Nov 2022 15:51:18 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
dbursted.com/wp-content/plugins/wpfront-scroll-top/css/wpfront-scroll-top.min.css?ver=2.0.7.08086
200 OK 151 B URL HTTP/2 dbursted.com/wp-content/plugins/wpfront-scroll-top/css/wpfront-scroll-top.min.css?ver=2.0.7.08086
IP
ASN #50613 Advania Island ehf
File type ASCII text, with very long lines (426)
Hash 61f690f6721d062fc5a0e1b171944404
12bc24230a45f0501c71c2529e82bc61e478a478
6b959f8bbdce252c85bb81e4eacd5123503576044d98b052c2c712da87d15bfc
GET /wp-content/plugins/wpfront-scroll-top/css/wpfront-scroll-top.min.css?ver=2.0.7.08086 HTTP/1.1
Host: dbursted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbursted.com/all-thoughts-are-all-lies-all-the-time-about-anything/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 15:51:18 GMT
content-type: text/css
last-modified: Thu, 04 Nov 2021 17:21:22 GMT
etag: "1ab-61841692-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 151
date: Thu, 24 Nov 2022 15:51:18 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10928
Expires: Thu, 24 Nov 2022 18:53:27 GMT
Date: Thu, 24 Nov 2022 15:51:19 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10928
Expires: Thu, 24 Nov 2022 18:53:27 GMT
Date: Thu, 24 Nov 2022 15:51:19 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10928
Expires: Thu, 24 Nov 2022 18:53:27 GMT
Date: Thu, 24 Nov 2022 15:51:19 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10928
Expires: Thu, 24 Nov 2022 18:53:27 GMT
Date: Thu, 24 Nov 2022 15:51:19 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10928
Expires: Thu, 24 Nov 2022 18:53:27 GMT
Date: Thu, 24 Nov 2022 15:51:19 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 92c78302bcce1568eb6a5563100b932c
43d1dec7fc06879988c9c3cadd800cc8145df988
0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7YSXUV-LZpsI7vciFhuqt1EVr6YRkhxcOgMg8z8bxLcOE01_baf6Gg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:06 GMT
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
content-type: image/jpeg
age: 65053
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp
200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0856fdb55f19f03a1bec38b3d6e0ac77
89accd230fba95fe0049678070817b36ead015fa
17c6e6f9bb8f4261fff2dc2a43ed994986418761624b8afead768e89927594f2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5070
x-amzn-requestid: d86d95ad-9b78-4047-82e7-04e83a97e330
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwViF1GIAMF_PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9423-10809ba1634776171cf79cb8;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:03 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8rbsN9OVJmneT9ov-Q7V4RB8DP5UWhhn-7cnukHiBpl06zmMM0zJTg==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:20 GMT
age: 64439
etag: "89accd230fba95fe0049678070817b36ead015fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
dbursted.com/wp-content/themes/bam/assets/fonts/css/all.min.css?ver=5.15.4
200 OK 12 kB URL HTTP/2 dbursted.com/wp-content/themes/bam/assets/fonts/css/all.min.css?ver=5.15.4
IP
ASN #50613 Advania Island ehf
File type ASCII text, with very long lines (59119)
Hash f286e5ab8fff36a43d406daa305ee5a8
e57a1d3ff6e89acadb6652566d2fbb7010c43003
86502649926ea8b98b10bf5e0b28846d0c5be7578858e861b960860f918bf892
GET /wp-content/themes/bam/assets/fonts/css/all.min.css?ver=5.15.4 HTTP/1.1
Host: dbursted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbursted.com/all-thoughts-are-all-lies-all-the-time-about-anything/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 15:51:18 GMT
content-type: text/css
last-modified: Thu, 03 Nov 2022 03:59:15 GMT
etag: "e7a9-63633c93-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12370
date: Thu, 24 Nov 2022 15:51:18 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
dbursted.com/wp-content/themes/bam/style.css?ver=6.1.1
200 OK 10 kB URL HTTP/2 dbursted.com/wp-content/themes/bam/style.css?ver=6.1.1
IP
ASN #50613 Advania Island ehf
File type ASCII text, with very long lines (430)
Hash 1d8ec5b659eb0388695c6498c4f29947
56e2f29177d66622bf22fd3b14c8a90e80b95476
f3fd7434faaf3e79b7fa4aab0c04f0a2c0e441a185a057c0274efa7fe63ab087
GET /wp-content/themes/bam/style.css?ver=6.1.1 HTTP/1.1
Host: dbursted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbursted.com/all-thoughts-are-all-lies-all-the-time-about-anything/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 15:51:18 GMT
content-type: text/css
last-modified: Thu, 03 Nov 2022 03:59:18 GMT
etag: "d7c6-63633c96-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10453
date: Thu, 24 Nov 2022 15:51:18 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
dbursted.com/wp-content/themes/bam-child1/style.css?ver=1.1.3.1601270204
200 OK 502 B URL HTTP/2 dbursted.com/wp-content/themes/bam-child1/style.css?ver=1.1.3.1601270204
IP
ASN #50613 Advania Island ehf
File type ASCII text, with very long lines (443)
Hash d56a18fe32196dd79b8ce2a7777cfb38
d52d5d3d7938e35ad7a87ef42db8cb2f0b498a36
71ba2c4bca91b252d311dccdf2d9fb56d16a7f101cca47172e5541ecc2aeba83
GET /wp-content/themes/bam-child1/style.css?ver=1.1.3.1601270204 HTTP/1.1
Host: dbursted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbursted.com/all-thoughts-are-all-lies-all-the-time-about-anything/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 15:51:18 GMT
content-type: text/css
last-modified: Thu, 01 Oct 2020 20:06:08 GMT
etag: "3ed-5f7636b0-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 502
date: Thu, 24 Nov 2022 15:51:18 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg
200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b4157f2c5c3c77ce699324ecb08f47c7
a7d9135f9d01ba13c3cdaf8b038c70212f159297
2305f7afee95bb34d9e8dbff571c6b146ba7b694be96e9e925c32d1f41785916
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7462
x-amzn-requestid: 1f6fb14d-83e0-43d3-9dab-5bc83af1a7c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwV3HV9oAMFs9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9425-634d43db6308e0be596aa5a0;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GW5UTfY7-TwPWTno9z1e21a2cA9fmU7GfHFYWdL-zQvMLxeq-S9Trg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:03:54 GMT
age: 64045
etag: "a7d9135f9d01ba13c3cdaf8b038c70212f159297"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
dbursted.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
200 OK 30 kB URL HTTP/2 dbursted.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
ASN #50613 Advania Island ehf
File type ASCII text, with very long lines (65447)
Hash 3a1740685bd5c0bbd5f2b812e1eb7fb4
488e07695da787fed18361c50292aef35abb5e81
4a07aed2d8cf88afdec0b56b365b951c76d387db3459166b5a0d25e2e6cc95ef
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: dbursted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbursted.com/all-thoughts-are-all-lies-all-the-time-about-anything/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 15:51:18 GMT
content-type: application/x-javascript
last-modified: Thu, 03 Nov 2022 03:56:35 GMT
etag: "15e54-63633bf3-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30324
date: Thu, 24 Nov 2022 15:51:18 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
dbursted.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
200 OK 4.0 kB URL HTTP/2 dbursted.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
ASN #50613 Advania Island ehf
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: dbursted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbursted.com/all-thoughts-are-all-lies-all-the-time-about-anything/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 15:51:18 GMT
content-type: application/x-javascript
last-modified: Wed, 18 Nov 2020 14:36:06 GMT
etag: "2bd8-5fb53156-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Thu, 24 Nov 2022 15:51:18 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: blE0hGNioAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:14:07 GMT
age: 31032
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
dbursted.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
200 OK 4.6 kB URL HTTP/2 dbursted.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP
ASN #50613 Advania Island ehf
File type ASCII text, with very long lines (15660)
Hash 0232689bd203f330529b36a437f41a68
9046583f7469ad38297969f10a9513eb895d5316
feea9f30a6e454579bbeabf236b7abdb0c7de84dd2852422555ad67348c5e886
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: dbursted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbursted.com/all-thoughts-are-all-lies-all-the-time-about-anything/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 15:51:18 GMT
content-type: application/x-javascript
last-modified: Wed, 24 Aug 2022 16:09:32 GMT
etag: "48b9-63064d3c-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4619
date: Thu, 24 Nov 2022 15:51:18 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
dbursted.com/wp-content/plugins/sticky-menu-or-anything-on-scroll/assets/js/stickThis.js?ver=2.1.1
200 OK 280 B URL HTTP/2 dbursted.com/wp-content/plugins/sticky-menu-or-anything-on-scroll/assets/js/stickThis.js?ver=2.1.1
IP
ASN #50613 Advania Island ehf
File type ASCII text, with CRLF line terminators
Hash b134bea5369b140da549085dc865f18b
9016ee6a35139db3339ea72d4a5312b9df6159b9
66c22bac212942fb67c1af3df87b5d1a13560c642679a48c61e7a3943159d072
GET /wp-content/plugins/sticky-menu-or-anything-on-scroll/assets/js/stickThis.js?ver=2.1.1 HTTP/1.1
Host: dbursted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbursted.com/all-thoughts-are-all-lies-all-the-time-about-anything/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 15:51:18 GMT
content-type: application/x-javascript
last-modified: Mon, 22 Feb 2021 23:35:42 GMT
etag: "2d6-60343fce-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 280
date: Thu, 24 Nov 2022 15:51:18 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
dbursted.com/wp-content/plugins/tabs-responsive/assets/js/tabs-custom.js?ver=6.1.1
200 OK 13 kB URL HTTP/2 dbursted.com/wp-content/plugins/tabs-responsive/assets/js/tabs-custom.js?ver=6.1.1
IP
ASN #50613 Advania Island ehf
File type ASCII text, with CRLF line terminators
Hash e3f4f1e454c6dfbf798eb0973ba2603e
4cff360c527201d64311d4734731c8bed2ba9512
28ad66872077d4c50c92b84f9ae96d45595ba1d34324a2268dc9b2c80d471cc8
GET /wp-content/plugins/tabs-responsive/assets/js/tabs-custom.js?ver=6.1.1 HTTP/1.1
Host: dbursted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbursted.com/all-thoughts-are-all-lies-all-the-time-about-anything/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 15:51:18 GMT
content-type: application/x-javascript
last-modified: Thu, 17 Nov 2022 18:51:48 GMT
etag: "ffc1-637682c4-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 13275
date: Thu, 24 Nov 2022 15:51:18 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
dbursted.com/wp-content/plugins/wpfront-scroll-top/js/wpfront-scroll-top.min.js?ver=2.0.7.08086
200 OK 640 B URL HTTP/2 dbursted.com/wp-content/plugins/wpfront-scroll-top/js/wpfront-scroll-top.min.js?ver=2.0.7.08086
IP
ASN #50613 Advania Island ehf
File type ASCII text, with very long lines (543)
Hash a9e44a92a862fb7e61be3327bc645b15
b81cb87943c407dea9a0343f22e18e6f42f3d924
0da185146bfdb8616b2b4cfb1841283f2199662a42f4c399d058a8b5ee194a6c
GET /wp-content/plugins/wpfront-scroll-top/js/wpfront-scroll-top.min.js?ver=2.0.7.08086 HTTP/1.1
Host: dbursted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbursted.com/all-thoughts-are-all-lies-all-the-time-about-anything/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 15:51:18 GMT
content-type: application/x-javascript
last-modified: Thu, 04 Nov 2021 17:21:22 GMT
etag: "719-61841692-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 640
date: Thu, 24 Nov 2022 15:51:18 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
dbursted.com/wp-content/themes/bam/assets/js/main.js?ver=6.1.1
200 OK 2.0 kB URL HTTP/2 dbursted.com/wp-content/themes/bam/assets/js/main.js?ver=6.1.1
IP
ASN #50613 Advania Island ehf
Hash f7a5fe6b5adebea65bac3991fdcfd59d
a4f856ab9fdba59e880f0e3c9dc9ee897b0fa83a
8b33349391ebab4833654780431ee35c943cae148bc7699371ce4d9624c242da
GET /wp-content/themes/bam/assets/js/main.js?ver=6.1.1 HTTP/1.1
Host: dbursted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbursted.com/all-thoughts-are-all-lies-all-the-time-about-anything/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 15:51:18 GMT
content-type: application/x-javascript
last-modified: Thu, 03 Nov 2022 03:59:17 GMT
etag: "1a5d-63633c95-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2037
date: Thu, 24 Nov 2022 15:51:18 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
dbursted.com/wp-content/themes/bam/assets/js/skip-link-focus-fix.js?ver=20151215
200 OK 332 B URL HTTP/2 dbursted.com/wp-content/themes/bam/assets/js/skip-link-focus-fix.js?ver=20151215
IP
ASN #50613 Advania Island ehf
Hash 0f7b58a8c17b892defb8c3595a119d07
c6f89bbe8565fbae58376323b67a8debf4316edb
a5b6916a01fce60f536309a5528ef2ad9ae4d8e90fce5b368882f919cc420074
GET /wp-content/themes/bam/assets/js/skip-link-focus-fix.js?ver=20151215 HTTP/1.1
Host: dbursted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbursted.com/all-thoughts-are-all-lies-all-the-time-about-anything/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 15:51:18 GMT
content-type: application/x-javascript
last-modified: Thu, 03 Nov 2022 03:59:17 GMT
etag: "2ad-63633c95-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 332
date: Thu, 24 Nov 2022 15:51:18 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
dbursted.com/wp-content/plugins/wpfront-scroll-top/images/icons/112.png
200 OK 1.4 kB URL HTTP/2 dbursted.com/wp-content/plugins/wpfront-scroll-top/images/icons/112.png
IP
ASN #50613 Advania Island ehf
File type PNG image data, 64 x 64, 8-bit colormap, non-interlaced\012- data
Hash b0b1ac52a18c7d45f916fefc150017f6
8dba731466fe2d20de56397d6af6304337eb51b6
fc79ed9d1a9aa67a336c024a0b11d733df4ef0b55c602d2750e627782d47bafa
GET /wp-content/plugins/wpfront-scroll-top/images/icons/112.png HTTP/1.1
Host: dbursted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbursted.com/all-thoughts-are-all-lies-all-the-time-about-anything/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 15:51:18 GMT
content-type: image/png
last-modified: Thu, 04 Nov 2021 17:21:22 GMT
etag: "597-61841692-0;;;"
accept-ranges: bytes
content-length: 1431
date: Thu, 24 Nov 2022 15:51:18 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg
200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d9d93b2a6875d446c3467eb49767eef5
303c571b13b05fcf27ee1159d8fdf6369aaef0a2
2a2345a925e0187979930a7f2de8548957ad9f2baae77364dcb157286e2b3fcf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6789
x-amzn-requestid: 4d94ce1b-d18f-43b8-bb4d-e7093f9bea42
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvd2G9UIAMFrEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5f2-64a570135be59b83031811da;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:04:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JygkDI7XSvlgurUTot874ZAXlOIqnv4cntMQ55IvHVqw93JBcksZjQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:15:22 GMT
age: 30957
etag: "303c571b13b05fcf27ee1159d8fdf6369aaef0a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 64d79191f005c9876b952c5f948aa0f7
1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a
00fb36c3d322e8302c5ce202d6d4119d637510cd6f3b63e1347781ec3bb9d7fc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13882
x-amzn-requestid: 9022b0b3-31d5-4149-a969-02514f11b95a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvzNHjMoAMFWMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9347-0e8354a02bef623644714e31;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ve4q5FDkwMGhPK6ZVVVCZtoBTaGaz43r_PwINzwS5Nx5tcZeQkVIfw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:49:47 GMT
age: 64892
etag: "1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6fe23ae41ec0cbb3d702b1c64028cd13
e0e4d852454a5eae80a797aaa6f0991834dcc19a
47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6fe23ae41ec0cbb3d702b1c64028cd13
e0e4d852454a5eae80a797aaa6f0991834dcc19a
47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/s/player/4eb6b35d/www-player.css
200 OK 50 kB URL HTTP/2 www.youtube.com/s/player/4eb6b35d/www-player.css
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 7a4f3bc144a58504dd2185dae5f909bb
8f3e87d706fb3687047486cbe1b0abed9a06d811
a0b1b06622d124308fce2daa3ab851e057ff08126ba85cef596d279ffc2de6a5
GET /s/player/4eb6b35d/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/BFBjY_Kj2ko?feature=oembed
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 49788
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 15:52:58 GMT
expires: Tue, 21 Nov 2023 15:52:58 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 01:17:16 GMT
content-type: text/css
age: 259101
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/4eb6b35d/fetch-polyfill.vflset/fetch-polyfill.js
200 OK 2.8 kB URL HTTP/2 www.youtube.com/s/player/4eb6b35d/fetch-polyfill.vflset/fetch-polyfill.js
IP
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (555)
Hash 80fe2d229007996c8397073b00755dc7
121f82c77bcf2a297a1085e3b092415c463fcafe
033dfa8941482c82d4f1aaa4a9172fb379b9e46a02d5b36297c5476bbbfdea2c
GET /s/player/4eb6b35d/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/BFBjY_Kj2ko?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 15:52:58 GMT
expires: Tue, 21 Nov 2023 15:52:58 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 01:17:16 GMT
content-type: text/javascript
age: 259101
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/4eb6b35d/player_ias.vflset/en_US/base.js
200 OK 592 kB URL HTTP/2 www.youtube.com/s/player/4eb6b35d/player_ias.vflset/en_US/base.js
IP
File type ASCII text, with very long lines (517)
Size 592 kB (592489 bytes)
Hash c740b1903f51ecd2b32decf2a4b39ce1
50dc029c1d7cca728c9313ebe98e0d700ad6a36e
283d481df642787ffb565d6a7554d44b9b0cba77d21b59d9d85defe06e9c9399
GET /s/player/4eb6b35d/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/BFBjY_Kj2ko?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding, Origin
content-encoding: br
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 592489
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 15:55:44 GMT
expires: Tue, 21 Nov 2023 15:55:44 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 01:17:16 GMT
content-type: text/javascript
age: 258935
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6fe23ae41ec0cbb3d702b1c64028cd13
e0e4d852454a5eae80a797aaa6f0991834dcc19a
47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6fe23ae41ec0cbb3d702b1c64028cd13
e0e4d852454a5eae80a797aaa6f0991834dcc19a
47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 278 B IP
Hash 6bc706cb9928210d0ff375f63b85c3b5
800ff18bb4a66593212b80e77270da04ea533f65
a965104b304e7997998c4aa65a89e3d849a0bdf6c2650beceecf2bb677c7c94f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4420
Cache-Control: max-age=170207
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:19 GMT
Etag: "637f7792-116"
Expires: Sat, 26 Nov 2022 15:08:06 GMT
Last-Modified: Thu, 24 Nov 2022 13:54:26 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6fe23ae41ec0cbb3d702b1c64028cd13
e0e4d852454a5eae80a797aaa6f0991834dcc19a
47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/s/player/4eb6b35d/www-embed-player.vflset/www-embed-player.js
200 OK 278 B URL HTTP/2 www.youtube.com/s/player/4eb6b35d/www-embed-player.vflset/www-embed-player.js
IP
Hash 6bc706cb9928210d0ff375f63b85c3b5
800ff18bb4a66593212b80e77270da04ea533f65
a965104b304e7997998c4aa65a89e3d849a0bdf6c2650beceecf2bb677c7c94f
GET /s/player/4eb6b35d/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/BFBjY_Kj2ko?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 99035
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 15:52:58 GMT
expires: Tue, 21 Nov 2023 15:52:58 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 01:17:16 GMT
content-type: text/javascript
age: 259101
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 5b08a7f5fcb486fe1681b1c81f1f0015
e404406020aa7d11506cab462b366633f2a155f9
152175c3e0615099f77e39a079d1b64bb580b2ac5bde8d11c1b8c8a27e24243e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 875
Cache-Control: max-age=171368
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:19 GMT
Etag: "637f89f4-1d7"
Expires: Sat, 26 Nov 2022 15:27:27 GMT
Last-Modified: Thu, 24 Nov 2022 15:12:52 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash 5b08a7f5fcb486fe1681b1c81f1f0015
e404406020aa7d11506cab462b366633f2a155f9
152175c3e0615099f77e39a079d1b64bb580b2ac5bde8d11c1b8c8a27e24243e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 875
Cache-Control: max-age=171368
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:19 GMT
Etag: "637f89f4-1d7"
Expires: Sat, 26 Nov 2022 15:27:27 GMT
Last-Modified: Thu, 24 Nov 2022 15:12:52 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6fe23ae41ec0cbb3d702b1c64028cd13
e0e4d852454a5eae80a797aaa6f0991834dcc19a
47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dbursted.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 05:42:51 GMT
expires: Fri, 24 Nov 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 36508
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 21:46:16 GMT
expires: Fri, 17 Nov 2023 21:46:16 GMT
cache-control: public, max-age=31536000
age: 583503
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dbursted.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 14:07:32 GMT
expires: Thu, 23 Nov 2023 14:07:32 GMT
cache-control: public, max-age=31536000
age: 92627
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dbursted.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 18:59:14 GMT
expires: Tue, 21 Nov 2023 18:59:14 GMT
cache-control: public, max-age=31536000
age: 247925
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Nov 2022 12:31:58 GMT
expires: Sun, 19 Nov 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 443961
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/2i9DThegf7k
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/2i9DThegf7k
IP
Hash 40b6141947d435cca4cd5545b91c8349
e64d90b92957e70900aa1d9c01b22288d992e56e
f996fe69b1192cc08da48e01b8ad74a1389350c218f9ca23fa68889b6a1c0d9d
POST /s/gts1p5/2i9DThegf7k HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:20 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash 5b08a7f5fcb486fe1681b1c81f1f0015
e404406020aa7d11506cab462b366633f2a155f9
152175c3e0615099f77e39a079d1b64bb580b2ac5bde8d11c1b8c8a27e24243e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 876
Cache-Control: max-age=171368
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:20 GMT
Etag: "637f89f4-1d7"
Expires: Sat, 26 Nov 2022 15:27:28 GMT
Last-Modified: Thu, 24 Nov 2022 15:12:52 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
dbursted.com/wp-content/uploads/2020/09/dburst_logo_noglo.png
200 OK 485 kB URL HTTP/2 dbursted.com/wp-content/uploads/2020/09/dburst_logo_noglo.png
IP
ASN #50613 Advania Island ehf
File type PNG image data, 1107 x 1190, 8-bit/color RGBA, non-interlaced\012- data
Size 485 kB (485087 bytes)
Hash 7f93ce9fa433c67e057dedb32685edaf
bd36fc92ef6263750682ac178fc0716dc5f57f07
23abc9f29f15219bef5bd9c99b09b0423d7abcbfd7c0f5446461b1e406ac6491
GET /wp-content/uploads/2020/09/dburst_logo_noglo.png HTTP/1.1
Host: dbursted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbursted.com/all-thoughts-are-all-lies-all-the-time-about-anything/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 15:51:18 GMT
content-type: image/png
last-modified: Tue, 22 Sep 2020 19:52:40 GMT
etag: "766df-5f6a5608-0;;;"
accept-ranges: bytes
content-length: 485087
date: Thu, 24 Nov 2022 15:51:18 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
dbursted.com/wp-content/uploads/2021/12/wutdburst_BogPicYeah.png
200 OK 387 kB URL HTTP/2 dbursted.com/wp-content/uploads/2021/12/wutdburst_BogPicYeah.png
IP
ASN #50613 Advania Island ehf
File type PNG image data, 1126 x 671, 8-bit/color RGBA, non-interlaced\012- data
Size 387 kB (386959 bytes)
Hash 780b3cb57eca42a96055eb04b778466c
7cb69c6609a00dc6687c2862504fa82d08974f1f
be7dac703d8a42cbdd011508b55c81172e530b7027196eb1285f1cef38e95adb
GET /wp-content/uploads/2021/12/wutdburst_BogPicYeah.png HTTP/1.1
Host: dbursted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbursted.com/all-thoughts-are-all-lies-all-the-time-about-anything/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 15:51:18 GMT
content-type: image/png
last-modified: Tue, 21 Dec 2021 01:53:34 GMT
etag: "5e78f-61c1339e-0;;;"
accept-ranges: bytes
content-length: 386959
date: Thu, 24 Nov 2022 15:51:18 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
dbursted.com/wp-content/uploads/2020/09/cropped-dburst_licon_noglo-192x192.png
200 OK 43 kB URL HTTP/2 dbursted.com/wp-content/uploads/2020/09/cropped-dburst_licon_noglo-192x192.png
IP
ASN #50613 Advania Island ehf
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 7a84466f0d84b2b4f9731e516d560444
09a8a95cd94b03176a3d764b5dd0c0176ccdd361
b07729d203e1235633d36bf7d9a43e52024dec01041546e00a4a5fe927cd6573
GET /wp-content/uploads/2020/09/cropped-dburst_licon_noglo-192x192.png HTTP/1.1
Host: dbursted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbursted.com/all-thoughts-are-all-lies-all-the-time-about-anything/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 15:51:19 GMT
content-type: image/png
last-modified: Wed, 23 Sep 2020 18:58:41 GMT
etag: "a6c0-5f6b9ae1-0;;;"
accept-ranges: bytes
content-length: 42688
date: Thu, 24 Nov 2022 15:51:19 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
dbursted.com/wp-content/uploads/2020/09/cropped-dburst_licon_noglo-32x32.png
200 OK 2.7 kB URL HTTP/2 dbursted.com/wp-content/uploads/2020/09/cropped-dburst_licon_noglo-32x32.png
IP
ASN #50613 Advania Island ehf
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 90cae201ca39c3869c84350405e4700b
91c015f6800005a0655077878e154ac10167ccf4
ed2edec9e2b5f45f16c698470c606c1a97625cb5cac078684ddd14b10f5ed81b
GET /wp-content/uploads/2020/09/cropped-dburst_licon_noglo-32x32.png HTTP/1.1
Host: dbursted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbursted.com/all-thoughts-are-all-lies-all-the-time-about-anything/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 15:51:19 GMT
content-type: image/png
last-modified: Wed, 23 Sep 2020 18:58:42 GMT
etag: "aa3-5f6b9ae2-0;;;"
accept-ranges: bytes
content-length: 2723
date: Thu, 24 Nov 2022 15:51:19 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
secure.gravatar.com/avatar/46714bd7444d5c0b8a2bfc5e741231b3?s=96&d=mm&r=g
200 OK 1.5 kB URL HTTP/2 secure.gravatar.com/avatar/46714bd7444d5c0b8a2bfc5e741231b3?s=96&d=mm&r=g
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 96x96, components 3\012- data
Hash c7d444a35d350f37cf996778686f9fce
41d80eb83a0e887107ab47d84002a24aef786447
67f565f25c1bb8ae629cfca60c71766232073a0c905e0387e45895657b4ae3e7
GET /avatar/46714bd7444d5c0b8a2bfc5e741231b3?s=96&d=mm&r=g HTTP/1.1
Host: secure.gravatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dbursted.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 15:51:20 GMT
content-type: image/jpeg
content-length: 1528
last-modified: Wed, 11 Jan 1984 08:00:00 GMT
link: <https://www.gravatar.com/avatar/46714bd7444d5c0b8a2bfc5e741231b3?s=96&d=mm&r=g>; rel="canonical"
access-control-allow-origin: *
content-disposition: inline; filename="46714bd7444d5c0b8a2bfc5e741231b3.png"
expires: Thu, 24 Nov 2022 15:56:20 GMT
cache-control: max-age=300
x-nc: MISS arn 3
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7dd014d15e688837e6648e02ffb2d72e
873df827d32872cc237acdf35272bcf3769690a1
2aaec05bb3663336374697fe259f2a372d1d22d56773ed92dd2842324ad74b78
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f86429279e19a89ba7fae87ba2406b4e
abfa5369a7feb4dfebf13f5eb902c3e860976238
76d03c181e150e7e3a61bfa8489231999fb562f6cb0b382c456b9a37da1106a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 15:45:21 GMT
expires: Thu, 24 Nov 2022 16:00:21 GMT
cache-control: public, max-age=900
age: 360
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Thu, 24 Nov 2022 15:51:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7dd014d15e688837e6648e02ffb2d72e
873df827d32872cc237acdf35272bcf3769690a1
2aaec05bb3663336374697fe259f2a372d1d22d56773ed92dd2842324ad74b78
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f86429279e19a89ba7fae87ba2406b4e
abfa5369a7feb4dfebf13f5eb902c3e860976238
76d03c181e150e7e3a61bfa8489231999fb562f6cb0b382c456b9a37da1106a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/2i9DThegf7k
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/2i9DThegf7k
IP
Hash 40b6141947d435cca4cd5545b91c8349
e64d90b92957e70900aa1d9c01b22288d992e56e
f996fe69b1192cc08da48e01b8ad74a1389350c218f9ca23fa68889b6a1c0d9d
POST /s/gts1p5/2i9DThegf7k HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:21 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bitchute.com/embed/66oPrj0dmlqS/?feature=oembed
200 OK 1.4 kB URL HTTP/2 www.bitchute.com/embed/66oPrj0dmlqS/?feature=oembed
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1487)
Hash 3e9e1ca0db6d07c664aab9d2523dd701
5578cb0587bee72c1d6ba2f16b2fcde73d87b889
a65c93c8c62b735a726c90da54e94f89927aa3af23e27f9eece53cdd8dc10b31
GET /embed/66oPrj0dmlqS/?feature=oembed HTTP/1.1
Host: www.bitchute.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dbursted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:20 GMT
content-type: text/html; charset=utf-8
vary: Cookie,Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AAkQfHCt2fidtbwb0Wkv%2F7mrzOA95455ZIM64Bjm7k%2FD9foNZWMDIBKd8mPxcVGsVToF3IQzZTOxKrSW40f8ZRYzBAtLn7tq%2F6lcKdgE48oqNb0S%2B%2BAZLLoHzuV7vEGGhNo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f34e2d8a99b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.bitchute.com/embed/d8XrZStiEs3X/?feature=oembed
200 OK 6.0 kB URL HTTP/2 www.bitchute.com/embed/d8XrZStiEs3X/?feature=oembed
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1487)
Hash d248229df469bf9573cf623eae369951
8c4b97d85ae5c99c5183e55cfb68e0829482c0ad
19288696a75485cc0ac7b11e1cd59ca0eb08cea7c9e9bab0ccb42afd962889a2
GET /embed/d8XrZStiEs3X/?feature=oembed HTTP/1.1
Host: www.bitchute.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dbursted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:20 GMT
content-type: text/html; charset=utf-8
vary: Cookie,Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5b2UZv3XQRHdmfAr3xC5bhHj%2Bcg%2FbT69Wsbof8pRdItzb4CBWBQtbGRy%2FITuuMVcHIYrP302e4Nc69LuLtkhe15uEfyEq3%2F2noGzoiBzwMOcYL6GHjHbSrzwOd6kO%2B2pqDU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f34e2ce9f1b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.bitchute.com/embed/ijqtoxrzeh0/?feature=oembed
200 OK 41 kB URL HTTP/2 www.bitchute.com/embed/ijqtoxrzeh0/?feature=oembed
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1487)
Hash fe484bedc6cc04c5cdff2afc4ab7cd8f
bba00d7e1e2721d924b65304b01be706c227c7dd
38c853b51099aaed3f91172fe0587a6cc1707e22e938562a834a331a1555ec69
GET /embed/ijqtoxrzeh0/?feature=oembed HTTP/1.1
Host: www.bitchute.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dbursted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:20 GMT
content-type: text/html; charset=utf-8
vary: Cookie,Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hSFyFDmGSNQuRJignLi0ecAOqMROBEbiYkwQeGDE1qnKe1K82p73NQwSb616MGdZvP8LpJ3WJXAuPIEBOOo1%2FYh0S1uEhi0FL9h0Je%2BJOw74kZTZzHdF3tUkvsnrpQkr1no%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f34e2d8aa2b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.bitchute.com/embed/OpW3cWTGIOE/?feature=oembed
200 OK 32 kB URL HTTP/2 www.bitchute.com/embed/OpW3cWTGIOE/?feature=oembed
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1487)
Hash 4b3a787e70ba4b9500c43fbfdc60bb44
047a2f02ef1e6e7175aba202116f68d003c1d9fc
a8d48d481d2b366e433f782ccccb80f342d95b6fc60f35147f07f969208f2870
GET /embed/OpW3cWTGIOE/?feature=oembed HTTP/1.1
Host: www.bitchute.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dbursted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:20 GMT
content-type: text/html; charset=utf-8
vary: Cookie,Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uqMUMOxske7wEKsTJdT34g6kNIUY5%2FslNcsG9qOagaNGeik9EgozRZSoGdvnCrC4W7extM5ESfoGBXL9TogEpUi8RishyfzHM%2B6UK2HtYYp%2FIU5cN1wC6CmZtiTp0IvqEPw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f34e2cf9f5b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
open.spotifycdn.com/cdn/build/embed/embed.4cfd4562.css
200 OK 14 kB URL HTTP/1.1 open.spotifycdn.com/cdn/build/embed/embed.4cfd4562.css
IP
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash d629ced1d80d99efbfd4c44042462272
ef0eaabaad77d6895bc3c80ed48a3d14a546e2d8
d2392282158322f409a8030433de0eff02aaed3246487eb7975cc3475f96bbcb
GET /cdn/build/embed/embed.4cfd4562.css HTTP/1.1
Host: open.spotifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://open.spotify.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 13985
Last-Modified: Thu, 17 Nov 2022 16:46:02 GMT
ETag: "d629ced1d80d99efbfd4c44042462272"
x-goog-generation: 1668703562022708
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 13985
Content-Type: text/css
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Thu, 24 Nov 2022 15:51:21 GMT
Age: 601207
X-Served-By: cache-chi-klot8100072-CHI, cache-bma1624-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 262, 20935
Access-Control-Allow-Origin: https://open.spotify.com
Cache-Control: public, max-age=31536000
open.spotifycdn.com/cdn/fonts/spoticon_regular_2.d319d911.woff2
200 OK 57 kB URL HTTP/1.1 open.spotifycdn.com/cdn/fonts/spoticon_regular_2.d319d911.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 56996, version 1.0\012- data
Hash 3b7bbfac9ed3e75d426728e900579aa9
baff27e32807b7c8c558e2102aa2e034a47c1561
d728648c3e1d90bf50f0e988787ce26ea1111fa697b0a9daeb95d6724842a9c1
GET /cdn/fonts/spoticon_regular_2.d319d911.woff2 HTTP/1.1
Host: open.spotifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://open.spotify.com
Connection: keep-alive
Referer: https://open.spotify.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 56996
Last-Modified: Mon, 13 Jun 2022 14:00:42 GMT
ETag: "3b7bbfac9ed3e75d426728e900579aa9"
Content-Type: application/octet-stream
Accept-Ranges: bytes
Date: Thu, 24 Nov 2022 15:51:21 GMT
Age: 14176064
X-Served-By: cache-ord1736-ORD, cache-chi-kigq8000054-CHI, cache-bma1656-BMA
X-Cache: MISS, HIT, HIT
X-Cache-Hits: 0, 1, 93526
Access-Control-Allow-Origin: https://open.spotify.com
Cache-Control: public, max-age=31536000
open.spotifycdn.com/cdn/generated-locales/embed/en.8bbf037a.json
200 OK 723 B URL HTTP/1.1 open.spotifycdn.com/cdn/generated-locales/embed/en.8bbf037a.json
IP
File type JSON data\012- , ASCII text
Hash b4e321692a7b511eb6b8cd2089b3cb46
90bfdb4d3a59e36fbe3e8c8283520cd9d10aafae
b2312d9a20e3917be9f44476cfde4b86914412f893ab786552068407309da9ea
GET /cdn/generated-locales/embed/en.8bbf037a.json HTTP/1.1
Host: open.spotifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://open.spotify.com
Connection: keep-alive
Referer: https://open.spotify.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 723
Last-Modified: Thu, 24 Nov 2022 12:40:47 GMT
ETag: "b4e321692a7b511eb6b8cd2089b3cb46"
x-goog-generation: 1669293647154784
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 723
Content-Type: application/json
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Thu, 24 Nov 2022 15:51:21 GMT
Age: 11133
X-Served-By: cache-chi-klot8100124-CHI, cache-bma1620-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 6, 264
Access-Control-Allow-Origin: https://open.spotify.com
Cache-Control: public, max-age=31536000
encore.scdn.co/fonts/CircularSpTitle-Black-3f9afb402080d53345ca1850226ca724.woff2
200 OK 86 kB URL HTTP/1.1 encore.scdn.co/fonts/CircularSpTitle-Black-3f9afb402080d53345ca1850226ca724.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 85622, version 1.66\012- data
Hash 0e196bce574e01f42fc686e3e6dc4f76
330b633667a9533638955e725e53a760904170eb
94591008ecb9d40b575e52b72bd30dc31bab0b064ba132766fb80f95f85d27aa
GET /fonts/CircularSpTitle-Black-3f9afb402080d53345ca1850226ca724.woff2 HTTP/1.1
Host: encore.scdn.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://open.spotify.com
Connection: keep-alive
Referer: https://open.spotify.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 85585
Last-Modified: Thu, 19 May 2022 07:59:22 GMT
ETag: "0e196bce574e01f42fc686e3e6dc4f76"
Content-Type: font/woff2
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Thu, 24 Nov 2022 15:51:21 GMT
Age: 12203571
X-Served-By: cache-ord1740-ORD, cache-chi-kigq8000179-CHI, cache-bma1682-BMA
X-Cache: HIT, HIT, HIT
X-Cache-Hits: 1, 1, 148625
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=31536000
encore.scdn.co/fonts/CircularSp-Bold-fe1cfc14b7498b187c78fa72fb72d148.woff2
200 OK 90 kB URL HTTP/1.1 encore.scdn.co/fonts/CircularSp-Bold-fe1cfc14b7498b187c78fa72fb72d148.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 89536, version 1.66\012- data
Hash 216b12b5a9657850b1b324e158454f8e
b02b14e1ed70d323167efa295ceb8ba156a37fab
81c0ae5eb7c7ea1bca274d51be67818e3f2577e63c9f2ee766b20e8964335db9
GET /fonts/CircularSp-Bold-fe1cfc14b7498b187c78fa72fb72d148.woff2 HTTP/1.1
Host: encore.scdn.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://open.spotify.com
Connection: keep-alive
Referer: https://open.spotify.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 89529
Last-Modified: Fri, 13 May 2022 11:38:50 GMT
ETag: "216b12b5a9657850b1b324e158454f8e"
x-goog-generation: 1652441930609707
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 89529
Content-Type: font/woff2
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Thu, 24 Nov 2022 15:51:21 GMT
Age: 6383119
X-Served-By: cache-chi-kigq8000140-CHI, cache-bma1637-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 104255
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=31536000
encore.scdn.co/fonts/CircularSpTitle-Bold-2fbf72b606d7f0b0f771ea4956a8b4d6.woff2
200 OK 87 kB URL HTTP/1.1 encore.scdn.co/fonts/CircularSpTitle-Bold-2fbf72b606d7f0b0f771ea4956a8b4d6.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 87350, version 1.66\012- data
Hash db1a27b35e26398fef4be920ea96078d
436a76d889fe34eaf1c213447d3d94a5dc3adedd
847a8377ef2e424408f08c04f34697edd3ceca9f8a6455678493dd69e5d0bd47
GET /fonts/CircularSpTitle-Bold-2fbf72b606d7f0b0f771ea4956a8b4d6.woff2 HTTP/1.1
Host: encore.scdn.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://open.spotify.com
Connection: keep-alive
Referer: https://open.spotify.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 87344
Last-Modified: Thu, 19 May 2022 07:59:23 GMT
ETag: "db1a27b35e26398fef4be920ea96078d"
x-goog-generation: 1652947162999500
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 87344
Content-Type: font/woff2
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Thu, 24 Nov 2022 15:51:21 GMT
Age: 12203569
X-Served-By: cache-ord1746-ORD, cache-chi-klot8100076-CHI, cache-bma1629-BMA
X-Cache: HIT, HIT, HIT
X-Cache-Hits: 1, 1, 83431
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=31536000
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ad1446c440cc24968e365ad0639ff799
013aaf60ad8bc7f8b99eda72a5c16c89ea04a1ec
52f1ed77bc2bd8d094d9351ce4df54d6de953df0fefabeee1d907adba6cc89d9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "52F1ED77BC2BD8D094D9351CE4DF54D6DE953DF0FEFABEEE1D907ADBA6CC89D9"
Last-Modified: Thu, 24 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7541
Expires: Thu, 24 Nov 2022 17:57:03 GMT
Date: Thu, 24 Nov 2022 15:51:22 GMT
Connection: keep-alive
encore.scdn.co/fonts/CircularSp-Book-4eaffdf96f4c6f984686e93d5d9cb325.woff2
200 OK 84 kB URL HTTP/1.1 encore.scdn.co/fonts/CircularSp-Book-4eaffdf96f4c6f984686e93d5d9cb325.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 84088, version 1.66\012- data
Hash f7b12903dd7a2d536ceb2b7cd1dba2c1
82d12ab89c971973141475ecbefa5da97ad57195
3760e89dfff6078afcdc5404e4735e266a4799babd9fa853ff388c702e992c5f
GET /fonts/CircularSp-Book-4eaffdf96f4c6f984686e93d5d9cb325.woff2 HTTP/1.1
Host: encore.scdn.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://open.spotify.com
Connection: keep-alive
Referer: https://open.spotify.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 84027
Last-Modified: Fri, 13 May 2022 11:38:51 GMT
ETag: "f7b12903dd7a2d536ceb2b7cd1dba2c1"
Content-Type: font/woff2
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Thu, 24 Nov 2022 15:51:21 GMT
Age: 11758469
X-Served-By: cache-ord1745-ORD, cache-chi-kigq8000169-CHI, cache-bma1667-BMA
X-Cache: HIT, HIT, HIT
X-Cache-Hits: 1, 1, 63806
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=31536000
open.spotifycdn.com/cdn/build/embed/vendor~embed.6be60370.css
200 OK 986 B URL HTTP/1.1 open.spotifycdn.com/cdn/build/embed/vendor~embed.6be60370.css
IP
File type ASCII text, with very long lines (8973), with no line terminators
Hash 39a0174cdd7c50425083a2e6bff8c6a4
e29b8f814712215e08857dee1eed008d12cdb200
1dd80bd71dfd3edc5807c2ec9c1e37ee57c3ed72225879e31f16388b178c3a2f
GET /cdn/build/embed/vendor~embed.6be60370.css HTTP/1.1
Host: open.spotifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://open.spotify.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 986
Last-Modified: Mon, 25 Jul 2022 10:32:22 GMT
ETag: "39a0174cdd7c50425083a2e6bff8c6a4"
x-goog-generation: 1658745142492300
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 986
Content-Type: text/css
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Thu, 24 Nov 2022 15:51:22 GMT
Age: 10559717
X-Served-By: cache-chi-kigq8000077-CHI, cache-bma1650-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 78258
Access-Control-Allow-Origin: https://open.spotify.com
Cache-Control: public, max-age=31536000
www.bitchute.com/embed/bR6F4hUxqkCN/?feature=oembed
200 OK 54 kB URL HTTP/2 www.bitchute.com/embed/bR6F4hUxqkCN/?feature=oembed
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1487)
Hash d05923aa4f97c1d59b8983efece76a20
8fbe40108f492a128a6fb65423c4436c91d2d718
052fec779b6ece858cc051cdaae73a46417278269b678c51a4a5b99b38a0d35c
GET /embed/bR6F4hUxqkCN/?feature=oembed HTTP/1.1
Host: www.bitchute.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dbursted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:20 GMT
content-type: text/html; charset=utf-8
vary: Cookie,Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mFlXnFa9v0dBxakJXcujn%2FdZV0yZXr844vo3JiMook7ElGOtj28Pw63Mu6jGQ1hZuZ3TLZcAEBWzz%2F%2B0pmK9kCuqFGN%2FsmwHF%2FRg2ZtvbFAcHhBcMbDYCuPmXrsNQK0iTks%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f34e2cd9ccb529-OSL
content-encoding: br
X-Firefox-Spdy: h2
open.spotifycdn.com/cdn/build/embed/vendor~embed.cd40d2c8.js
200 OK 304 kB URL HTTP/1.1 open.spotifycdn.com/cdn/build/embed/vendor~embed.cd40d2c8.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Size 304 kB (304211 bytes)
Hash c0e24696ba1ab1522380b66d09718a4f
9122d4af2efe9b11cef5a07978b94eb3affb660f
2c802ac85e654bbf4835336286147aa99065b967bdfe5e3ee3f4f3a8be498e99
GET /cdn/build/embed/vendor~embed.cd40d2c8.js HTTP/1.1
Host: open.spotifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://open.spotify.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 304211
Last-Modified: Mon, 14 Nov 2022 14:52:05 GMT
ETag: "c0e24696ba1ab1522380b66d09718a4f"
x-goog-generation: 1668437525089294
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 304211
Content-Type: application/javascript
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Thu, 24 Nov 2022 15:51:22 GMT
Age: 828469
X-Served-By: cache-chi-klot8100031-CHI, cache-bma1649-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 98663, 49
Access-Control-Allow-Origin: https://open.spotify.com
Cache-Control: public, max-age=31536000
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 24 Nov 2022 15:51:22 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js
200 OK 14 kB URL HTTP/2 www.google.com/js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js
IP
File type ASCII text, with very long lines (36106)
Hash 7fc7e22ecccb0cfd0ae897bb40a58efe
5d46470a711120793c362235105836fe49e699a4
1907005cab41fbd6d1d67df3b25586f3232e053a261c9e2b2503459f4980b1c5
GET /js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14302
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 20 Nov 2022 10:09:03 GMT
expires: Mon, 20 Nov 2023 10:09:03 GMT
cache-control: public, max-age=31536000
age: 366139
last-modified: Thu, 03 Nov 2022 10:00:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 4c5b89e92448cf00786f3e5997984a34
2d9d6b749b89e9d92b832fca2606d5584ba2cd8f
861a7376573baeb22b35cf2f5130d0803a055fbb63cbecde05ad80335b6f5f35
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static-3.bitchute.com/live/cover_images/Ma107tEUNW7q/osPieJAZHY10_640x360.jpg
200 OK 62 kB URL HTTP/2 static-3.bitchute.com/live/cover_images/Ma107tEUNW7q/osPieJAZHY10_640x360.jpg
IP
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x360, components 3\012- data
Hash 588cec1546adc883de480460c9412d53
5d69169c921a4d41b0272b384ff419a85b988650
ae47f8df2e6302b213535c34b599ff7f8495c5d65a1267e5fb8fbde970057abb
GET /live/cover_images/Ma107tEUNW7q/osPieJAZHY10_640x360.jpg HTTP/1.1
Host: static-3.bitchute.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bitchute.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:22 GMT
content-type: image/jpeg
content-length: 62329
server: BunnyCDN-DE1-722
cdn-pullzone: 89010
cdn-uid: cd868a83-1d51-4455-8c6e-f6ed9fcd8eef
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Fri, 17 Dec 2021 19:05:02 GMT
x-rgw-object-type: Normal
x-amz-request-id: tx00000000000002eaab8c6-00637cf59b-21d2a51f-nyc3a
strict-transport-security: max-age=15552000; includeSubDomains; preload
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 11/22/2022 16:15:23
cdn-edgestorageid: 863
cdn-status: 200
cdn-requestid: a86389c72ec50160bdf1c57b1dbd12c1
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 0dd8fb765ffa644a7f3656dbcee420b8
472e462a344b99d4bfe73e178df6139236cff862
a167dbbd1ffc1984a4ac1e6f6b278c73619fff241b57572188ddccd3c4fed3ca
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 24 Nov 2022 15:51:22 GMT
server: ESF
cache-control: private
content-length: 30983
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ee7dfd7708b6cba74ec79aa7266a4e9e
d36a19314341fcb8effad1ba4a3e5d5e444b5294
62f49a3cbefcd2d52fddf4c35d7d978f2cc3482683fe201667d5f34df67ba13b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/aoJ9M6s2RCOH9-ULFs7ll9aS-viz4wj84VgdGmyJSkPdPySIZggg2nwyt5YGlLnfE5DTzt3J34s=s68-c-k-c0x00ffffff-no-rj
200 OK 3.0 kB URL HTTP/2 yt3.ggpht.com/aoJ9M6s2RCOH9-ULFs7ll9aS-viz4wj84VgdGmyJSkPdPySIZggg2nwyt5YGlLnfE5DTzt3J34s=s68-c-k-c0x00ffffff-no-rj
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash e8a5719b6be642db8e7b1c33325fefc4
5991b726b3ee2ce456428c10e3f246817cc0b2c3
8d411035d7e5cfef9e47879e7cd1bb98c55b0db9e3ffa8945e3ac3bc8bfb5af8
GET /aoJ9M6s2RCOH9-ULFs7ll9aS-viz4wj84VgdGmyJSkPdPySIZggg2nwyt5YGlLnfE5DTzt3J34s=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 3022
x-xss-protection: 0
date: Thu, 24 Nov 2022 12:20:46 GMT
expires: Thu, 10 Nov 2022 08:17:54 GMT
cache-control: public, max-age=86400, no-transform
age: 12636
etag: "v1"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.ytimg.com/vi_webp/kYYJlNbV1OM/default.webp
200 OK 8.2 kB URL HTTP/2 i.ytimg.com/vi_webp/kYYJlNbV1OM/default.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash e20d183ff98dc356d40a42183aee3c1d
65443bf2164b8abfff60cc160c3b1c1c19c43d29
9b97912742ff24badc6d36b1ae290bd3fc745debb61a6620df177e8f1b93bfbe
GET /vi_webp/kYYJlNbV1OM/default.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 8154
date: Thu, 24 Nov 2022 15:51:22 GMT
expires: Thu, 24 Nov 2022 17:51:22 GMT
cache-control: public, max-age=7200
etag: "1486565109"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 24177ccc58bf149d5c9c42f3a043e702
41f95afe362d8b91147a7640f8b45d5010c189b6
1b33a3e34920b882ee4a4aeb7a3677d0957cd9db1bea9097f9a391a74c94f833
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 24 Nov 2022 15:51:22 GMT
server: ESF
cache-control: private
content-length: 31022
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.bitchute.com/embed/fylHh64W-i8/?feature=oembed
200 OK 42 kB URL HTTP/2 www.bitchute.com/embed/fylHh64W-i8/?feature=oembed
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1487)
Hash b377f99329498cae8ae48141b7b8cf1d
72d173af1d43544506ea1b23d25c8942b33ed6b7
5ea9739114a8f2ca9e55f11bc5fbf4a9ec96809fa3beeb98ac4ccce9736c5d44
GET /embed/fylHh64W-i8/?feature=oembed HTTP/1.1
Host: www.bitchute.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dbursted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:20 GMT
content-type: text/html; charset=utf-8
vary: Cookie,Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=buCSpVyhQQm1Pt0wVV9KlEj%2Be1dfPe%2FgvraBigCcZHfzZLXTNCIgoajVMo%2Fa8gs5UXM6pE7fXY7GXKNpnLDONzWcig4c%2FaFC6a%2BvkuQN%2BiE5jf0U8N6QrW3HJgs%2Bn3jUS7o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f34e2cd9cab529-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.bitchute.com/static/v139/js/embed.js
200 OK 25 kB URL HTTP/2 www.bitchute.com/static/v139/js/embed.js
IP
File type ASCII text, with no line terminators
Hash 84154150e0741687c388510a98506530
75d87eef6238057f13cc3694c2bfeaa103b6e523
bb0d1050d8d810176497e73ba3eaa8049f31d887bb222df8b44a63056ef9c44e
GET /static/v139/js/embed.js HTTP/1.1
Host: www.bitchute.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bitchute.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:21 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=262
etag: W/"106-5e6e816dd34e0-gzip"
last-modified: Tue, 23 Aug 2022 12:56:13 GMT
vary: Accept-Encoding
cache-control: max-age=86400
cf-cache-status: HIT
age: 1892
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n17pwxdWhwmBg3nZZZU6OFHSnjnj6cfErev4XoRZnpUEBk1WiK2QmYC%2B%2FlyeQVZN9yQN%2BgEdgR0f65EG%2BiZ2muXZL40SbFPjBSFB1BO%2B6eeVNVGMYAgzjDz88RlvK2VWH%2Bs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f34e394be7b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
static-3.bitchute.com/live/cover_images/IqkVCnIJKhPk/ijqtoxrzeh0_640x360.jpg
200 OK 67 kB URL HTTP/2 static-3.bitchute.com/live/cover_images/IqkVCnIJKhPk/ijqtoxrzeh0_640x360.jpg
IP
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x360, components 3\012- data
Hash 1a613565c8fa1a22edfe435a144cca58
4f8f3387a7a2fd733104aa7c44dcba063a792c0f
9af33d6bd9da8cfdd89c71abca83bfbacad3af3341f49345c4c1a3b200814db8
GET /live/cover_images/IqkVCnIJKhPk/ijqtoxrzeh0_640x360.jpg HTTP/1.1
Host: static-3.bitchute.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bitchute.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:22 GMT
content-type: image/jpeg
content-length: 67162
server: BunnyCDN-DE1-722
cdn-pullzone: 89010
cdn-uid: cd868a83-1d51-4455-8c6e-f6ed9fcd8eef
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Wed, 21 Apr 2021 00:39:03 GMT
x-rgw-object-type: Normal
x-amz-request-id: tx00000000000002f9f5458-00637f92fa-21d2756d-nyc3a
strict-transport-security: max-age=15552000; includeSubDomains; preload
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 11/24/2022 15:51:22
cdn-edgestorageid: 722
cdn-status: 200
cdn-requestid: 2ca0e4326d4d60ff5df3b79acc6d6a84
cdn-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
static-3.bitchute.com/live/cover_images/2HCoi42WWT6n/bR6F4hUxqkCN_640x360.jpg
200 OK 48 kB URL HTTP/2 static-3.bitchute.com/live/cover_images/2HCoi42WWT6n/bR6F4hUxqkCN_640x360.jpg
IP
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x360, components 3\012- data
Hash dd0354b5b9b228d552566c09cbe39de0
5241395ec7f58ecd70215b0e83d5c4e6ec209fe9
caf10d25f26a8eed66ce04ba83e14ce621e886d623458ede3ebf49dd95cf7b39
GET /live/cover_images/2HCoi42WWT6n/bR6F4hUxqkCN_640x360.jpg HTTP/1.1
Host: static-3.bitchute.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bitchute.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:22 GMT
content-type: image/jpeg
content-length: 48440
server: BunnyCDN-DE1-722
cdn-pullzone: 89010
cdn-uid: cd868a83-1d51-4455-8c6e-f6ed9fcd8eef
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Tue, 07 Dec 2021 05:13:05 GMT
x-rgw-object-type: Normal
x-amz-request-id: tx00000000000002f9e2467-00637f92fa-21d2a51f-nyc3a
strict-transport-security: max-age=15552000; includeSubDomains; preload
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 11/24/2022 15:51:22
cdn-edgestorageid: 752
cdn-status: 200
cdn-requestid: 4a24559922cf9344a782f89b1a4aec5d
cdn-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 389c4da3adf2169503a3d25400ae1edf
ab2aaba4cc57fe187606abd41e4acc0b71c547ea
38fa69d5dd18ee6c762d981ee427ba2836eab39cf107ecd6e11f6ca07f3bc837
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 24 Nov 2022 15:51:23 GMT
server: ESF
cache-control: private
content-length: 30987
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 048782eb1c00faba81c11a456da6dad4
69de85ea51afd6acef1e49377bdf3a72cd19d880
d235e9737ee8057451b5c1cf45df01c617bed527327a00cacf3cdd4188ad6969
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 24 Nov 2022 15:51:23 GMT
server: ESF
cache-control: private
content-length: 31002
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 0ea34b8706110ac622a08eb5abce5fe9
5a9cea0e56702e0cfb3e316b00995b55991277bf
e5f1f196ff50819c06a5a7dc81af0574ab9949c5343fd079c26d30502a29ffda
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:23 GMT
Etag: "637e6845-118"
Server: ECS (amb/6B94)
Content-Length: 280
ocsp.digicert.com/
200 OK 280 B IP
Hash 0ea34b8706110ac622a08eb5abce5fe9
5a9cea0e56702e0cfb3e316b00995b55991277bf
e5f1f196ff50819c06a5a7dc81af0574ab9949c5343fd079c26d30502a29ffda
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=96330
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:23 GMT
Etag: "637e6845-118"
Expires: Fri, 25 Nov 2022 18:36:53 GMT
Last-Modified: Wed, 23 Nov 2022 18:36:53 GMT
Server: nginx
Content-Length: 280
ocsp.digicert.com/
200 OK 280 B IP
Hash 0ea34b8706110ac622a08eb5abce5fe9
5a9cea0e56702e0cfb3e316b00995b55991277bf
e5f1f196ff50819c06a5a7dc81af0574ab9949c5343fd079c26d30502a29ffda
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:23 GMT
Etag: "637e6845-118"
Last-Modified: Thu, 24 Nov 2022 15:51:23 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
200 OK 280 B IP
Hash 0ea34b8706110ac622a08eb5abce5fe9
5a9cea0e56702e0cfb3e316b00995b55991277bf
e5f1f196ff50819c06a5a7dc81af0574ab9949c5343fd079c26d30502a29ffda
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=96330
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:23 GMT
Etag: "637e6845-118"
Expires: Fri, 25 Nov 2022 18:36:53 GMT
Last-Modified: Wed, 23 Nov 2022 18:36:53 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 280
www.gstatic.com/cv/js/sender/v1/cast_sender.js?loadCastFramework=1
200 OK 2.0 kB URL HTTP/2 www.gstatic.com/cv/js/sender/v1/cast_sender.js?loadCastFramework=1
IP
File type ASCII text, with very long lines (1143)
Hash c439f328a6d5a2f9cba8f719b4a0c39b
c91a5d5bce3629fa350f8bed6a6693ab477a0f99
79dc7857f15689c75f5126726ad2b5894d3a43018928420482eba684b800f193
GET /cv/js/sender/v1/cast_sender.js?loadCastFramework=1 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/cloudview
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="cloudview"
report-to: {"group":"cloudview","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/cloudview"}]}
content-length: 2007
date: Thu, 24 Nov 2022 15:51:23 GMT
expires: Thu, 24 Nov 2022 15:51:23 GMT
cache-control: private, max-age=3000
last-modified: Tue, 16 Feb 2021 23:57:06 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 0ea34b8706110ac622a08eb5abce5fe9
5a9cea0e56702e0cfb3e316b00995b55991277bf
e5f1f196ff50819c06a5a7dc81af0574ab9949c5343fd079c26d30502a29ffda
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:23 GMT
Etag: "637e6845-118"
Last-Modified: Thu, 24 Nov 2022 15:51:23 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 280
i.scdn.co/image/f393accd82af92a5271332720a4a8eac404af73c
200 OK 35 kB URL HTTP/1.1 i.scdn.co/image/f393accd82af92a5271332720a4a8eac404af73c
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 300x300, components 3\012- data
Hash bf0dbbf9a731df313651efc42ab8fbd9
f393accd82af92a5271332720a4a8eac404af73c
715f20a7d1923baed24c1912d4fe2325ad54f3e8ac0516b0c7646e7f3a3717bd
GET /image/f393accd82af92a5271332720a4a8eac404af73c HTTP/1.1
Host: i.scdn.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://open.spotifycdn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 35375
Last-Modified: Sat, 24 Oct 2020 23:50:40 GMT
ETag: "bf0dbbf9a731df313651efc42ab8fbd9"
x-goog-generation: 1603583440979356
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 35375
Content-Type: image/jpeg
Accept-Ranges: bytes
Date: Thu, 24 Nov 2022 15:51:23 GMT
Age: 264568
Timing-Allow-Origin: *
X-Served-By: cache-chi-kigq8000107-CHI, cache-bma1662-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 180, 1
Access-Control-Allow-Origin: *
Cache-Control: max-age=315360000
imasdk.googleapis.com/js/sdkloader/ima3.js
200 OK 127 kB URL HTTP/2 imasdk.googleapis.com/js/sdkloader/ima3.js
IP
File type ASCII text, with very long lines (2791)
Size 127 kB (126568 bytes)
Hash d298ebea71faa19cd8237ddf8c37d550
628f6436cdc4db74ecda4fad134b4499f41ad4cb
f02e9221a17b677d0aa0b76876bd82931f57bf5dd1ff9aa24a1ab945838b0e64
GET /js/sdkloader/ima3.js HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 126568
date: Thu, 24 Nov 2022 15:51:23 GMT
expires: Thu, 24 Nov 2022 15:51:23 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.scdn.co/image/272982799df5be79680e50cebb6e1a457ae6b5f8
200 OK 32 kB URL HTTP/1.1 i.scdn.co/image/272982799df5be79680e50cebb6e1a457ae6b5f8
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 300x300, components 3\012- data
Hash 0cfb8e7c7b3979579ca40ec780086b46
272982799df5be79680e50cebb6e1a457ae6b5f8
88406fa67b76ee376a70a199fae3d1928e76a01a0fe336da33379f75d5323fad
GET /image/272982799df5be79680e50cebb6e1a457ae6b5f8 HTTP/1.1
Host: i.scdn.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://open.spotifycdn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 32125
Last-Modified: Tue, 03 Mar 2020 04:44:26 GMT
ETag: "0cfb8e7c7b3979579ca40ec780086b46"
x-goog-generation: 1583210666159563
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 32125
Content-Type: image/jpeg
Accept-Ranges: bytes
Date: Thu, 24 Nov 2022 15:51:23 GMT
Age: 673922
Timing-Allow-Origin: *
X-Served-By: cache-chi-klot8100066-CHI, cache-bma1634-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1922, 1
Access-Control-Allow-Origin: *
Cache-Control: max-age=315360000
joshwho-cdn.com/plugin/TopMenu/style.css?cache=1647555433_1658159118
200 OK 42 B URL HTTP/2 joshwho-cdn.com/plugin/TopMenu/style.css?cache=1647555433_1658159118
IP
File type ASCII text, with no line terminators
Hash 43f55135c456ef3974f00757c41d7df9
d03bea2332190fad560e7c9076549b79cfc3d2e3
98672ea81d88a6d25fc219c67d2f5617c6813ae25475b9cad5b76fe490ac535c
Analyzer Verdict Alert fortinet Phishing
GET /plugin/TopMenu/style.css?cache=1647555433_1658159118 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
content-length: 42
cf-ray: 76f34e4508ae76db-LHR
accept-ranges: bytes
access-control-allow-origin: *
age: 449745
cache-control: public, max-age=604800
etag: "3c-5da7164585f8c"
expires: Sat, 26 Nov 2022 10:07:17 GMT
last-modified: Thu, 17 Mar 2022 22:17:13 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=60
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MOP0UvoOZDn6WQQCzvHz4wLhaRKUJLRwDfTpFg5pjg%2FIFrKdLJk1%2BOTdNS%2FKgeDMOxgZ4Kqrqzh%2BsRwEweeuucWoj1B2EfFo36Zaj388IFxU6q2NQYAZC8gOczmSbfi7su0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/videos/userPhoto/photo3304.png?cache=1637014927_1637014927
200 OK 8.6 kB URL HTTP/2 joshwho-cdn.com/videos/userPhoto/photo3304.png?cache=1637014927_1637014927
IP
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash aafe89f64d30aad19d583207707bb889
526e48fb077d55827f8464adfe4427562ff5e772
47eecc4817e10dad10fb41e28be9e663b6c9a6e0cfd389bb8a1d49a2c903f832
Analyzer Verdict Alert fortinet Phishing
GET /videos/userPhoto/photo3304.png?cache=1637014927_1637014927 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: image/png
content-length: 8609
cf-ray: 76f34e4518dd76db-LHR
accept-ranges: bytes
access-control-allow-origin: *
age: 245424
cache-control: public, max-age=2592000
etag: "21a1-5d0db3d3b13cc"
expires: Wed, 23 Nov 2022 09:22:15 GMT
last-modified: Mon, 15 Nov 2021 22:22:07 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WCk%2F27riF9bobV1tf9p49swlG5dXJI%2FIqqNmZRziPY75YE3jcRhqWSjJ85NmtcJhLhqa8sKZT5oLsMhvszOjrol1bQXycK4GRc7v99NXLgs%2Bk%2Ftg0UTEQPBvnSrMWfU71xQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/node_modules/videojs-contrib-ads/dist/videojs.ads.css?cache=1653393648_1658159118
200 OK 563 B URL HTTP/2 joshwho-cdn.com/node_modules/videojs-contrib-ads/dist/videojs.ads.css?cache=1653393648_1658159118
IP
File type ASCII text, with very long lines (960), with no line terminators
Hash 47acccb460432ad0840b11079fa17945
1e4848fb8b4b56d2e459df813283cbf4844d7e0c
4e4e351aa9e2d7260212e62272b6d800ce2c91b8829b55c3c8442abcae2c6bdc
Analyzer Verdict Alert fortinet Phishing
GET /node_modules/videojs-contrib-ads/dist/videojs.ads.css?cache=1653393648_1658159118 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
cf-ray: 76f34e4508aa76db-LHR
access-control-allow-origin: *
age: 435205
cache-control: public, max-age=604800
etag: W/"3cf-5dfc0b510ad62-gzip"
expires: Sat, 26 Nov 2022 12:31:10 GMT
last-modified: Tue, 24 May 2022 12:00:48 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=975
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mj5jQBpUVPDbGU2xPSOvXWao2%2BmfppdwoWjPpctFa9A7WeBcyia7X89K%2BN9iw4Ls7YI3HOLcZK4Nmo%2Fe6mCjGLJ%2B%2BZELZGGsJAQlk0Nck5AZqxVEzdcB1qas2d%2BKdNJiKqU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/view/bootstrap/css/bootstrap.css?cache=1633467109_1658159118
200 OK 20 kB URL HTTP/2 joshwho-cdn.com/view/bootstrap/css/bootstrap.css?cache=1633467109_1658159118
IP
File type ASCII text, with very long lines (65450)
Hash 656f420016726db65a1957827b68d174
5e69504a8c0d88ac4ed0cbb7c33d54da4a14616d
8a0d1474d4266e082c0c9f6e8802c7ec701901b44e8e194884cd1adb7be59339
Analyzer Verdict Alert fortinet Phishing
GET /view/bootstrap/css/bootstrap.css?cache=1633467109_1658159118 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
cf-ray: 76f34e44e84c76db-LHR
access-control-allow-origin: *
age: 19675
cache-control: public, max-age=604800
etag: W/"254be-5cda132d4cd1c-gzip"
expires: Fri, 25 Nov 2022 19:38:12 GMT
last-modified: Tue, 05 Oct 2021 20:51:49 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=152766
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5WpMYDHVBQAJ9Ewv9nAXfDKrIClE7zjh0DmBfRU%2FU5LIlNbXonwkrK7jH%2B%2BFFbHowoVhm6ATJPBcadA%2BW3eMq2eIps7uZyYXhKYBFM4gWFEWhvBkxv7jHs8WoC7m5O4fqDI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/videos/v_211217004109_v8297/v_211217004109_v8297.jpg?cache=16397241741639724174
200 OK 31 kB URL HTTP/2 joshwho-cdn.com/videos/v_211217004109_v8297/v_211217004109_v8297.jpg?cache=16397241741639724174
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.107.100", baseline, precision 8, 1280x720, components 3\012- data
Hash 591bda1670c02764a5e70e2ce11a2639
cecc7a2cd0ca9352a29f352bb892c309dcd6bed2
c646854a3ef2dc94d30d5c91a97d6302a0c74a09c62f438fd00ca4050e888bfa
GET /videos/v_211217004109_v8297/v_211217004109_v8297.jpg?cache=16397241741639724174 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: image/jpeg
content-length: 31250
cf-ray: 76f34e4518db76db-LHR
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=2592000
etag: "7a12-5d35208f359c1"
expires: Sat, 24 Dec 2022 15:51:23 GMT
last-modified: Fri, 17 Dec 2021 06:56:14 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: MISS
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KVRw0VFlMeErAuELLbJhZSo7E7I4R1P1hPj6h2jD2gNm35KhqAEQtFs6EEfeH15OXg4KrmcZEv8fRLzgEGX%2BG%2Fq%2F%2FJa9rekytHjgOcvKjIVau7ueoLlb1lGfhDLAHNCzWyE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/view/js/bootgrid/jquery.bootgrid.css?cache=1579785442_1658159118
200 OK 798 B URL HTTP/2 joshwho-cdn.com/view/js/bootgrid/jquery.bootgrid.css?cache=1579785442_1658159118
IP
File type ASCII text, with very long lines (3727)
Hash c1a49d04b263720adc47b18a676a4930
7301b9243896b64df921979c594d8060722383eb
a4b04eb1a007e60c71dbaefdd5ee4c8b9beebc84880bea15389fa96d903be04b
Analyzer Verdict Alert fortinet Phishing
GET /view/js/bootgrid/jquery.bootgrid.css?cache=1579785442_1658159118 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
cf-ray: 76f34e44e85276db-LHR
access-control-allow-origin: *
age: 450547
cache-control: public, max-age=604800
etag: W/"115a-59cce761c9031-gzip"
expires: Fri, 25 Nov 2022 18:53:23 GMT
last-modified: Thu, 23 Jan 2020 13:17:22 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=4442
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Oma18S27OkzOXPMVaAePLrMh%2FBVx%2FYVoeTG2iBCKbE%2FAJLaEVeH5VDVPdaO9u%2BVEIHRgm%2Bv9BveIWdMzElNetazWISuj4Bpsdmtk8pby4zid4lfnZHte4v9g4q8QhtGB2rY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/node_modules/jquery-toast-plugin/dist/jquery.toast.min.css?cache=1657402239_1658159118
200 OK 2.9 kB URL HTTP/2 joshwho-cdn.com/node_modules/jquery-toast-plugin/dist/jquery.toast.min.css?cache=1657402239_1658159118
IP
File type ASCII text, with very long lines (4508), with no line terminators
Hash 383194846e583b364800803b29524eea
d4e33996453a8e3fa632e6d8183e853775122527
7e9ae311fdbf75d8294bb4d2ac17769e8823691a272dc69890a019e6ef409788
GET /node_modules/jquery-toast-plugin/dist/jquery.toast.min.css?cache=1657402239_1658159118 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
cf-ray: 76f34e45592a76db-LHR
access-control-allow-origin: *
age: 249197
cache-control: public, max-age=604800
etag: W/"119c-5e36607b91da0-gzip"
expires: Sat, 26 Nov 2022 08:52:04 GMT
last-modified: Sat, 09 Jul 2022 21:30:39 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=00WWX3H4UK%2FERNZqCHIegiQ5pDLhtWQHtPf96qTFN3hE8JgulewtCiP9kwVYsA7Ag9NvwU5TMl7KD9WROmCLvgbO12lYn3dqL0AjhlLZeYuIWESyD%2Fv6mZJoOm5XmSeGutM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/view/css/main.css?cache=1667020093_1667020093
200 OK 7.7 kB URL HTTP/2 joshwho-cdn.com/view/css/main.css?cache=1667020093_1667020093
IP
File type ASCII text, with very long lines (391)
Hash f8ea03d231e1a5df24a490f2ecef90bc
d04218ad0ae1d1a6e3e1d1b251c7fa65b28d4c74
0a513c33f6182652c164277478869b44d6666dd07d0946718f3577e588bb437b
Analyzer Verdict Alert fortinet Phishing
GET /view/css/main.css?cache=1667020093_1667020093 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
cf-ray: 76f34e44e85776db-LHR
access-control-allow-origin: *
age: 62369
cache-control: public, max-age=604800
etag: W/"8128-5ec255c832b69-gzip"
expires: Sat, 26 Nov 2022 05:49:01 GMT
last-modified: Sat, 29 Oct 2022 05:08:13 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=33064
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8DZi%2F5kzxupMgtHehtOIekpPxSFoRZgG3zjOVNPH1MPMLtwL2r8ZjrO5e8DR4NwmNz0ZDIu8ttlwRXBkKT1QO6bxLf%2BQ5CFP82qOXktjDK5PCtiBBQVPlxTbhV9BEBKRZsk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static-3.bitchute.com/live/cover_images/zzu2EIiIQMTZ/fylHh64W-i8_640x360.jpg
200 OK 13 kB URL HTTP/2 static-3.bitchute.com/live/cover_images/zzu2EIiIQMTZ/fylHh64W-i8_640x360.jpg
IP
ASN #60068 Datacamp Limited
Hash 08186785a47d6926efd1b1cf8e10faec
eb9b5fa700650015c02f672c526fb2342d300378
daaaea24b3ec7d95920c83b931b3617c858ea068fda66d00c3928b902c1f66a5
GET /live/cover_images/zzu2EIiIQMTZ/fylHh64W-i8_640x360.jpg HTTP/1.1
Host: static-3.bitchute.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bitchute.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:22 GMT
content-type: image/jpeg
content-length: 47903
server: BunnyCDN-DE1-722
cdn-pullzone: 89010
cdn-uid: cd868a83-1d51-4455-8c6e-f6ed9fcd8eef
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Wed, 26 Aug 2020 18:30:06 GMT
x-rgw-object-type: Normal
x-amz-request-id: tx00000000000002f283873-00637e38a8-21d29c43-nyc3a
strict-transport-security: max-age=15552000; includeSubDomains; preload
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 11/23/2022 15:13:44
cdn-edgestorageid: 1054
cdn-status: 200
cdn-requestid: 83f9b0e61dfd2b25ac6bfa07f19fde29
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
joshwho-cdn.com/plugin/VideoThumbnails/videojs.thumbnails.css?cache=1657313030_1658159118
200 OK 200 B URL HTTP/2 joshwho-cdn.com/plugin/VideoThumbnails/videojs.thumbnails.css?cache=1657313030_1658159118
IP
File type ASCII text, with very long lines (579), with no line terminators
Hash 3f88325b7979a32858c729f562ade654
62faf3db26f07fe049928c384704fc118723a8a7
894570816de4b297ea0f60766e132a8ecdc408606860b459ee6ec4a12926ef9f
Analyzer Verdict Alert fortinet Phishing
GET /plugin/VideoThumbnails/videojs.thumbnails.css?cache=1657313030_1658159118 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
cf-ray: 76f34e4508a276db-LHR
access-control-allow-origin: *
age: 139192
cache-control: public, max-age=604800
etag: W/"3ca-5e351426f4d80-gzip"
expires: Sat, 26 Nov 2022 10:07:17 GMT
last-modified: Fri, 08 Jul 2022 20:43:50 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=970
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t30mtrPWcP1wyWrTDJczdPTR28IrsxzRtZpOS61a6ctqSRDfAlqNLFUrtWO0GZDLXzuChAYnj6RHi3IkAj7ZytjutwPESIXRyacWqplAEmR%2B%2BzMjEu3cR9clLLVJKjG3ZAs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 38 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 76db01bd80cffb73aea3d20560b9f64a
2ba8629b0fb4973bae012db99da3144d93eea329
98d43fc29c5fe8de8512b2cc61b4a36704b0c29233bb1e329e088418fda03344
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 24 Nov 2022 15:51:24 GMT
server: ESF
cache-control: private
content-length: 38170
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
joshwho-cdn.com/view/css/custom/readable.css?cache=1653595203_1658159118
200 OK 23 kB URL HTTP/2 joshwho-cdn.com/view/css/custom/readable.css?cache=1653595203_1658159118
IP
File type ASCII text, with very long lines (65252)
Hash 583d7b3d85222a66a39735cee3b538bd
ae7ff21d4b278acac18297d3fa84b944293bedc2
3c7619461764c0de34c475e61350caa7014d3645cc27e54081e4316a09328502
GET /view/css/custom/readable.css?cache=1653595203_1658159118 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
cf-ray: 76f34e44e85676db-LHR
access-control-allow-origin: *
age: 582944
cache-control: public, max-age=604800
etag: W/"1e996-5dfefa2ba1d38-gzip"
expires: Sat, 19 Nov 2022 10:31:07 GMT
last-modified: Thu, 26 May 2022 20:00:03 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=125334
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ju6TVkD7b9Snv0JVBEU9bbznygDH6Dp8PTGx9fH4w4JdUVGiaeU3OuRA9GVCekbAMVjBI0gQzNgTyg0TbtJ4YFfw28Wyirl1GdJyTRYOunvdoNanh%2BlYumZ0uA0VaYH8ms4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/node_modules/jquery/dist/jquery.min.js?cache=1661962463_1661962463
200 OK 36 kB URL HTTP/2 joshwho-cdn.com/node_modules/jquery/dist/jquery.min.js?cache=1661962463_1661962463
IP
File type ASCII text, with very long lines (65447)
Hash 23b28aa40f73720544709f70c681deb7
2826d6f4dea21744a4198896be5a0023fe5be83e
f10d0c42595b44d4d9ab22584f27d16d27370b0809e39d095fe04491ce150c95
Analyzer Verdict Alert fortinet Phishing
GET /node_modules/jquery/dist/jquery.min.js?cache=1661962463_1661962463 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: application/javascript
cf-ray: 76f34e4528e076db-LHR
access-control-allow-origin: *
cache-control: max-age=216000, private
etag: W/"15e40-5e78bca47e43f-gzip"
expires: Thu, 24 Nov 2022 15:51:24 GMT
last-modified: Wed, 31 Aug 2022 16:14:23 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: BYPASS
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eyaoY4jyRdi7cJlvIqVBagOjjsjWamugM%2BgM3HRbnCX7qNznMAhXf9fWhAzE9EVIw14Kbgekg8dXnNS2yxNFMMT4uoFGagv3eY0c%2Bs1gwoTdaERdUy8z0I7%2F2TRE9sZCtD4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/node_modules/videojs-ima/dist/videojs.ima.css?cache=1653393648_1658159118
200 OK 32 kB URL HTTP/2 joshwho-cdn.com/node_modules/videojs-ima/dist/videojs.ima.css?cache=1653393648_1658159118
IP
File type ASCII text, with very long lines (2421), with no line terminators
Hash 56f2bfc595aef3c8a0ad5e41b4529a67
37ed65dd63f0b78cf9b2c993679ac7386b7a742b
68bdbc223c17ec728d0ced2d1b3faaf58598d5d8291033d165e6056df5e9776f
Analyzer Verdict Alert fortinet Phishing
GET /node_modules/videojs-ima/dist/videojs.ima.css?cache=1653393648_1658159118 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
cf-ray: 76f34e4508ab76db-LHR
access-control-allow-origin: *
age: 450547
cache-control: public, max-age=604800
etag: W/"eda-5dfc0b510dc42-gzip"
expires: Sat, 26 Nov 2022 10:42:16 GMT
last-modified: Tue, 24 May 2022 12:00:48 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=3802
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uCmhP5EKedh0zMwR72xsBCfJATOei4UXSkYXb6iFDbBD26obpACX8V%2F817ZJA4cHeGJ3bmHKY%2BMbLQlgpUtFpYpTl41KSboUoWPwIgirkjOCdIwLmVWvLk38vMTApHPYqR8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/EWg-zhOv62k
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/EWg-zhOv62k
IP
Hash f4083c1722726f5ea835e93421ef5fad
6d1a28c066d6f017ca18b8b17abc00e3a28cc2b4
524d8caac816b3edb41a0662bf4185b3f28df8528e6d17a9156e4e63671561c6
POST /s/gts1p5/EWg-zhOv62k HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:51:24 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
joshwho-cdn.com/plugin/VideoResolutionSwitcher/videojs-resolution-switcher.css?cache=1658467024_1658526784
200 OK 4.3 kB URL HTTP/2 joshwho-cdn.com/plugin/VideoResolutionSwitcher/videojs-resolution-switcher.css?cache=1658467024_1658526784
IP
File type ASCII text, with very long lines (611), with no line terminators
Hash dba5e1fa907485841c3f05871df9ae1e
877e7c48e629321dbc7d78879ca71eadcdf5938d
4852ba97f7ecb5de1b3a41ac57ed80110519522effb7ab5c749cb164fc89a315
Analyzer Verdict Alert fortinet Phishing
GET /plugin/VideoResolutionSwitcher/videojs-resolution-switcher.css?cache=1658467024_1658526784 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
cf-ray: 76f34e4508af76db-LHR
access-control-allow-origin: *
age: 450547
cache-control: public, max-age=604800
etag: W/"322-5e45df1d65400-gzip"
expires: Sat, 26 Nov 2022 09:11:36 GMT
last-modified: Fri, 22 Jul 2022 05:17:04 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=802
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M06se%2FGvgTsgxNBEG7wNs5FU9tGc9jzVM67XeHwVru8pGr98baSF0UYJBLXYK8CsAWwPilArguOt8ihtdMD%2BK3GzQD6mxAoV%2BPwj5ooNsmwksk7G0gyJBIeNN33Ult7E%2Fw8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/plugin/SubtitleSwitcher/style.css
200 OK 2.9 kB URL HTTP/2 joshwho-cdn.com/plugin/SubtitleSwitcher/style.css
IP
File type ASCII text, with no line terminators
Hash 3495697405b8b88600572f5544baa486
01a012eee3dfd3262b220a119359e493301c7cb5
c75567bedb0590ab112352d8a8de862754a22774d08c44e4ac54d5f9d2439423
GET /plugin/SubtitleSwitcher/style.css HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
cf-ray: 76f34e4508b076db-LHR
access-control-allow-origin: *
age: 461053
cache-control: public, max-age=604800
etag: W/"72-5d8c682416000-gzip"
expires: Sat, 19 Nov 2022 10:03:59 GMT
last-modified: Thu, 24 Feb 2022 16:59:44 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=114
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=888KPjQ8kSKSvDDNH6qlICezysS0gQkf637BS%2FLFixtnqsKxCiGDcZ8KugIc26ZvEEN22UJY6W8A5ldrrpF1hvlMelchp%2FnCXN9txM3I4foSgBdpdHKLWe2wp%2FvEd7%2B0tRs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.plyr.io/3.6.9/plyr.svg
200 OK 2.4 kB URL HTTP/2 cdn.plyr.io/3.6.9/plyr.svg
IP
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with very long lines (5785), with no line terminators
Hash 0f4432903848c7cfab6cd3f762611867
d579bd4bf28647621092914a20458aa85c4b8c93
390f0bbf16404899f8f7cebe46e1f412e975bb4e6ce5394d8a025ad09165b5e9
GET /3.6.9/plyr.svg HTTP/1.1
Host: cdn.plyr.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:24 GMT
content-type: image/svg+xml
x-amz-id-2: mjzO5C1RJ0O1Q2HsfR2udPrPByk6PQjTyVT1iab8JiZOFyeMZiA9JVQSxLNcJHJF3R1cM9uKWOM=
x-amz-request-id: EEP40VQ9NRS5HYSV
last-modified: Wed, 13 Oct 2021 10:46:58 GMT
etag: W/"3a727a9b7eef825081d78cc6e48aaadf"
cache-control: max-age=31536000, immutable
via: 1.1 varnish, 1.1 varnish
x-served-by: cache-iad-kcgs7200067-IAD, cache-yyz4548-YYZ
x-cache: MISS, HIT
x-cache-hits: 0, 2454
x-timer: S1668207015.312781,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Range, Date, Cache-Control, Content-Type, Accept, Origin, Accept
cf-cache-status: HIT
age: 685989
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gnk8eCPDkuJCLqJPNl3Wf%2BijO6elbygHtQQagwoSG53lUHfVzbDEM4IW6%2Boc%2Ff4mz9chZshkSHmmxdBeLtuzMB2LbFhCqp5Nls64qlbSjAeLU4boV0dhK7HVUe8%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f34e4a682ab4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/view/js/swRegister.js?cache=1663965337_1663965337
200 OK 31 kB URL HTTP/2 joshwho-cdn.com/view/js/swRegister.js?cache=1663965337_1663965337
IP
Hash 03fd9794e66856d06f7db42c50f94e3e
6a60abbc61e07c00eba8eaa5319efdbfb75bc8dc
3a1f5145d0c13f2b1371e3d834f912fead2968e9f753de16a34ffdf9d4137a74
Analyzer Verdict Alert fortinet Phishing
GET /view/js/swRegister.js?cache=1663965337_1663965337 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:25 GMT
content-type: application/javascript
cf-ray: 76f34e45593176db-LHR
access-control-allow-origin: *
cache-control: max-age=216000, private
etag: W/"494-5e95e1edac669-gzip"
expires: Thu, 24 Nov 2022 15:51:26 GMT
last-modified: Fri, 23 Sep 2022 20:35:37 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: BYPASS
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YAfGbhbaursinHnQ1g4AroYHIN4OQyV9nXfCn%2BZb%2BIdUzQpez5alldVCiHbRun91I6Hmvlt4JFtU3KBWb0yyBqx7eaEXzmOWsWiH04yKwBIXeSXCpROtMKm%2Fr42JiZnWr%2BM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 8a54542545bdaabffc588ffae479d340
4d5a75b94d47103b1c2504f61351e6295e6d84b1
fc8c194261363d64be849c1d6b072163fbb5ae6eabf99f03ed3131d1778a4c0f
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 24 Nov 2022 15:51:26 GMT
server: ESF
cache-control: private
content-length: 31104
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
redirector.googlevideo.com/initplayback?source=youtube&oeis=1&ip=91.90.42.154&c=WEB_EMBEDDED_PLAYER&oad=3200&ovd=3200&oaad=3200&oavd=3200&ocs=700&oewis=1&oputc=1&ofpcc=1&msp=1&odeak=1&odepv=1&osfc=1&alr=yes&id=79116
200 OK 241 B URL HTTP/2 redirector.googlevideo.com/initplayback?source=youtube&oeis=1&ip=91.90.42.154&c=WEB_EMBEDDED_PLAYER&oad=3200&ovd=3200&oaad=3200&oavd=3200&ocs=700&oewis=1&oputc=1&ofpcc=1&msp=1&odeak=1&odepv=1&osfc=1&alr=yes&id=79116
IP
File type ASCII text, with very long lines (312), with no line terminators
Hash 41cfbd863ae13bf427c967ac9a3a5ac0
42018dc2c7c57c40876bca3b52f839491bb2a66c
b57016a9b84462bc7f145c1affa8463684943f426e916db3da0af271c66cfb73
GET /initplayback?source=youtube&oeis=1&ip=91.90.42.154&c=WEB_EMBEDDED_PLAYER&oad=3200&ovd=3200&oaad=3200&oavd=3200&ocs=700&oewis=1&oputc=1&ofpcc=1&msp=1&odeak=1&odepv=1&osfc=1&alr=yes&id=79116 HTTP/1.1
Host: redirector.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
content-type: text/plain; charset=UTF-8
content-encoding: gzip
server: ClientMapServer
content-length: 241
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
joshwho-cdn.com/node_modules/videojs-contrib-ads/dist/videojs.ads.min.js?cache=1653393648_1658159118
200 OK 12 kB URL HTTP/2 joshwho-cdn.com/node_modules/videojs-contrib-ads/dist/videojs.ads.min.js?cache=1653393648_1658159118
IP
File type ASCII text, with very long lines (28214)
Hash 8bb1b98437861897923327b0e156a383
8ab3860ee854bc904cdbc64d7b0824aa495b18b6
f85df226ec9c55b2458e79b420b25b91ae9f594ba3fbca92d0601abac01f6ae1
Analyzer Verdict Alert fortinet Phishing
GET /node_modules/videojs-contrib-ads/dist/videojs.ads.min.js?cache=1653393648_1658159118 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:25 GMT
content-type: application/javascript
cf-ray: 76f34e4508be76db-LHR
access-control-allow-origin: *
cache-control: max-age=216000, private
etag: W/"6e7b-5dfc0b510ad62-gzip"
expires: Thu, 24 Nov 2022 15:51:26 GMT
last-modified: Tue, 24 May 2022 12:00:48 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: BYPASS
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fj5H8n3J3tyKZmUzc6LhrkgzndiSUrNDf5YphLyG%2BmFEKH2FIWAgbfxh5q7uFyh3MCi%2Fq4djdyvE6aGbv%2BjpoyfbgFu%2BvGnp8DjCFX7X4OEMJUbongr0ylEvFdiiTZAkITY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F707b8d34-3bd2-4793-9e17-c60d0b285f84.jpeg
200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F707b8d34-3bd2-4793-9e17-c60d0b285f84.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dc118bae963b381ce5450890130ecf15
9355a16a81b11e024dd2c5c0024aba1121fff925
cb5bc2cc49e05c133434eeb725690b3e32a0d3c6b75074582f941eee3bf7e1c1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F707b8d34-3bd2-4793-9e17-c60d0b285f84.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9828
x-amzn-requestid: bf2f8429-416d-40d4-a237-7593ee26c27a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEv0KHywIAMFvtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e934d-349e1dcc595b1be906a83577;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bQcpPUgu6eN6PQeLMGWwBlf01iHj77_aXHjKmh8SH7HsWlUX6kipDg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:23 GMT
age: 64443
etag: "9355a16a81b11e024dd2c5c0024aba1121fff925"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
joshwho-cdn.com/plugin/Gallery/style.css?1667020093
200 OK 1.1 kB URL HTTP/2 joshwho-cdn.com/plugin/Gallery/style.css?1667020093
IP
File type ASCII text, with very long lines (3327), with no line terminators
Hash c1b3f0b4372105f79dd80b8d2bccfeda
0cc490270e04665ad5bdf48859c009f4555c079c
911b57546c8599d819a8792665697dc6bc3e16d1e73ad7f588da5e1993d05fe8
Analyzer Verdict Alert fortinet Phishing
GET /plugin/Gallery/style.css?1667020093 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
cf-ray: 76f34e4508a076db-LHR
access-control-allow-origin: *
age: 303245
cache-control: public, max-age=604800
etag: W/"10d9-5ec255c830c29-gzip"
expires: Sat, 26 Nov 2022 05:11:53 GMT
last-modified: Sat, 29 Oct 2022 05:08:13 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=4313
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U663p%2B%2BoCNyN3H5dzzcE7X5oA%2BNclUJZMgVZ9RchDuZR4WgyGn%2BjAJF%2FQPN4gFA5NSK1LdJDRUL6hFo4ZR7vV%2FYnQuues%2FXV9naO38lcaVE9ks3jkbyyJ%2BbfGhvBEYSeB9U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/node_modules/video.js/dist/video.min.js?cache=1663965337_1663965337
200 OK 167 kB URL HTTP/2 joshwho-cdn.com/node_modules/video.js/dist/video.min.js?cache=1663965337_1663965337
IP
File type Unicode text, UTF-8 text, with very long lines (48447)
Size 167 kB (167331 bytes)
Hash 7ce8e32b3e1741204dc088e6cf870bb3
5be35184b6c96e2bda9be9c74d09aba5827c83f2
102410bbbcd320878f97e637c84dc36716f5516d9ec3ac55c18a4990372e9e91
Analyzer Verdict Alert fortinet Phishing
GET /node_modules/video.js/dist/video.min.js?cache=1663965337_1663965337 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:25 GMT
content-type: application/javascript
cf-ray: 76f34e4508bd76db-LHR
access-control-allow-origin: *
cache-control: max-age=216000, private
etag: W/"8e83f-5e95e1eda9788-gzip"
expires: Thu, 24 Nov 2022 15:51:26 GMT
last-modified: Fri, 23 Sep 2022 20:35:37 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: BYPASS
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XeFy1ZUPVYAsB4COUtcuwBmQRtmL88sy6L%2BED3S4t6UnYCeCvBS0f0X912hEWTtPx9LJ0tNxzp361GPEs0bJru6N8D8WQaNo%2BZb4RvC0BGm7%2BJem%2Bu1y9pdOj5YOWqYzKTg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/view/bootstrap/jquery-bootstrap-scrolling-tabs/jquery.scrolling-tabs.min.css?cache=1633467109_1658159118
200 OK 0 B URL HTTP/2 joshwho-cdn.com/view/bootstrap/jquery-bootstrap-scrolling-tabs/jquery.scrolling-tabs.min.css?cache=1633467109_1658159118
IP
GET /view/bootstrap/jquery-bootstrap-scrolling-tabs/jquery.scrolling-tabs.min.css?cache=1633467109_1658159118 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
cf-ray: 76f34e44e84f76db-LHR
access-control-allow-origin: *
age: 450547
cache-control: public, max-age=604800
etag: W/"5c1-5cda132d4dcbc-gzip"
expires: Sat, 26 Nov 2022 10:07:17 GMT
last-modified: Tue, 05 Oct 2021 20:51:49 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wcFzHAR1LOM1QQbW042PXlqJ8kVmCjmMrvhlJSACeDHeDaTGujRmgx7IcuUOKm9Z%2Ba6c0sBDj%2FQ%2BkXfFGMfcmerDtiEXiG%2B6XJK%2FnV39uzBjUUePU6SHZoqs6tBYU3oJyRI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/view/bootstrap/css/bootstrap.min.css?cache=1633467109_1658159118
200 OK 0 B URL HTTP/2 joshwho-cdn.com/view/bootstrap/css/bootstrap.min.css?cache=1633467109_1658159118
IP
Analyzer Verdict Alert fortinet Phishing
GET /view/bootstrap/css/bootstrap.min.css?cache=1633467109_1658159118 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
cf-ray: 76f34e44e85376db-LHR
access-control-allow-origin: *
age: 450547
cache-control: public, max-age=604800
etag: W/"1da76-5cda132d4cd1c-gzip"
expires: Sat, 26 Nov 2022 09:21:22 GMT
last-modified: Tue, 05 Oct 2021 20:51:49 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F%2BuC0HtfLgV5IDbsBWT6JA0JqEPRrR0NnRFD6HxzAlWlBZ5bHiXro7ZJD4gt9V8%2BqOct0UPK2RzYvu0QIKIxaqR54a7LwGr1VxK1iDueaWNmYiuYoy0vSJ6n5cLzwIUTohk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/plugin/SeekButton/seek.css?cache=1647555433_1658159118
200 OK 0 B URL HTTP/2 joshwho-cdn.com/plugin/SeekButton/seek.css?cache=1647555433_1658159118
IP
Analyzer Verdict Alert fortinet Phishing
GET /plugin/SeekButton/seek.css?cache=1647555433_1658159118 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
cf-ray: 76f34e4508a976db-LHR
access-control-allow-origin: *
age: 58043
cache-control: public, max-age=604800
etag: W/"31b-5da7164584fec-gzip"
expires: Sat, 26 Nov 2022 13:07:21 GMT
last-modified: Thu, 17 Mar 2022 22:17:13 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=795
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GttK6w95gogZwa2LvyjjcoWwzVWOlv7wKGlyspfYdQcexFaFaF1ipBC0maUJp0emPbpFH4Z9zlT82cpICpuyriej949Amxzgy7gl5F0eny9nrlbJcju5deE3Wo1zPc8iIjE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/plugin/PlayerSkins/loopbutton.css?cache=1591070801_1658159118
200 OK 0 B URL HTTP/2 joshwho-cdn.com/plugin/PlayerSkins/loopbutton.css?cache=1591070801_1658159118
IP
Analyzer Verdict Alert fortinet Phishing
GET /plugin/PlayerSkins/loopbutton.css?cache=1591070801_1658159118 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
cf-ray: 76f34e4508b676db-LHR
access-control-allow-origin: *
age: 100300
cache-control: public, max-age=604800
etag: W/"155-5a71209ec54bf-gzip"
expires: Sat, 26 Nov 2022 10:07:18 GMT
last-modified: Tue, 02 Jun 2020 04:06:41 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=341
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uryeESwycTf2zo980UP5WOOQi2e6dqAjiMWhAnoJDpUgnT67TlDuAOUQRtu56L7sEwh%2BnnpaLHorl6dv8ntwUe1yaSkNTy3aVy%2B2wSb1%2BhZ1B8pu2iEP%2B0yId6weoZjMoWw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/plugin/UserNotifications/script.js?cache=1662152600_1662152600
200 OK 0 B URL HTTP/2 joshwho-cdn.com/plugin/UserNotifications/script.js?cache=1662152600_1662152600
IP
GET /plugin/UserNotifications/script.js?cache=1662152600_1662152600 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: application/javascript
cf-ray: 76f34e4518c876db-LHR
access-control-allow-origin: *
cache-control: max-age=216000, private
etag: W/"2ad8-5e7b80f576121-gzip"
expires: Thu, 24 Nov 2022 15:51:24 GMT
last-modified: Fri, 02 Sep 2022 21:03:20 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: BYPASS
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dsEe0fTd7znymtSGBpWPHWR13lIOm8Vqi2oT0SzAr4h63G6EtqPbQjaJEypB%2FF%2BMjpnXnvLwK6ektfjggZoPYdW6aLSaz15GO3Lk%2BbYTQsACs%2B3Xg48OjnnaxakAqA8CgcQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/plugin/Gallery/script.js?cache=1647555433_1658159118
200 OK 0 B URL HTTP/2 joshwho-cdn.com/plugin/Gallery/script.js?cache=1647555433_1658159118
IP
Analyzer Verdict Alert fortinet Phishing
GET /plugin/Gallery/script.js?cache=1647555433_1658159118 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: application/javascript
cf-ray: 76f34e4518c976db-LHR
access-control-allow-origin: *
cache-control: max-age=216000, private
etag: W/"273-5da716457752c-gzip"
expires: Thu, 24 Nov 2022 15:51:24 GMT
last-modified: Thu, 17 Mar 2022 22:17:13 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: BYPASS
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=27uEL%2BgFI7%2FUZ5%2BqFowp%2BD%2BVqtouCjGjWGPPWo%2BxjoRKv1ZziXtGzuabILpIzAVZysTxuO0u7go8q2Q0CoKhdgFwhmWG9Z47%2BJU5%2F09d7DCNFz%2BGQBIgsnhFISDcTITeDCE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/plugin/PlayerSkins/autoplayButton.css?cache=1621870906_1658159118
200 OK 0 B URL HTTP/2 joshwho-cdn.com/plugin/PlayerSkins/autoplayButton.css?cache=1621870906_1658159118
IP
GET /plugin/PlayerSkins/autoplayButton.css?cache=1621870906_1658159118 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
cf-ray: 76f34e4508bc76db-LHR
access-control-allow-origin: *
age: 62368
cache-control: public, max-age=604800
etag: W/"164-5c3153f4235a4-gzip"
expires: Sat, 26 Nov 2022 09:11:36 GMT
last-modified: Mon, 24 May 2021 15:41:46 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=356
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JLxaQbnfTM%2BlX2s3BliX2P5d%2F6dM9d%2BWbgl6nd2ysvt6wlI6E9pUo43H2BfAjnKjOGdnm81KVDbWl701%2FnlkMP1oO635Rldu%2FfjqmevKEOlF6YeTD0%2B%2BciPxuR%2FhtEkoRis%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/node_modules/@silvermine/videojs-chromecast/dist/silvermine-videojs-chromecast.min.js?cache=1661962463_1661962463
200 OK 0 B URL HTTP/2 joshwho-cdn.com/node_modules/@silvermine/videojs-chromecast/dist/silvermine-videojs-chromecast.min.js?cache=1661962463_1661962463
IP
GET /node_modules/@silvermine/videojs-chromecast/dist/silvermine-videojs-chromecast.min.js?cache=1661962463_1661962463 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: application/javascript
cf-ray: 76f34e4518c476db-LHR
access-control-allow-origin: *
cache-control: max-age=216000, private
etag: W/"2f2f7-5e78bca469c1f-gzip"
expires: Thu, 24 Nov 2022 15:51:24 GMT
last-modified: Wed, 31 Aug 2022 16:14:23 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: BYPASS
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uHfDDNUFcdD5ZOy67H8I1jQ9aNW2XGxGE4yJJCMFEE7avowvHUgRO7%2BJZqqgG21ee0Um6m9iZD%2FrT%2F%2BeSC4pzRmgbxMopcP0M4WDIH3UP7itIY%2FslSYq0kgQhjljRwpEjmI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100i%2C200i%2C300i%2C400i%2C500i%2C600i%2C700i%2C800i%2C900i|Roboto%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100i%2C200i%2C300i%2C400i%2C500i%2C600i%2C700i%2C800i%2C900i%26subset%3Dlatin
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100i%2C200i%2C300i%2C400i%2C500i%2C600i%2C700i%2C800i%2C900i|Roboto%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100i%2C200i%2C300i%2C400i%2C500i%2C600i%2C700i%2C800i%2C900i%26subset%3Dlatin
IP
GET /css?family=Open+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100i%2C200i%2C300i%2C400i%2C500i%2C600i%2C700i%2C800i%2C900i|Roboto%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100i%2C200i%2C300i%2C400i%2C500i%2C600i%2C700i%2C800i%2C900i%26subset%3Dlatin HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dbursted.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 24 Nov 2022 15:51:19 GMT
date: Thu, 24 Nov 2022 15:51:19 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/LONDY_fdVmQ?feature=oembed
200 OK 0 B URL HTTP/2 www.youtube.com/embed/LONDY_fdVmQ?feature=oembed
IP
GET /embed/LONDY_fdVmQ?feature=oembed HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dbursted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 24 Nov 2022 15:51:19 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=ytgbaeggiJs; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=941yTxuEOIE; Domain=.youtube.com; Expires=Tue, 23-May-2023 15:51:19 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+075; expires=Sat, 23-Nov-2024 15:51:19 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
joshwho-cdn.com/plugin/SubtitleSwitcher/onOffButton.js
200 OK 0 B URL HTTP/2 joshwho-cdn.com/plugin/SubtitleSwitcher/onOffButton.js
IP
Analyzer Verdict Alert fortinet Phishing
GET /plugin/SubtitleSwitcher/onOffButton.js HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: application/javascript
cf-ray: 76f34e4508b476db-LHR
access-control-allow-origin: *
cache-control: max-age=216000, private
etag: W/"eb3-5d8c682416000-gzip"
expires: Thu, 24 Nov 2022 15:51:24 GMT
last-modified: Thu, 24 Feb 2022 16:59:44 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: BYPASS
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4CCvxnXTRFBEr6YDera%2BHaRcinSM0i70NKjIsdHyB0bpu4zXJNRgrGTUBInVl5p5fIb86ZZMgdKLNQ1fIeb6INL9p3%2FwgBMi%2F%2Fznqdvo6gAB7LpJQyUVGAzE67iW0fQp9FQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/node_modules/jquery-ui-dist/jquery-ui.min.js?cache=1661376305_1661376305
200 OK 0 B URL HTTP/2 joshwho-cdn.com/node_modules/jquery-ui-dist/jquery-ui.min.js?cache=1661376305_1661376305
IP
Analyzer Verdict Alert fortinet Phishing
GET /node_modules/jquery-ui-dist/jquery-ui.min.js?cache=1661376305_1661376305 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: application/javascript
cf-ray: 76f34e4518da76db-LHR
access-control-allow-origin: *
cache-control: max-age=216000, private
etag: W/"3e46c-5e703508c2499-gzip"
expires: Thu, 24 Nov 2022 15:51:24 GMT
last-modified: Wed, 24 Aug 2022 21:25:05 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: BYPASS
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Uv%2FRH6DHV0Ma8LCF%2BKqt%2BnRdFanqa2n73qGk4yXc%2FZh9gAcQNFz5Oebn0MK1dSPGrajJ29vEakP5T9XmSxJOkWG17FNTDLoqD%2FNH%2BAF7bp6Y7M3%2FrR3Vr%2Fn9iHQETazpohQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.youtube.com/embed/l0z6986fNcE?feature=oembed
200 OK 0 B URL HTTP/2 www.youtube.com/embed/l0z6986fNcE?feature=oembed
IP
GET /embed/l0z6986fNcE?feature=oembed HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dbursted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 24 Nov 2022 15:51:19 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=sTww4y18ahg; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=m7zn1kBINjg; Domain=.youtube.com; Expires=Tue, 23-May-2023 15:51:19 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+572; expires=Sat, 23-Nov-2024 15:51:19 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
joshwho-cdn.com/view/css/social.css?cache=1635402917_1658159118
200 OK 0 B URL HTTP/2 joshwho-cdn.com/view/css/social.css?cache=1635402917_1658159118
IP
GET /view/css/social.css?cache=1635402917_1658159118 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
cf-ray: 76f34e4518d576db-LHR
access-control-allow-origin: *
age: 24703
cache-control: public, max-age=604800
etag: W/"b1c-5cf63e9f22bca-gzip"
expires: Sat, 26 Nov 2022 10:07:19 GMT
last-modified: Thu, 28 Oct 2021 06:35:17 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=2844
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2ERpfKI5XToZ5SpxYAZhyYeYsi63cO8U3LYywiSw8gm82gMpQUZ%2BeSJnNksEYsiNEgmIpZo3uQVkpZ26vUYy6AeqivaDVt8gln3UFjHxADcGheTJr0FF5ryQPXDIKCaYcmY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/plugin/PlayerSkins/player.js?cache=1614557954_1658159118
200 OK 0 B URL HTTP/2 joshwho-cdn.com/plugin/PlayerSkins/player.js?cache=1614557954_1658159118
IP
GET /plugin/PlayerSkins/player.js?cache=1614557954_1658159118 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: application/javascript
cf-ray: 76f34e4508ba76db-LHR
access-control-allow-origin: *
cache-control: max-age=216000, private
etag: W/"462-5bc6e915c69a0-gzip"
expires: Thu, 24 Nov 2022 15:51:24 GMT
last-modified: Mon, 01 Mar 2021 00:19:14 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: BYPASS
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vcyePgNFAe9cj0rfdIz9FO7n%2B7VuG%2BCu6IbcPWUERp4yQ9OC5xC5GH5Xe2eE0fq5YvuJ5sNzXkCciQrjWlmlGQCW4%2F7uI53AdZ8nmsv4eLzO9oQ6g%2FumrbYULvH1rWuy6T8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.youtube.com/embed/LBcJjyQQQ2E?feature=oembed
200 OK 0 B URL HTTP/2 www.youtube.com/embed/LBcJjyQQQ2E?feature=oembed
IP
GET /embed/LBcJjyQQQ2E?feature=oembed HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dbursted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 24 Nov 2022 15:51:19 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=NoNiDSnC6R4; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=HIswJflgyzw; Domain=.youtube.com; Expires=Tue, 23-May-2023 15:51:19 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+090; expires=Sat, 23-Nov-2024 15:51:19 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
open.spotify.com/embed/show/0tGdLvORO58FQepYtzzUpi?si=970f858e4d62496a&utm_source=oembed
200 OK 0 B URL HTTP/2 open.spotify.com/embed/show/0tGdLvORO58FQepYtzzUpi?si=970f858e4d62496a&utm_source=oembed
IP
GET /embed/show/0tGdLvORO58FQepYtzzUpi?si=970f858e4d62496a&utm_source=oembed HTTP/1.1
Host: open.spotify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dbursted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:20 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding,Accept-Encoding
set-cookie: sp_t=61d25d0f85a733f4b109aff9d957ce88; path=/; expires=Fri, 24 Nov 2023 15:51:19 GMT; domain=.spotify.com; samesite=none; secure
sp_landing=https%3A%2F%2Fopen.spotify.com%2Fembed%2Fshow%2F0tGdLvORO58FQepYtzzUpi%3Fsp_cid%3D61d25d0f85a733f4b109aff9d957ce88%26device%3Ddesktop%26utm_source%3Doembed%26si%3D970f858e4d62496a; path=/; expires=Fri, 25 Nov 2022 15:51:19 GMT; domain=.spotify.com; samesite=none; secure; httponly
content-encoding: gzip
sp-trace-id: e0adf51e59210adb
x-envoy-upstream-service-time: 337
server: envoy
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
via: HTTP/2 edgeproxy, 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.bitchute.com/embed/osPieJAZHY10/?feature=oembed
200 OK 0 B URL HTTP/2 www.bitchute.com/embed/osPieJAZHY10/?feature=oembed
IP
GET /embed/osPieJAZHY10/?feature=oembed HTTP/1.1
Host: www.bitchute.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dbursted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:20 GMT
content-type: text/html; charset=utf-8
vary: Cookie,Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vgkRTFFpgW6uVibgZQ9e7ct6u4E7QiNoc9%2BqiT8nRZjPS5rQWuJD0GTF15%2BQgwgxg5Clm%2B6X40MUDMRUuYwKv8X2p6Ks%2BkdEUvJBiBlUbNBzbqGvvIThq%2F6qj9Oj2OUJpN4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f34e2cf9f8b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
joshwho-cdn.com/plugin/AD_Overlay/videojs-overlay/videojs-overlay.css
200 OK 0 B URL HTTP/2 joshwho-cdn.com/plugin/AD_Overlay/videojs-overlay/videojs-overlay.css
IP
GET /plugin/AD_Overlay/videojs-overlay/videojs-overlay.css HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
cf-ray: 76f34e4508ac76db-LHR
access-control-allow-origin: *
age: 450547
cache-control: public, max-age=604800
etag: W/"3e2-5da71645736ac-gzip"
expires: Sat, 26 Nov 2022 10:27:51 GMT
last-modified: Thu, 17 Mar 2022 22:17:13 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=994
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uSrc6P%2BglCo2qAGu4%2FyiNpa42L1u0P%2FhCSzkFCd8jF6WBUYUAHfMa%2B8wTctOFmnwc8lve6nD%2B682UPeV9%2BEx1I429I6jB7fSC1X5fojqnTm%2B9qgkmrhAxcZa4c3tUSmUIMk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/plugin/YPTSocket/script.js?cache=1658880818_1658880818
200 OK 0 B URL HTTP/2 joshwho-cdn.com/plugin/YPTSocket/script.js?cache=1658880818_1658880818
IP
Analyzer Verdict Alert fortinet Phishing
GET /plugin/YPTSocket/script.js?cache=1658880818_1658880818 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: application/javascript
cf-ray: 76f34e4518c776db-LHR
access-control-allow-origin: *
cache-control: max-age=216000, private
etag: W/"370a-5e4be49e98fdd-gzip"
expires: Thu, 24 Nov 2022 15:51:24 GMT
last-modified: Wed, 27 Jul 2022 00:13:38 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: BYPASS
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jkgqyi4zOtswaPtfxf4VFyv0AWMEDHYB5N%2F3KEEzLU7l%2BsnEZkhmWeYS7fuR6IESlK0pv%2F7%2B6RB9OHhxSmmEPe3vlE0Duef7%2FLZsNK4NNs0dsFJetIgKENeACIyVKuumJwM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
open.spotify.com/embed/episode/2WKYdPVjIiXQzReeLfqB21?si=f2uRs4ZRS0aHaXVsygwVVQ&utm_source=oembed
200 OK 0 B URL HTTP/2 open.spotify.com/embed/episode/2WKYdPVjIiXQzReeLfqB21?si=f2uRs4ZRS0aHaXVsygwVVQ&utm_source=oembed
IP
GET /embed/episode/2WKYdPVjIiXQzReeLfqB21?si=f2uRs4ZRS0aHaXVsygwVVQ&utm_source=oembed HTTP/1.1
Host: open.spotify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dbursted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:20 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding,Accept-Encoding
set-cookie: sp_t=837a20d7e3ac3daeba88f1df837092f7; path=/; expires=Fri, 24 Nov 2023 15:51:19 GMT; domain=.spotify.com; samesite=none; secure
sp_landing=https%3A%2F%2Fopen.spotify.com%2Fembed%2Fepisode%2F2WKYdPVjIiXQzReeLfqB21%3Fsp_cid%3D837a20d7e3ac3daeba88f1df837092f7%26device%3Ddesktop%26utm_source%3Doembed%26si%3Df2uRs4ZRS0aHaXVsygwVVQ; path=/; expires=Fri, 25 Nov 2022 15:51:19 GMT; domain=.spotify.com; samesite=none; secure; httponly
content-encoding: gzip
sp-trace-id: 59763e983a997903
x-envoy-upstream-service-time: 70
server: envoy
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
via: HTTP/2 edgeproxy, 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.bitchute.com/embed/zFstn9Uahwk/?feature=oembed
200 OK 0 B URL HTTP/2 www.bitchute.com/embed/zFstn9Uahwk/?feature=oembed
IP
GET /embed/zFstn9Uahwk/?feature=oembed HTTP/1.1
Host: www.bitchute.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dbursted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:20 GMT
content-type: text/html; charset=utf-8
vary: Cookie,Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UxKztLEXXx%2FYYXms2RSwm%2FnoQx0vFXOmOMDjyk6YzXFWY%2Ftnhz0J0kcqE1JuA26u6F%2BFJUvNZRDn3maGOd8I2DxX1q8sxq7vInVzypToXFZBXRYHlsQo3%2FxeYjMbr0YXXYk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f34e2ce9efb529-OSL
content-encoding: br
X-Firefox-Spdy: h2
joshwho-cdn.com/node_modules/video.js/dist/video-js.min.css?cache=1661376305_1661376305
200 OK 0 B URL HTTP/2 joshwho-cdn.com/node_modules/video.js/dist/video-js.min.css?cache=1661376305_1661376305
IP
GET /node_modules/video.js/dist/video-js.min.css?cache=1661376305_1661376305 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
cf-ray: 76f34e4538fd76db-LHR
access-control-allow-origin: *
age: 449932
cache-control: public, max-age=604800
etag: W/"a03b-5e703508d5d1a-gzip"
expires: Sat, 26 Nov 2022 10:50:58 GMT
last-modified: Wed, 24 Aug 2022 21:25:05 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ty8IOpQDtq266CKCE2%2BZcBFE%2BSYejn7IZChPnqqSk1LB%2BkoKs1JRAOb8PKwFROnep59Mrwipi%2BOhc7pox%2FwerVYMV87%2BnCAtSH%2FHQQtsfY7ob3%2B%2FkNbIbmvOnGt5b5%2Bw488%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/plugin/SubtitleSwitcher/onOffButton.css
200 OK 0 B URL HTTP/2 joshwho-cdn.com/plugin/SubtitleSwitcher/onOffButton.css
IP
GET /plugin/SubtitleSwitcher/onOffButton.css HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
cf-ray: 76f34e4508b176db-LHR
access-control-allow-origin: *
age: 450547
cache-control: public, max-age=604800
etag: W/"16c-5d8c682416000-gzip"
expires: Sat, 26 Nov 2022 09:21:22 GMT
last-modified: Thu, 24 Feb 2022 16:59:44 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=364
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I1JTU3N4pqsPu2dz%2Fd9Rt837xd%2BFOYtyNcQfvllYHcQ9KN%2F5GZtuzeQawlteHZWkGw87krs9e7lLjMamCHboNuHFAskX4vd4OoOJRkmSScdQmzHTIH547sej8%2FVvW%2FvuP%2FU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/plugin/VideoResolutionSwitcher/videojs-resolution-switcher-v7/videojs-resolution-switcher-v7.js?cache=1658467024_1658526784
200 OK 0 B URL HTTP/2 joshwho-cdn.com/plugin/VideoResolutionSwitcher/videojs-resolution-switcher-v7/videojs-resolution-switcher-v7.js?cache=1658467024_1658526784
IP
Analyzer Verdict Alert fortinet Phishing
GET /plugin/VideoResolutionSwitcher/videojs-resolution-switcher-v7/videojs-resolution-switcher-v7.js?cache=1658467024_1658526784 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: application/javascript
cf-ray: 76f34e4518d276db-LHR
access-control-allow-origin: *
cache-control: max-age=216000, private
etag: W/"4293-5e45df1d65400-gzip"
expires: Thu, 24 Nov 2022 15:51:24 GMT
last-modified: Fri, 22 Jul 2022 05:17:04 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: BYPASS
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G6E9EDyYc7dW1VWD7HVAieg5CKg9OBCYCWj1j87HFP1thm8gl%2FMEyXg%2FpDlW6Xd1Eye7xGvrsZrIPp22%2FTVp0Mlrty4oEriLCE8At6ajUk%2FNo8yMFI1xb2jsb3EZRfWyoZ0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/plugin/SeekButton/videojs-seek-buttons/videojs-seek-buttons.min.js?cache=1647555433_1658159118
200 OK 0 B URL HTTP/2 joshwho-cdn.com/plugin/SeekButton/videojs-seek-buttons/videojs-seek-buttons.min.js?cache=1647555433_1658159118
IP
Analyzer Verdict Alert fortinet Phishing
GET /plugin/SeekButton/videojs-seek-buttons/videojs-seek-buttons.min.js?cache=1647555433_1658159118 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:24 GMT
content-type: application/javascript
cf-ray: 76f34e4518d176db-LHR
access-control-allow-origin: *
cache-control: max-age=216000, private
etag: W/"99d-5da7164584fec-gzip"
expires: Thu, 24 Nov 2022 15:51:25 GMT
last-modified: Thu, 17 Mar 2022 22:17:13 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: BYPASS
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=98orJT1PZPV4DHHpZFVjQxwxBxXlbssMFf68RaJwyJCKDe7n9jBfTj4HKqPVtkZdWMbXRl%2BvzCT4i6veVCzRkWAve7lOqBdA4kqa34IEp%2BInUXAJx3yylNAKjM0UiS11ePw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.joshwhotv.com/videoEmbed/.QDA72w/hard-news-live-stream-on-16-dec-21-16-50-27?modestbranding=1&showinfo=1&autoplay=&controls=1&loop=&mute=&t=0&objectFit=
200 OK 0 B URL HTTP/2 www.joshwhotv.com/videoEmbed/.QDA72w/hard-news-live-stream-on-16-dec-21-16-50-27?modestbranding=1&showinfo=1&autoplay=&controls=1&loop=&mute=&t=0&objectFit=
IP
GET /videoEmbed/.QDA72w/hard-news-live-stream-on-16-dec-21-16-50-27?modestbranding=1&showinfo=1&autoplay=&controls=1&loop=&mute=&t=0&objectFit= HTTP/1.1
Host: www.joshwhotv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dbursted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:21 GMT
content-type: text/html; charset=UTF-8
cf-ray: 76f34e2e6ce9b521-OSL
access-control-allow-origin: *
cache-control: max-age=1, private, must-revalidate
expires: Thu, 19 Nov 1981 08:52:00 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-headers: Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-methods: GET,HEAD,OPTIONS,POST,PUT
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=coO59vEg3u3AtycuX9kUhJ5P8COeWxo%2FaiiLp%2BsJVo3cxLCmTQpKbQ6L2PBzc3kAtSTUa0ltcLn5HcuhATfF4NgQeUdTy%2FRr%2B2Qq5SzFulV%2BVak8OfoGUIHcgxDk0XoA3usxww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.youtube.com/embed/BFBjY_Kj2ko?feature=oembed
200 OK 0 B URL HTTP/2 www.youtube.com/embed/BFBjY_Kj2ko?feature=oembed
IP
GET /embed/BFBjY_Kj2ko?feature=oembed HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dbursted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 24 Nov 2022 15:51:19 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=UxA54HjouO8; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=ww6i9vAVMzU; Domain=.youtube.com; Expires=Tue, 23-May-2023 15:51:19 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+438; expires=Sat, 23-Nov-2024 15:51:19 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
joshwho-cdn.com/videos/cache/js/ff0c2121c326b1c05ada76804d92942a.js?cache=1668645336_1668645336
200 OK 0 B URL HTTP/2 joshwho-cdn.com/videos/cache/js/ff0c2121c326b1c05ada76804d92942a.js?cache=1668645336_1668645336
IP
Analyzer Verdict Alert fortinet Phishing
GET /videos/cache/js/ff0c2121c326b1c05ada76804d92942a.js?cache=1668645336_1668645336 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: application/javascript
cf-ray: 76f34e4518c276db-LHR
access-control-allow-origin: *
cache-control: max-age=216000, private
etag: W/"32162-5ed9fc48c7546-gzip"
expires: Thu, 24 Nov 2022 15:51:24 GMT
last-modified: Thu, 17 Nov 2022 00:35:36 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: BYPASS
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=54VBfID8378OgEyqj9lpDlLEQNWtwsDxNF5oF1XcJ0lChyTCV8NFRD1qvlqRtrDq35500nu8ckADzp6FNn33Z0QF6oiyuGo6%2FoIa5EiaC43W%2BtdQ0xEieM9%2FX%2BlrVXRINCc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.youtube.com/embed/rpvK8xc75Ao?feature=oembed
200 OK 0 B URL HTTP/2 www.youtube.com/embed/rpvK8xc75Ao?feature=oembed
IP
GET /embed/rpvK8xc75Ao?feature=oembed HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dbursted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 24 Nov 2022 15:51:19 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=7hnu0xOKgno; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=mPyqC80LA9U; Domain=.youtube.com; Expires=Tue, 23-May-2023 15:51:19 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+324; expires=Sat, 23-Nov-2024 15:51:19 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/videoseries?list=PL22J3VaeABQAT-0aSPq-OKOpQlHyR4k5h
200 OK 0 B URL HTTP/2 www.youtube.com/embed/videoseries?list=PL22J3VaeABQAT-0aSPq-OKOpQlHyR4k5h
IP
GET /embed/videoseries?list=PL22J3VaeABQAT-0aSPq-OKOpQlHyR4k5h HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dbursted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 24 Nov 2022 15:51:19 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=NdjbJxAKOQU; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=OurrbFgN5CE; Domain=.youtube.com; Expires=Tue, 23-May-2023 15:51:19 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+724; expires=Sat, 23-Nov-2024 15:51:19 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/videoseries?list=PL22J3VaeABQApSdW8X71Ihe34eKN6XhCi
200 OK 0 B URL HTTP/2 www.youtube.com/embed/videoseries?list=PL22J3VaeABQApSdW8X71Ihe34eKN6XhCi
IP
GET /embed/videoseries?list=PL22J3VaeABQApSdW8X71Ihe34eKN6XhCi HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dbursted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 24 Nov 2022 15:51:19 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=us0ghewCDIk; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=iLDnhs58C-8; Domain=.youtube.com; Expires=Tue, 23-May-2023 15:51:19 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+997; expires=Sat, 23-Nov-2024 15:51:19 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
joshwho-cdn.com/plugin/PlayLists/style.css?cache=1663965337_1663965337
200 OK 0 B URL HTTP/2 joshwho-cdn.com/plugin/PlayLists/style.css?cache=1663965337_1663965337
IP
Analyzer Verdict Alert fortinet Phishing
GET /plugin/PlayLists/style.css?cache=1663965337_1663965337 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
cf-ray: 76f34e4508a376db-LHR
access-control-allow-origin: *
age: 450547
cache-control: public, max-age=604800
etag: W/"12d-5e95e1edab6c9-gzip"
expires: Tue, 22 Nov 2022 21:50:43 GMT
last-modified: Fri, 23 Sep 2022 20:35:37 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=301
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wbQoFQh8BCLwkdw75ncAYohenkCWSwhfRl2OHOVx5vYrs5mmHbtYR4qAd24GQL2iNpNslqOxkddKZLZAWl263QbqEMTUQhOYcv%2BWqFJgfnVlnTzPAiZjLBJObYexDWiL%2BK8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/plugin/AD_Server/videojs-markers/videojs.markers.css?cache=1579785441_1658159118
200 OK 0 B URL HTTP/2 joshwho-cdn.com/plugin/AD_Server/videojs-markers/videojs.markers.css?cache=1579785441_1658159118
IP
GET /plugin/AD_Server/videojs-markers/videojs.markers.css?cache=1579785441_1658159118 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
cf-ray: 76f34e4518d876db-LHR
access-control-allow-origin: *
age: 83815
cache-control: public, max-age=604800
etag: W/"510-59cce76153c75-gzip"
expires: Sat, 26 Nov 2022 12:20:58 GMT
last-modified: Thu, 23 Jan 2020 13:17:21 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=1296
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5H9iPHJHPyKDHRfbOmyf1P0ujDgGQQnW8MfMoOiESOZoxnMTYysS27fTjPubNVz3n%2BvaAJL5qMDceOK4%2BkxedmOwONXgRdB9KbvqRqmbyVfPFoQpPqaqBacL7p%2BY1qVhbYo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.youtube.com/embed/DQ5SPlQmbJs?feature=oembed
200 OK 0 B URL HTTP/2 www.youtube.com/embed/DQ5SPlQmbJs?feature=oembed
IP
GET /embed/DQ5SPlQmbJs?feature=oembed HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dbursted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 24 Nov 2022 15:51:19 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=m1jKgHLBjOg; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=gp2_JCp_OuQ; Domain=.youtube.com; Expires=Tue, 23-May-2023 15:51:19 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+329; expires=Sat, 23-Nov-2024 15:51:19 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/videoseries?list=PL22J3VaeABQD_IZs7y60I3lUrrFTzkpat
200 OK 0 B URL HTTP/2 www.youtube.com/embed/videoseries?list=PL22J3VaeABQD_IZs7y60I3lUrrFTzkpat
IP
GET /embed/videoseries?list=PL22J3VaeABQD_IZs7y60I3lUrrFTzkpat HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dbursted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 24 Nov 2022 15:51:19 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=vRfw0U_Crn4; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=6uth9_YX9Mo; Domain=.youtube.com; Expires=Tue, 23-May-2023 15:51:19 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+690; expires=Sat, 23-Nov-2024 15:51:19 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
joshwho-cdn.com/plugin/PlayerSkins/skins/style2.css?cache=1579785441_1658159118
200 OK 0 B URL HTTP/2 joshwho-cdn.com/plugin/PlayerSkins/skins/style2.css?cache=1579785441_1658159118
IP
Analyzer Verdict Alert fortinet Phishing
GET /plugin/PlayerSkins/skins/style2.css?cache=1579785441_1658159118 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
cf-ray: 76f34e4508b576db-LHR
access-control-allow-origin: *
age: 62368
cache-control: public, max-age=604800
etag: W/"204e-59cce761730a8-gzip"
expires: Sat, 26 Nov 2022 10:07:18 GMT
last-modified: Thu, 23 Jan 2020 13:17:21 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=8270
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VtsvxqtiLSK43D%2F%2BPJQzBPu9dqiN3URHIFyBG0Hc5dasMtrL3HaVESKOKirH%2BCuUBuaYGJXf%2FZdoRBQC5b82BPfqozfjfY9cDI3MEkXrWysWHKHjYlo7A3QHR%2Bi2gYB4Wfk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/plugin/PlayerSkins/player.css?cache=1658185825_1658185825
200 OK 0 B URL HTTP/2 joshwho-cdn.com/plugin/PlayerSkins/player.css?cache=1658185825_1658185825
IP
Analyzer Verdict Alert fortinet Phishing
GET /plugin/PlayerSkins/player.css?cache=1658185825_1658185825 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
cf-ray: 76f34e4508b876db-LHR
access-control-allow-origin: *
age: 450547
cache-control: public, max-age=604800
etag: W/"36e-5e41c791d595d-gzip"
expires: Sat, 26 Nov 2022 10:07:18 GMT
last-modified: Mon, 18 Jul 2022 23:10:25 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=878
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f0sCasLSo1%2FNa0fOmeW0%2FM%2FogVLVs8bQMttbUU0yM1qyCmPdxWte2wXqEirQ3hGrL4UBEcKG7INKSsZTLd0dvoWhaICFCoBpW6oGtDmQ0ABBwxF9PuFl5N0eR45jWxqzfBw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/view/bootstrap/js/bootstrap.min.js?cache=1633467109_1658159118
200 OK 0 B URL HTTP/2 joshwho-cdn.com/view/bootstrap/js/bootstrap.min.js?cache=1633467109_1658159118
IP
GET /view/bootstrap/js/bootstrap.min.js?cache=1633467109_1658159118 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: application/javascript
cf-ray: 76f34e4508c076db-LHR
access-control-allow-origin: *
cache-control: max-age=216000, private
etag: W/"9b05-5cda132d4dcbc-gzip"
expires: Thu, 24 Nov 2022 15:51:24 GMT
last-modified: Tue, 05 Oct 2021 20:51:49 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: BYPASS
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JTQXpVza6GeVgt0aK7WJhuyYEC2ijf41adroNAodH6dmenADSFmSDWl9DVcnUp1uOUaexZ7gP8gA8diUz7B0APtkiyPlVPE0%2FyVKyTIeWX3VgzVjX9oltCsFHZNnAESz3Rk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.youtube.com/embed/pf_LQhcIO4g?feature=oembed
200 OK 0 B URL HTTP/2 www.youtube.com/embed/pf_LQhcIO4g?feature=oembed
IP
GET /embed/pf_LQhcIO4g?feature=oembed HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dbursted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 24 Nov 2022 15:51:19 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=G5wi4wvzfN0; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=DWBF-5ORpeY; Domain=.youtube.com; Expires=Tue, 23-May-2023 15:51:19 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+184; expires=Sat, 23-Nov-2024 15:51:19 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
joshwho-cdn.com/view/css/font-awesome-animation.min.css?cache=1647280647_1658159118
200 OK 0 B URL HTTP/2 joshwho-cdn.com/view/css/font-awesome-animation.min.css?cache=1647280647_1658159118
IP
Analyzer Verdict Alert fortinet Phishing
GET /view/css/font-awesome-animation.min.css?cache=1647280647_1658159118 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
cf-ray: 76f34e44e84e76db-LHR
access-control-allow-origin: *
age: 62369
cache-control: public, max-age=604800
etag: W/"4803-5da3169d2f799-gzip"
expires: Sat, 26 Nov 2022 10:07:17 GMT
last-modified: Mon, 14 Mar 2022 17:57:27 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SN6DGUvBD5BB5NwUt%2F8U843OYoRNFHLm%2Ba9E%2BGiOVlzrF3GfauwZfMNYHc%2FbpAsFctZEDDI2knI%2BggHMasmxuyDFsquyGOCAY%2BttPz3zv7oBvOdA8oyoAcgoJ64P8scXMR8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/plugin/SeekButton/videojs-seek-buttons/videojs-seek-buttons.css?cache=1647555433_1658159118
200 OK 0 B URL HTTP/2 joshwho-cdn.com/plugin/SeekButton/videojs-seek-buttons/videojs-seek-buttons.css?cache=1647555433_1658159118
IP
Analyzer Verdict Alert fortinet Phishing
GET /plugin/SeekButton/videojs-seek-buttons/videojs-seek-buttons.css?cache=1647555433_1658159118 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
cf-ray: 76f34e4508a876db-LHR
access-control-allow-origin: *
age: 450547
cache-control: public, max-age=604800
etag: W/"841-5da7164584fec-gzip"
expires: Sat, 26 Nov 2022 10:37:05 GMT
last-modified: Thu, 17 Mar 2022 22:17:13 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=2113
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AOsQolwxg5%2BTi%2B83uns%2ByKSzkJmJS9ra3SI3bTWxCNZ%2BBnh71jzYfqIJSjWREoEPu3df%2BnSRcF1vWfwIfa%2ByeUXlWyGrRZSfZ4Z90NBNX4mPJAwJRLYiGUGXgiZQQAGYgDk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/plugin/PlayerSkins/shareButton.css?cache=1608341641_1658159118
200 OK 0 B URL HTTP/2 joshwho-cdn.com/plugin/PlayerSkins/shareButton.css?cache=1608341641_1658159118
IP
GET /plugin/PlayerSkins/shareButton.css?cache=1608341641_1658159118 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
cf-ray: 76f34e4508bb76db-LHR
access-control-allow-origin: *
age: 450546
cache-control: public, max-age=604800
etag: W/"126-5b6c7383f09ef-gzip"
expires: Sat, 26 Nov 2022 10:42:17 GMT
last-modified: Sat, 19 Dec 2020 01:34:01 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=294
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MutreIZD6Lb3bVmGxWtGSpN4ntT7hu1EItJ8JBotRr2trdthZiE7Ko%2FPwycgLZhkCxubiyCUO8lwm0OkwShA8Vi7J9%2B6L1b43sAbEAarTSFUAAKMd9aNbVXVGfCLH73izP4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/node_modules/@silvermine/videojs-chromecast/dist/silvermine-videojs-chromecast.css?cache=1661962463_1661962463
200 OK 0 B URL HTTP/2 joshwho-cdn.com/node_modules/@silvermine/videojs-chromecast/dist/silvermine-videojs-chromecast.css?cache=1661962463_1661962463
IP
GET /node_modules/@silvermine/videojs-chromecast/dist/silvermine-videojs-chromecast.css?cache=1661962463_1661962463 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
cf-ray: 76f34e4508a676db-LHR
access-control-allow-origin: *
age: 450547
cache-control: public, max-age=604800
etag: W/"6b2-5e78bca468c7f-gzip"
expires: Sat, 26 Nov 2022 10:07:17 GMT
last-modified: Wed, 31 Aug 2022 16:14:23 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=1714
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BLoYcKxvxlysSwdTCnpCxMQ3ooNxZ19O2LIQahVbsJGsXex3r6fKIv%2F%2B3cd7VCKPd7E%2BSv8Rs%2F0FApC2QNU9clrjZWYX%2Fcwbt7oZwCT68L%2FFu2fsHoJrdqVn0oum5vxC%2F%2FY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/plugin/UserNotifications/style.css?cache=1661376305_1661376305
200 OK 0 B URL HTTP/2 joshwho-cdn.com/plugin/UserNotifications/style.css?cache=1661376305_1661376305
IP
GET /plugin/UserNotifications/style.css?cache=1661376305_1661376305 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
cf-ray: 76f34e4508a776db-LHR
access-control-allow-origin: *
age: 62369
cache-control: public, max-age=604800
etag: W/"6f6-5e703508e08fa-gzip"
expires: Sat, 26 Nov 2022 10:07:17 GMT
last-modified: Wed, 24 Aug 2022 21:25:05 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=1782
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BJFVEhEtCFYqhMSdh7QUJDB88DxqgPOMpjzqPIKLhd815hw901WNESby%2FRHGuRHOr%2Fp8U%2BZOg1O0tDcxwgtCm09s%2Fo48DFOLBnnFhawQuxAxT4h%2F6ZlCONRY%2Fy0HVq3xVIE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/node_modules/videojs-ima/dist/videojs.ima.min.js?cache=1661376305_1661376305
200 OK 0 B URL HTTP/2 joshwho-cdn.com/node_modules/videojs-ima/dist/videojs.ima.min.js?cache=1661376305_1661376305
IP
Analyzer Verdict Alert fortinet Phishing
GET /node_modules/videojs-ima/dist/videojs.ima.min.js?cache=1661376305_1661376305 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: application/javascript
cf-ray: 76f34e4508bf76db-LHR
access-control-allow-origin: *
cache-control: max-age=216000, private
etag: W/"bad2-5e703508dab3a-gzip"
expires: Thu, 24 Nov 2022 15:51:24 GMT
last-modified: Wed, 24 Aug 2022 21:25:05 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: BYPASS
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oXaPaDBcGp8%2F0GBMOa83qkUuSt4vaLVXh7M0wc3%2FUdfKfxRfDrc1Y1lNAfX8t7iAH%2BAumxYGeCN%2FBnO%2FPrUQ8OrdoqXJvL64wfrYVntOzxy6Ubqj9XZW61FeWBAYDPH2M3s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/plugin/AD_Server/videojs-markers/videojs-markers.js?cache=1579785441_1658159118
200 OK 0 B URL HTTP/2 joshwho-cdn.com/plugin/AD_Server/videojs-markers/videojs-markers.js?cache=1579785441_1658159118
IP
Analyzer Verdict Alert fortinet Phishing
GET /plugin/AD_Server/videojs-markers/videojs-markers.js?cache=1579785441_1658159118 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: application/javascript
cf-ray: 76f34e4518d976db-LHR
access-control-allow-origin: *
cache-control: max-age=216000, private
etag: W/"4089-59cce76153c75-gzip"
expires: Thu, 24 Nov 2022 15:51:24 GMT
last-modified: Thu, 23 Jan 2020 13:17:21 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: BYPASS
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HXeTkEh8TRcv%2BzMqhGvV8fFrKljCuz%2BgdwZmTBxglmcx4JveDu0phsEwpKhuEGx%2BYGT3XlewZzBA6vLIlxVJo5QqRZ842dLFG%2F2K%2BiFZaAxmCuqcm0BTNW%2BODVI%2BEA6qOQ8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.youtube.com/embed/obhzYxqkpaw?feature=oembed
200 OK 0 B URL HTTP/2 www.youtube.com/embed/obhzYxqkpaw?feature=oembed
IP
GET /embed/obhzYxqkpaw?feature=oembed HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dbursted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 24 Nov 2022 15:51:19 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=1-x5E4zhpkQ; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=GjZ9yIqzS04; Domain=.youtube.com; Expires=Tue, 23-May-2023 15:51:19 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+810; expires=Sat, 23-Nov-2024 15:51:19 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
joshwho-cdn.com/view/js/webui-popover/jquery.webui-popover.min.css?cache=1579785442_1658159118
200 OK 0 B URL HTTP/2 joshwho-cdn.com/view/js/webui-popover/jquery.webui-popover.min.css?cache=1579785442_1658159118
IP
Analyzer Verdict Alert fortinet Phishing
GET /view/js/webui-popover/jquery.webui-popover.min.css?cache=1579785442_1658159118 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: text/css
cf-ray: 76f34e44e85176db-LHR
access-control-allow-origin: *
age: 62369
cache-control: public, max-age=604800
etag: W/"1a79-59cce761e0757-gzip"
expires: Sat, 26 Nov 2022 10:07:17 GMT
last-modified: Thu, 23 Jan 2020 13:17:22 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BsuIG5An4rWzaYmCQC7FDIXJLrYrOrDXVqfWCoFHhOXb2ByhY06YSRCD4F%2F2YAviQirqRb0%2BZDvQZtaNRFA5upxe0cRdhYXnsD5CU3zTshRbp8rKWnLpCOSn3mds42b3jEQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/plugin/YPTWallet/script.js
200 OK 0 B URL HTTP/2 joshwho-cdn.com/plugin/YPTWallet/script.js
IP
Analyzer Verdict Alert fortinet Phishing
GET /plugin/YPTWallet/script.js HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: application/javascript
cf-ray: 76f34e4518d076db-LHR
access-control-allow-origin: *
cache-control: max-age=216000, private
etag: W/"e9-5da7164588e6c-gzip"
expires: Thu, 24 Nov 2022 15:51:24 GMT
last-modified: Thu, 17 Mar 2022 22:17:13 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: BYPASS
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9iXeOrrkPCVNalo%2B1N3WLW%2B3vkwFTVBMRm6ghGSlH%2FW3GVzNamllaXecOHh%2B8TWLKQb4QJOO%2BTKquXO7HBzbC80qXLia0%2FaikMXC0KVlLHyxbZWiVhZn1PuldToT4qT2vtE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
joshwho-cdn.com/view/js/videojs-persistvolume/videojs.persistvolume.js?cache=1633467110_1658159118
200 OK 0 B URL HTTP/2 joshwho-cdn.com/view/js/videojs-persistvolume/videojs.persistvolume.js?cache=1633467110_1658159118
IP
Analyzer Verdict Alert fortinet Phishing
GET /view/js/videojs-persistvolume/videojs.persistvolume.js?cache=1633467110_1658159118 HTTP/1.1
Host: joshwho-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.joshwhotv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:51:23 GMT
content-type: application/javascript
cf-ray: 76f34e4518d776db-LHR
access-control-allow-origin: *
cache-control: max-age=216000, private
etag: W/"e9f-5cda132db455c-gzip"
expires: Thu, 24 Nov 2022 15:51:24 GMT
last-modified: Tue, 05 Oct 2021 20:51:50 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: BYPASS
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nhhyP58U%2FSQuFx7ktk4CR9MLDueZfiQanZUzOt2tCJ0l%2Ba9zVjyzQEg6V1FuEd4p1YwzAGUHlFv%2FvmmJMtxuCuZoLWU3irYLM6bsP5IGCX70wxrtS9ChNVDP0jrzyD9UaEc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
82.221.129.24
34.160.144.191
151.101.86.249
185.59.220.199
104.21.234.148
23.36.76.226
93.184.220.29