doelasthackerx-cdsiverz.blogspot.kr/
142.250.74.161302 Moved Temporarily 189 B URL HTTP/1.1 doelasthackerx-cdsiverz.blogspot.kr/
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash a481a60a84f13ef28a65160f93d1ed66
1c38f90eb3842bef25d276273b461442d555e76d
27773fb4f28811b157ff620ac069af50c5325603bc2fae8dd0d6234612f97c49
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: doelasthackerx-cdsiverz.blogspot.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Location: http://doelasthackerx-cdsiverz.blogspot.com/
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Sat, 26 Nov 2022 03:17:55 GMT
Expires: Sat, 26 Nov 2022 03:17:55 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 189
Server: GSE
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7c60904d097cde276e4e5632cef1b9f1
4f805026462589345d85e8df2d18eafba6237504
12af026999398f4976749e320667d43da3f99b7a2e8254aca7a410a964a106aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7413
Expires: Sat, 26 Nov 2022 05:21:29 GMT
Date: Sat, 26 Nov 2022 03:17:56 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 10730f388c028d64e19b8a48d414768f
e43b104e57e5ea7ff8568835776858cf2ede6f00
f3c30c6d139288f1bfe13fce85c6ddc1514e1639fcf4d31a6012a3309ed1d50d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6316
Cache-Control: max-age=118714
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:56 GMT
Etag: "63809972-1d7"
Expires: Sun, 27 Nov 2022 12:16:30 GMT
Last-Modified: Fri, 25 Nov 2022 10:31:14 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 02:19:10 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3526
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8c63b226725ca6e92e3ef586ac19e603
d21ae42a1927501e5293ff3564f52b49f6b0decc
141ac47acc3800e5d35a82012fa4b044277abad3a95dc24415f66fb72c972ae6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "141AC47ACC3800E5D35A82012FA4B044277ABAD3A95DC24415F66FB72C972AE6"
Last-Modified: Wed, 23 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9793
Expires: Sat, 26 Nov 2022 06:01:09 GMT
Date: Sat, 26 Nov 2022 03:17:56 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: HCy3cTp1gWH1RccvwVfd9fuJYyTteIKOYkqzMhljaswmEfq0BepWdXjT7pV5QcOMvo3qQg0C6ek=
x-amz-request-id: CYXHD748Y2JY4FNT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 02:44:04 GMT
age: 2032
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 03:17:56 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
doelasthackerx-cdsiverz.blogspot.com/
142.250.74.161200 OK 23 kB URL HTTP/1.1 doelasthackerx-cdsiverz.blogspot.com/
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5625)
Hash 76f7ab1356061eef503ac0abbf606bb7
1b73aef0981e7f22bf1c39e55098c0db0006a5bf
f6a02c34b46e99f867884cf8dbb080b5a1ce1e68d8eebe3439fe0243d5de9b2c
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: doelasthackerx-cdsiverz.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Sat, 26 Nov 2022 03:17:56 GMT
Date: Sat, 26 Nov 2022 03:17:56 GMT
Cache-Control: private, max-age=0
Last-Modified: Tue, 07 Dec 2021 17:06:17 GMT
ETag: W/"6a794b0bc53d41331929e31a04e6ef790c09a782d4789e73e179631eef2828f1"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 22677
Server: GSE
fonts.googleapis.com/css?family=Electrolize
142.250.74.10200 OK 273 B URL HTTP/1.1 fonts.googleapis.com/css?family=Electrolize
IP 142.250.74.10:0
Hash 8681230d463bb81b4f805f29ace70c40
4db6c800fa38edff3ce4af77d766c80022da2922
75a9c5bc63287ceeeb135af55e6ca34c1ed2eaff82a133b0e20d357c2ee4d9d7
GET /css?family=Electrolize HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 26 Nov 2022 03:17:56 GMT
Date: Sat, 26 Nov 2022 03:17:56 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Rancho
142.250.74.10200 OK 263 B URL HTTP/1.1 fonts.googleapis.com/css?family=Rancho
IP 142.250.74.10:0
Hash f6dbb3fd092065be7547bbd10b792ff7
21a0f25fbd38cf0baee90176b8aa5af95446f85d
b17ee14f15de90609a48a3c25742414005ef8836474a900f1a74bba068acc308
GET /css?family=Rancho HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 26 Nov 2022 03:17:56 GMT
Date: Sat, 26 Nov 2022 03:17:56 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Metamorphous
142.250.74.10200 OK 344 B URL HTTP/1.1 fonts.googleapis.com/css?family=Metamorphous
IP 142.250.74.10:0
Hash 12298000998cba1ce580f291f41f797b
f970b9cdd3dd887ed5db4343b1c7d0c247c49c86
2abe8559794198a1ae91fad6c1031e09dcbc76dd6abd9f5f991c25b924d61721
GET /css?family=Metamorphous HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 26 Nov 2022 03:17:56 GMT
Date: Sat, 26 Nov 2022 03:17:56 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
ajax.googleapis.com/ajax/libs/jquery/1.3.2/jquery.min.js
216.58.211.10200 OK 20 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1.3.2/jquery.min.js
IP 216.58.211.10:0
File type ASCII text, with very long lines (39660)
Hash 6ad9e9100f68042a634e403e56e3744a
3d148af6eb9f86b03d5a815f4fb3a49c7b2df356
72bbdea3217793991ab87a6c7cb165d267551810d3d88b5fd2fd489748d04b7a
GET /ajax/libs/jquery/1.3.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 19926
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 25 Nov 2022 07:54:58 GMT
Expires: Sat, 25 Nov 2023 07:54:58 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 69778
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js
216.58.211.10200 OK 25 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js
IP 216.58.211.10:0
File type ASCII text, with very long lines (820)
Hash cc24419c482370498f3c227ac73d666b
37fc103ace873f47102e0ca88eb4735bc6806750
152fa070788f0cf29dc062f03860897c39c7ffa13e6eee2dc3e5dc131ecbc7aa
GET /ajax/libs/jquery/1.4.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 24715
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 24 Nov 2022 08:10:48 GMT
Expires: Fri, 24 Nov 2023 08:10:48 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 155228
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js
216.58.211.10200 OK 33 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js
IP 216.58.211.10:0
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769)
Hash 18351732b1849ba758e98884e186b3c8
d735af8661eda41ff4ffbf76e6a284a0e2deb81c
bfac625d304d52e04f2caeb19266354749929c888ca09d3d1e3edcbb8770d0f0
GET /ajax/libs/jquery/1.7.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 33333
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 09:29:57 GMT
Expires: Wed, 22 Nov 2023 09:29:57 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Age: 323279
doelasthackerx-cdsiverz.blogspot.com/js/cookienotice.js
142.250.74.161200 OK 2.0 kB URL HTTP/1.1 doelasthackerx-cdsiverz.blogspot.com/js/cookienotice.js
IP 142.250.74.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
Analyzer Verdict Alert fortinet Malware
GET /js/cookienotice.js HTTP/1.1
Host: doelasthackerx-cdsiverz.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Sat, 26 Nov 2022 03:17:56 GMT
Expires: Sat, 03 Dec 2022 03:17:56 GMT
Cache-Control: public, max-age=604800
Last-Modified: Fri, 25 Nov 2022 18:49:48 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6983392700438f228fa9b5bba4594fc5
d27c65105b44a2e1ff7663ba0021a475b5b30cd2
557627dbab910f61773f0f818efc6b18bb2b5816175199b997684a799c1c97e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash b44543de9922ec7d97f2e0be1865553e
caef856450efd75de0cfae9402903b1f4bd6de4c
d251377b4bc11c32a847ce4dc5dfda92e56031617f5b3eeea54fdcd0945b3eb7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
216.58.207.201200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP 216.58.207.201:0
File type ASCII text, with very long lines (30596)
Hash 6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 20:32:38 GMT
expires: Wed, 22 Nov 2023 20:32:38 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 22 Nov 2022 12:53:21 GMT
content-type: text/css
age: 283518
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 2a03384abe9f9728677b1f7b876b4694
41c1c401e79ac5b6edc6fc3cce8b4d085c565ac1
744b3562ef1851ca3c0413020ef5c40e71af514e6ff8da065f6ea9f846e70717
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6983392700438f228fa9b5bba4594fc5
d27c65105b44a2e1ff7663ba0021a475b5b30cd2
557627dbab910f61773f0f818efc6b18bb2b5816175199b997684a799c1c97e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/1.6.1/jquery.min.js
216.58.211.10200 OK 32 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.6.1/jquery.min.js
IP 216.58.211.10:0
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32764)
Hash 34fb740c21fb2f4be218932988fe68f2
2e2ee722aa0902a96a2ed3bd1f51ab762b666b9f
9e0ec1faab0c671db34a814b74946659d86ec455b89b4efd638806a146cfa51a
GET /ajax/libs/jquery/1.6.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 32124
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 03:27:06 GMT
expires: Thu, 23 Nov 2023 03:27:06 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 258650
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 65992aeb8efb9a0b8fd59687090733fe
526a2afccc93d32849185d153fafe44b72797df9
b6677984b6c3602d7b62df776158c09a3e57eec4c0edbddafb0624200715f10e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/2342155703-widgets.js
216.58.207.201200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2342155703-widgets.js
IP 216.58.207.201:0
File type ASCII text, with very long lines (2221)
Hash 1217c8e34acb09c7cea97bae4d386ea1
55ee17703d0a7710943e93913bacb49220d98b4b
c2f23437ab938096bf8b40de8b08c4f27bb880b7ef8588481ec5ccc08b58870b
GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 16:02:03 GMT
expires: Tue, 21 Nov 2023 16:02:03 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 00:52:59 GMT
content-type: text/javascript
age: 386153
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apis.google.com/js/platform.js
142.250.74.174200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1279)
Hash 7ac44ef24e267df17ff72f195b252806
62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Sat, 26 Nov 2022 03:17:56 GMT
expires: Sat, 26 Nov 2022 03:17:56 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
scmplayer.net/script.js
104.21.234.157200 OK 2.1 kB IP 104.21.234.157:0
File type exported SGML document, ASCII text, with very long lines (978)
Hash b7b88f0097a8831b15d35459e0fe3d5c
ec647b33e902df1cffaf37e9dc5ebfb3cc21a141
d001506d69c6450899e422b799e4d0932d50e02b8f39d350d939592d353c6f42
GET /script.js HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:17:56 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=6496
ETag: W/"5fb7e6e6-1960"
Last-Modified: Fri, 20 Nov 2020 15:55:18 GMT
X-XSS-Protection: 0
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 10
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ptqErxai5cq9tIDQpsDnKRzS8n9hEO6z9fITy%2BEp2Zn%2Fgpf%2F1srY6GhzLsvFadXFpANGiltLdvgha1%2FHqVHiJTr%2BY4nBic%2Fr9%2FBb0CFJxsJz8RMtkdpNEQ8sL0rCCLax"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76ff7954fec7777f-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 03:08:53 GMT
cache-control: public,max-age=3600
age: 543
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
2.bp.blogspot.com/-Da_DQxEUqT8/UFnVwZp10FI/AAAAAAAAD8w/spUZxC_ip2Q/s320/new27.jpg
142.250.74.161404 Not Found 832 B URL HTTP/1.1 2.bp.blogspot.com/-Da_DQxEUqT8/UFnVwZp10FI/AAAAAAAAD8w/spUZxC_ip2Q/s320/new27.jpg
IP 142.250.74.161:0
File type PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Hash 596246739a83bb45e30e13437e0810d9
203d99f5cb1f2c816d6f9974cc5a73cf412892a6
94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615
GET /-Da_DQxEUqT8/UFnVwZp10FI/AAAAAAAAD8w/spUZxC_ip2Q/s320/new27.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 404 Not Found
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 03:17:56 GMT
Server: fife
Content-Length: 832
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 01f789642d92b84211d7a9391f4e55af
bfcdc40fa2e82882051aa26c61d81ffd98371506
66e2ca388a8696e08f992e3d34fe75dcccd99a0743605f3bf5e6c1c893750f24
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
142.250.74.174200 OK 58 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
IP 142.250.74.174:0
File type ASCII text, with very long lines (580)
Hash 813b15c3004464f6bd39fd0773b04757
bd2218fe1e647f61132aad70d29cd91fd0416f26
446c6d83404c0fc4bc1ca6e1c0895f9400309185a534b3f4b6d500e668efeadf
GET /_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57794
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 09:56:18 GMT
expires: Thu, 23 Nov 2023 09:56:18 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 01 Nov 2022 15:24:55 GMT
content-type: text/javascript; charset=UTF-8
age: 235298
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash b44543de9922ec7d97f2e0be1865553e
caef856450efd75de0cfae9402903b1f4bd6de4c
d251377b4bc11c32a847ce4dc5dfda92e56031617f5b3eeea54fdcd0945b3eb7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
142.250.74.34200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 142.250.74.34:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Fri, 25 Nov 2022 22:47:20 GMT
Expires: Fri, 09 Dec 2022 22:47:20 GMT
Cache-Control: public, max-age=1209600
Age: 16236
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
sites.google.com/site/rhwblogspotcom/javasript/kamera_pengintai.txt?attredirects=0&d=1
142.250.74.142302 Found 467 B URL HTTP/2 sites.google.com/site/rhwblogspotcom/javasript/kamera_pengintai.txt?attredirects=0&d=1
IP 142.250.74.142:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (435)
Hash 6bcc248ee4ca379a7d9c203c4f882cba
edca54086cb86e87e0aff7fdde6bfab29bc4126e
9c21534a4bcb46be71f287326f78a5d4abf4c2e9a959e5222e0215ba45c999aa
GET /site/rhwblogspotcom/javasript/kamera_pengintai.txt?attredirects=0&d=1 HTTP/1.1
Host: sites.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
location: https://4198632c-a-62cb3a1a-s-sites.googlegroups.com/site/rhwblogspotcom/javasript/kamera_pengintai.txt?attachauth=ANoY7criWUd_CB__FcwIQuHfJ6gpZZRQJQLZO2aeY6i5tddfpA1upYT_6tsO4GUS_sdpJ2Bf8j-cjR_5PTUg0ml3C8SzC0nIz2wdP3NaTzOV8iRw6lVkdLHj4Pu0sj2orHg8XMA_cEjy8I7FXeDXYCCVdHh7rCYJrJaejhNBTJyrMx0k6YnNwU8LaCocVQ2njvB2OXo719Pz9MAAREalRjRgwwGbyxGwcfQXwhs5Zm8UcEFCRMsZmEE%3D&attredirects=0&d=1
content-encoding: gzip
date: Sat, 26 Nov 2022 03:17:56 GMT
expires: Sat, 26 Nov 2022 03:17:56 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 467
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 65992aeb8efb9a0b8fd59687090733fe
526a2afccc93d32849185d153fafe44b72797df9
b6677984b6c3602d7b62df776158c09a3e57eec4c0edbddafb0624200715f10e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4.bp.blogspot.com/-cxJBhbmFMJ4/UFnVWdzjXaI/AAAAAAAAD8k/KH9DS2KMmGc/s320/new25.jpg
142.250.74.161404 Not Found 832 B URL HTTP/1.1 4.bp.blogspot.com/-cxJBhbmFMJ4/UFnVWdzjXaI/AAAAAAAAD8k/KH9DS2KMmGc/s320/new25.jpg
IP 142.250.74.161:0
File type PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Hash 596246739a83bb45e30e13437e0810d9
203d99f5cb1f2c816d6f9974cc5a73cf412892a6
94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615
GET /-cxJBhbmFMJ4/UFnVWdzjXaI/AAAAAAAAD8k/KH9DS2KMmGc/s320/new25.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 404 Not Found
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 03:17:56 GMT
Server: fife
Content-Length: 832
X-XSS-Protection: 0
4.bp.blogspot.com/-o9Cm3-1UxaY/UFnXt2zBfWI/AAAAAAAAD94/uZbnr50gszc/s320/new33.jpg
142.250.74.161404 Not Found 832 B URL HTTP/1.1 4.bp.blogspot.com/-o9Cm3-1UxaY/UFnXt2zBfWI/AAAAAAAAD94/uZbnr50gszc/s320/new33.jpg
IP 142.250.74.161:0
File type PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Hash 596246739a83bb45e30e13437e0810d9
203d99f5cb1f2c816d6f9974cc5a73cf412892a6
94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615
GET /-o9Cm3-1UxaY/UFnXt2zBfWI/AAAAAAAAD94/uZbnr50gszc/s320/new33.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 404 Not Found
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 03:17:56 GMT
Server: fife
Content-Length: 832
X-XSS-Protection: 0
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash df06e70fc8a35facf1d8db463d18e231
fa8a2975566cc792898f870e48ae7518d3657326
4cef7e704f4d575ce6733f6f2d803d241b597be51ff3fb03f72e5c33a893b504
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3186
Cache-Control: max-age=110521
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:56 GMT
Etag: "638085ab-1d7"
Expires: Sun, 27 Nov 2022 09:59:57 GMT
Last-Modified: Fri, 25 Nov 2022 09:06:51 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
www.facebook.com/widgets/like.php?href=http%3A%2F%2Fwww.facebook.com%2Fpages%2FSDN-Pulogebang-12-Petang-Jakarta-Timur-Teams-Of-Hacking%2F595548813789477&layout=standard&show_faces=true&width=53&action=like&colorscheme=light&height=80
31.13.72.36301 Moved Permanently 0 B URL HTTP/1.1 www.facebook.com/widgets/like.php?href=http%3A%2F%2Fwww.facebook.com%2Fpages%2FSDN-Pulogebang-12-Petang-Jakarta-Timur-Teams-Of-Hacking%2F595548813789477&layout=standard&show_faces=true&width=53&action=like&colorscheme=light&height=80
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widgets/like.php?href=http%3A%2F%2Fwww.facebook.com%2Fpages%2FSDN-Pulogebang-12-Petang-Jakarta-Timur-Teams-Of-Hacking%2F595548813789477&layout=standard&show_faces=true&width=53&action=like&colorscheme=light&height=80 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.facebook.com/widgets/like.php?href=http%3A%2F%2Fwww.facebook.com%2Fpages%2FSDN-Pulogebang-12-Petang-Jakarta-Timur-Teams-Of-Hacking%2F595548813789477&layout=standard&show_faces=true&width=53&action=like&colorscheme=light&height=80
Content-Type: text/plain
Server: proxygen-bolt
Date: Sat, 26 Nov 2022 03:17:56 GMT
Connection: keep-alive
Content-Length: 0
4.bp.blogspot.com/-L05pAl6nPpw/UFnYClOy8bI/AAAAAAAAD-E/nsvyebb8Kd0/s320/new44.jpg
142.250.74.161404 Not Found 832 B URL HTTP/1.1 4.bp.blogspot.com/-L05pAl6nPpw/UFnYClOy8bI/AAAAAAAAD-E/nsvyebb8Kd0/s320/new44.jpg
IP 142.250.74.161:0
File type PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Hash 596246739a83bb45e30e13437e0810d9
203d99f5cb1f2c816d6f9974cc5a73cf412892a6
94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615
GET /-L05pAl6nPpw/UFnYClOy8bI/AAAAAAAAD-E/nsvyebb8Kd0/s320/new44.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 404 Not Found
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 03:17:56 GMT
Server: fife
Content-Length: 832
X-XSS-Protection: 0
i44.photobucket.com/albums/f13/LONG65/Element2.gif
143.204.55.54301 Moved Permanently 167 B URL HTTP/1.1 i44.photobucket.com/albums/f13/LONG65/Element2.gif
IP 143.204.55.54:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/f13/LONG65/Element2.gif HTTP/1.1
Host: i44.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Sat, 26 Nov 2022 03:17:56 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i44.photobucket.com/albums/f13/LONG65/Element2.gif
X-Cache: Redirect from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: MSbjWbXS78SVidFWR0Nb7ytRID3jthvrqZNy46TRyzjH9of9EyTLdQ==
Vary: Origin
1.bp.blogspot.com/-CbEBY8RyjtA/UOytXHiHqmI/AAAAAAAAC4U/ELVWklCit7c/s000/naruto-anime-wallpaper-1920x1080-1392.jpg
142.250.74.161200 OK 201 kB URL HTTP/1.1 1.bp.blogspot.com/-CbEBY8RyjtA/UOytXHiHqmI/AAAAAAAAC4U/ELVWklCit7c/s000/naruto-anime-wallpaper-1920x1080-1392.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1920x1080, components 3\012- data
Size 201 kB (201240 bytes)
Hash aebb275fbd1e64646ab00a85e4064978
e443ce5c4fedf328b8b17c91899bc9dfe06a8839
5f9a50b579bab286a487f66c2b9c4b6068dadf6b353d84b2784fe2b8611ef7fa
GET /-CbEBY8RyjtA/UOytXHiHqmI/AAAAAAAAC4U/ELVWklCit7c/s000/naruto-anime-wallpaper-1920x1080-1392.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="naruto-anime-wallpaper-1920x1080-1392.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 201240
X-XSS-Protection: 0
Date: Fri, 25 Nov 2022 23:51:00 GMT
Expires: Tue, 22 Nov 2022 11:57:52 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 12416
ETag: "vb85"
Content-Type: image/jpeg
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 966255e8eae5f73b5fe45aab88646f99
57eadbf09ae6a8170cdfe3b0691b908f49e2c08d
a99ecadf4c294cebf0c392ea036f508443cb471c44773cc5ea0212ab86074cbe
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3447
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:56 GMT
Last-Modified: Sat, 26 Nov 2022 02:20:29 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash f92478f7e0ef5ffb5bfe1d942c88ce8d
9e3362d9d9b4c7c54ea56950ea1a1604925281a0
375f83cab3d7d75045aaa6c58c101dc81ad3ee4017984321b1a2e25baf9863c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.facebook.com/widgets/like.php?href=http%3A%2F%2Fwww.facebook.com%2Fpages%2FSDN-Pulogebang-12-Petang-Jakarta-Timur-Teams-Of-Hacking%2F595548813789477&layout=standard&show_faces=true&width=53&action=like&colorscheme=light&height=80
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/widgets/like.php?href=http%3A%2F%2Fwww.facebook.com%2Fpages%2FSDN-Pulogebang-12-Petang-Jakarta-Timur-Teams-Of-Hacking%2F595548813789477&layout=standard&show_faces=true&width=53&action=like&colorscheme=light&height=80
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widgets/like.php?href=http%3A%2F%2Fwww.facebook.com%2Fpages%2FSDN-Pulogebang-12-Petang-Jakarta-Timur-Teams-Of-Hacking%2F595548813789477&layout=standard&show_faces=true&width=53&action=like&colorscheme=light&height=80 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: XFRBWzIo8LmOD7DW4v/kpArjEba8zFgjaTCAsWDgb15IlV+ETaVVIOtJxQ1QgF/V66Q6ZnUAClRjK4yeS7icNg==
content-length: 0
date: Sat, 26 Nov 2022 03:17:56 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
4.bp.blogspot.com/-jrh4uOdGK-Q/UMCmJbSHVzI/AAAAAAAAAaY/TtgUUyWYl9k/w72-h72-p-k-no-nu/1212.png
142.250.74.161200 OK 4.5 kB URL HTTP/1.1 4.bp.blogspot.com/-jrh4uOdGK-Q/UMCmJbSHVzI/AAAAAAAAAaY/TtgUUyWYl9k/w72-h72-p-k-no-nu/1212.png
IP 142.250.74.161:0
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash cc44a12bff8252723222698872b6be86
e60e76857e50a8547bf176704050461dce574b60
6c6c12a620668f806f66838ee623ca8273b906eac1ed6dbc596338018c85a319
GET /-jrh4uOdGK-Q/UMCmJbSHVzI/AAAAAAAAAaY/TtgUUyWYl9k/w72-h72-p-k-no-nu/1212.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1a6"
Expires: Sun, 27 Nov 2022 03:17:57 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="1212.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 03:17:57 GMT
Server: fife
Content-Length: 4478
X-XSS-Protection: 0
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 966255e8eae5f73b5fe45aab88646f99
57eadbf09ae6a8170cdfe3b0691b908f49e2c08d
a99ecadf4c294cebf0c392ea036f508443cb471c44773cc5ea0212ab86074cbe
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3448
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:57 GMT
Last-Modified: Sat, 26 Nov 2022 02:20:29 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
4.bp.blogspot.com/-jrh4uOdGK-Q/UMCmJbSHVzI/AAAAAAAAAaY/TtgUUyWYl9k/s320/1212.png
142.250.74.161200 OK 28 kB URL HTTP/1.1 4.bp.blogspot.com/-jrh4uOdGK-Q/UMCmJbSHVzI/AAAAAAAAAaY/TtgUUyWYl9k/s320/1212.png
IP 142.250.74.161:0
File type PNG image data, 320 x 216, 8-bit/color RGB, non-interlaced\012- data
Hash 5ffda78cfd4ea319965bc02f27240b41
d76e7d9eb765e099e3b7eeeda8d98214c4223646
0cf433bd8fb77819128bf764580bd4ba2e4cc62effc918b36ab6c32240a60350
GET /-jrh4uOdGK-Q/UMCmJbSHVzI/AAAAAAAAAaY/TtgUUyWYl9k/s320/1212.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1a6"
Expires: Sun, 27 Nov 2022 03:17:57 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="1212.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 03:17:57 GMT
Server: fife
Content-Length: 27981
X-XSS-Protection: 0
scmplayer.net/scm.html
104.21.234.157200 OK 2.0 kB IP 104.21.234.157:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5ef747fd2ee1667025fa4f5a5b92ded6
106e27e4a60ed64bcbc3bb8db2aecebc80fbfb30
6042b5947ec4b809660a6bf3b92d6e3fead9899a286dee5f44316a4680120047
GET /scm.html HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:17:57 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 07 May 2020 02:24:16 GMT
Vary: Accept-Encoding
X-XSS-Protection: 0
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u7MO7mdCsF4wV%2FO4Kpq7hwdsupUB5UtHuBxUrEz7i8bM%2F7fHqa1%2BF5xeOs6RBCGBmhATq3gkwkgPsCLjuc4DX%2FB6WNy%2FpvYs7cR1vAkqwR7XWpvHF78UZNeoe6KlPB9m"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76ff7956980e777f-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
i44.photobucket.com/albums/f13/LONG65/Element2.gif
143.204.55.54200 OK 6.2 kB URL HTTP/2 i44.photobucket.com/albums/f13/LONG65/Element2.gif
IP 143.204.55.54:0
File type GIF image data, version 89a, 72 x 72\012- data
Hash 6a63901eee7a5a16257338c1c7f680f3
9167a7ffe41f00240a124fb413d8582fc5b91a3b
9a813c5eab8bbd41188fcb6d4b23fa5b4e2459cd0fd647f0a633644c8c370ec0
GET /albums/f13/LONG65/Element2.gif HTTP/1.1
Host: i44.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 6162
date: Sat, 26 Nov 2022 03:17:57 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="Element2.gif"
expires: Sun, 26 Nov 2023 03:17:57 GMT
server: photobucket
x-amzn-trace-id: Root=1-63818564-131fac595b13492a1938335f
x-request-id: PTS4xWKnSJ_NT4QJJbZOS
x-cache: Miss from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LyKIoNr740Ft3QeWEsf5RPOgz3amzXEW_xqZy0YrwNJWXIa2V9fVyA==
vary: Accept, Origin
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.186.209.73101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.186.209.73:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: wsBCSBguBqVoTO7bwXIdEQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: SxZiTNPePuDcU1YJjyhbMRc1O+w=
3.bp.blogspot.com/-EwmrIjz1TbE/USXQ4puVeJI/AAAAAAAAAIA/QzsYa-vK6vI/w72-h72-p-k-no-nu/images.jpg
142.250.74.161200 OK 2.9 kB URL HTTP/1.1 3.bp.blogspot.com/-EwmrIjz1TbE/USXQ4puVeJI/AAAAAAAAAIA/QzsYa-vK6vI/w72-h72-p-k-no-nu/images.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash a6c79b6e13d7a8ebc2c0284cc864021f
0f7354545440981628eeda094d244397617e0103
8eb53f061f13802e23aecd36491c99ff6882271fd0109f771c30802678c6d0f7
GET /-EwmrIjz1TbE/USXQ4puVeJI/AAAAAAAAAIA/QzsYa-vK6vI/w72-h72-p-k-no-nu/images.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v80"
Expires: Sun, 27 Nov 2022 03:17:57 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="images.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 03:17:57 GMT
Server: fife
Content-Length: 2898
X-XSS-Protection: 0
1.bp.blogspot.com/-4LeOJlOFa2Q/UGwzGEdI2fI/AAAAAAAABY0/xOBkX6TJ-Go/w72-h72-p-k-no-nu/22.jpg
142.250.74.161200 OK 2.0 kB URL HTTP/1.1 1.bp.blogspot.com/-4LeOJlOFa2Q/UGwzGEdI2fI/AAAAAAAABY0/xOBkX6TJ-Go/w72-h72-p-k-no-nu/22.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash a241960c72d4b431252aaa8249f9397b
36a4ec05d2a7eeaf6bdbd380540c4afdb5362d4a
bb4d221c9ff54285ca34337a1b171fe231a69042e38e2186bd0482479cf09988
GET /-4LeOJlOFa2Q/UGwzGEdI2fI/AAAAAAAABY0/xOBkX6TJ-Go/w72-h72-p-k-no-nu/22.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v32e0"
Expires: Sun, 27 Nov 2022 03:17:57 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="22.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 03:17:57 GMT
Server: fife
Content-Length: 1976
X-XSS-Protection: 0
3.bp.blogspot.com/-EwmrIjz1TbE/USXQ4puVeJI/AAAAAAAAAIA/QzsYa-vK6vI/s320/images.jpg
142.250.74.161200 OK 19 kB URL HTTP/1.1 3.bp.blogspot.com/-EwmrIjz1TbE/USXQ4puVeJI/AAAAAAAAAIA/QzsYa-vK6vI/s320/images.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x153, components 3\012- data
Hash 7754b0ec34fc26f1228abe53bf4632f0
d610b5dae3df6bf7b6fbec82f56e3985d59fe6f0
6ee6586c4fec45782e045f00254480a4ea96902822266a4c5496b8373cfb91c7
GET /-EwmrIjz1TbE/USXQ4puVeJI/AAAAAAAAAIA/QzsYa-vK6vI/s320/images.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v80"
Expires: Sun, 27 Nov 2022 03:17:57 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="images.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 03:17:57 GMT
Server: fife
Content-Length: 18879
X-XSS-Protection: 0
1.bp.blogspot.com/-4LeOJlOFa2Q/UGwzGEdI2fI/AAAAAAAABY0/xOBkX6TJ-Go/s1600/22.jpg
142.250.74.161200 OK 25 kB URL HTTP/1.1 1.bp.blogspot.com/-4LeOJlOFa2Q/UGwzGEdI2fI/AAAAAAAABY0/xOBkX6TJ-Go/s1600/22.jpg
IP 142.250.74.161:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=4, orientation=upper-left, software=Google], baseline, precision 8, 500x198, components 3\012- data
Hash 90df1fc89ce72aa002c8fa06992e4a81
6fd292411b05fdec3d90e37583ff1c11e6637252
d89a35d8480a90496bcf883fbe8f072987f8c660a67869aa3d1998a57e5009ea
GET /-4LeOJlOFa2Q/UGwzGEdI2fI/AAAAAAAABY0/xOBkX6TJ-Go/s1600/22.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v32e0"
Expires: Sun, 27 Nov 2022 03:17:57 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="22.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 03:17:57 GMT
Server: fife
Content-Length: 24635
X-XSS-Protection: 0
4198632c-a-62cb3a1a-s-sites.googlegroups.com/site/rhwblogspotcom/javasript/kamera_pengintai.txt?attachauth=ANoY7criWUd_CB__FcwIQuHfJ6gpZZRQJQLZO2aeY6i5tddfpA1upYT_6tsO4GUS_sdpJ2Bf8j-cjR_5PTUg0ml3C8SzC0nIz2wdP3NaTzOV8iRw6lVkdLHj4Pu0sj2orHg8XMA_cEjy8I7FXeDXYCCVdHh7rCYJrJaejhNBTJyrMx0k6YnNwU8LaCocVQ2njvB2OXo719Pz9MAAREalRjRgwwGbyxGwcfQXwhs5Zm8UcEFCRMsZmEE%3D&attredirects=0&d=1
173.194.222.137200 OK 781 B URL HTTP/2 4198632c-a-62cb3a1a-s-sites.googlegroups.com/site/rhwblogspotcom/javasript/kamera_pengintai.txt?attachauth=ANoY7criWUd_CB__FcwIQuHfJ6gpZZRQJQLZO2aeY6i5tddfpA1upYT_6tsO4GUS_sdpJ2Bf8j-cjR_5PTUg0ml3C8SzC0nIz2wdP3NaTzOV8iRw6lVkdLHj4Pu0sj2orHg8XMA_cEjy8I7FXeDXYCCVdHh7rCYJrJaejhNBTJyrMx0k6YnNwU8LaCocVQ2njvB2OXo719Pz9MAAREalRjRgwwGbyxGwcfQXwhs5Zm8UcEFCRMsZmEE%3D&attredirects=0&d=1
IP 173.194.222.137:0
File type HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash fb98baea973257cc18f4dbf4ef4a11bb
02343ce994a1f62e86383966b27ea8762c10fa85
3b78a66dbfe09713aeedeb2144a20cc070691b5c2dddb97a7fe09f4f811873d8
GET /site/rhwblogspotcom/javasript/kamera_pengintai.txt?attachauth=ANoY7criWUd_CB__FcwIQuHfJ6gpZZRQJQLZO2aeY6i5tddfpA1upYT_6tsO4GUS_sdpJ2Bf8j-cjR_5PTUg0ml3C8SzC0nIz2wdP3NaTzOV8iRw6lVkdLHj4Pu0sj2orHg8XMA_cEjy8I7FXeDXYCCVdHh7rCYJrJaejhNBTJyrMx0k6YnNwU8LaCocVQ2njvB2OXo719Pz9MAAREalRjRgwwGbyxGwcfQXwhs5Zm8UcEFCRMsZmEE%3D&attredirects=0&d=1 HTTP/1.1
Host: 4198632c-a-62cb3a1a-s-sites.googlegroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 26 Nov 2022 03:17:57 GMT
last-modified: Fri, 17 Aug 2012 13:53:38 GMT
etag: "1345211618959"
content-disposition: attachment; filename="kamera_pengintai.txt"
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 781
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
scmplayer.net/css/reset.css
104.21.234.157200 OK 383 B URL HTTP/1.1 scmplayer.net/css/reset.css
IP 104.21.234.157:0
File type ASCII text, with very long lines (685), with no line terminators
Hash 3d2c485886a7f2886214ce5076187959
5a701dc54a2d82d00b18e3b461c29e556b5ac9f2
f724643fbdb4348f89fe23783a29e1d2177a7e8bf20ea97d885b4ae46fe05f68
GET /css/reset.css HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scmplayer.net/scm.html
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:17:57 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=815
ETag: W/"5eae4c3d-32f"
Last-Modified: Sun, 03 May 2020 04:44:45 GMT
Vary: Accept-Encoding
X-XSS-Protection: 0
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 6530
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BAQFVZioFghal5lXUVlsrtkGTr0ghpmz50KmYvBiU7CAIGPmifIk2Qa5sTsGuGME5dP4nWF3%2FM%2FspjBIgMto8kL4LnxpCvPVsegCyy%2Fb02dd2fpKhLc%2Fb4wOQtMPzpBS"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76ff79580981777f-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
1.bp.blogspot.com/-JCkekZ9Ye38/T9MWHjY0JwI/AAAAAAAAA-A/YvUETAQbOGI/s1600/4.JPG
142.250.74.161200 OK 56 kB URL HTTP/1.1 1.bp.blogspot.com/-JCkekZ9Ye38/T9MWHjY0JwI/AAAAAAAAA-A/YvUETAQbOGI/s1600/4.JPG
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 500x289, components 3\012- data
Hash 23415825483a40c2125afdd838430296
1701cf7f722b22a64dad4880275e9a2592a89879
c60e17a3cbb70d4d856c05dede6f656bc044deff2d69293ec92678e3a193022d
GET /-JCkekZ9Ye38/T9MWHjY0JwI/AAAAAAAAA-A/YvUETAQbOGI/s1600/4.JPG HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3e0"
Expires: Sun, 27 Nov 2022 03:17:57 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="4.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 03:17:57 GMT
Server: fife
Content-Length: 55593
X-XSS-Protection: 0
scmplayer.net/js/lib/require/require.js
104.21.234.157200 OK 5.7 kB URL HTTP/1.1 scmplayer.net/js/lib/require/require.js
IP 104.21.234.157:0
File type ASCII text, with very long lines (11238)
Hash 9a45f9f89b4253638a25962e5b933047
348a1dc4bf588394471439effdc9d4528d746663
dc8e458816bcb541f8cad897bb3bad2214ee34d114d633e12c4c9a459aa5ac16
GET /js/lib/require/require.js HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scmplayer.net/scm.html
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:17:57 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=14736
ETag: W/"5eae4c3d-3990"
Last-Modified: Sun, 03 May 2020 04:44:45 GMT
X-XSS-Protection: 0
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 5127
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Yx%2Fa0YOl6ROlajDU17lnrb2BhoeFdvZIUCL9gvCtBSWJp8hhWV43TQe8SPwW33U%2F6Fmx%2BLRy%2FyI31PQfsvK6DiFzY7ncYR1Y%2BVNQZQA8X7JM1hpcD6YGwoQaZqF7TZmr"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76ff79582ffe75cc-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
scmplayer.net/js/lib/soundmanager/soundmanager2-nodebug-jsmin.js
104.21.234.157200 OK 11 kB URL HTTP/1.1 scmplayer.net/js/lib/soundmanager/soundmanager2-nodebug-jsmin.js
IP 104.21.234.157:0
File type ASCII text, with very long lines (24442)
Hash 966bdac604adcf791ca0e6cbecad1f9b
77330e1ff8ffa3adc2361ee60c182af1a4e4775f
29c1f52d0d2619ad75db77a6ea3f877db264c6ba3ba192d708a2f67c0303dd1b
GET /js/lib/soundmanager/soundmanager2-nodebug-jsmin.js HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scmplayer.net/scm.html
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:17:57 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=34853
ETag: W/"5eae4c3d-8825"
Last-Modified: Sun, 03 May 2020 04:44:45 GMT
X-XSS-Protection: 0
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 3389
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ezQLrF66vXJuc%2BhqsyrOUIjciHUK7%2BZe0fLzYtNN2Kw4wcfJdkWRMWhbAszVpHKi1ogc%2BOBWl%2F8b5JSYhS98%2BY5G9MvNZaCplZO0LgrigM4CfbmcS1aPyaHqAt%2FMLp9P"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76ff795829ca004e-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3.bp.blogspot.com/-K0BD_gipf-8/UGw5L32rxyI/AAAAAAAABZc/sMalVBRFxWw/s1600/1234.JPG
142.250.74.161200 OK 23 kB URL HTTP/1.1 3.bp.blogspot.com/-K0BD_gipf-8/UGw5L32rxyI/AAAAAAAABZc/sMalVBRFxWw/s1600/1234.JPG
IP 142.250.74.161:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=4, orientation=upper-left, software=Google], baseline, precision 8, 500x181, components 3\012- data
Hash b861cd1df035447af557122774ab3494
194d65db6ecae2e420bf72ed263afc4d8f3701cf
686cd4d60a3ab521db090474804441618c66a0e72cded02d52295a3a3d230886
GET /-K0BD_gipf-8/UGw5L32rxyI/AAAAAAAABZc/sMalVBRFxWw/s1600/1234.JPG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v32e0"
Expires: Sun, 27 Nov 2022 03:17:57 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="1234.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 03:17:57 GMT
Server: fife
Content-Length: 22745
X-XSS-Protection: 0
3.bp.blogspot.com/-PNGw6-f1Fuk/T9MVpX9-_lI/AAAAAAAAA94/1BJ0t-e4r9c/s1600/3.JPG
142.250.74.161200 OK 46 kB URL HTTP/1.1 3.bp.blogspot.com/-PNGw6-f1Fuk/T9MVpX9-_lI/AAAAAAAAA94/1BJ0t-e4r9c/s1600/3.JPG
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 500x253, components 3\012- data
Hash e97b220b52fc05314dd951141c95f580
45375633949fd66c7233a41ed63c2db1b00f4ce1
e52f0d9aa1a6f62b44f9bfb0b5ffc10a6de512759c53c58d259499ac1f71bd72
GET /-PNGw6-f1Fuk/T9MVpX9-_lI/AAAAAAAAA94/1BJ0t-e4r9c/s1600/3.JPG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3de"
Expires: Sun, 27 Nov 2022 03:17:57 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="3.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 03:17:57 GMT
Server: fife
Content-Length: 46269
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash f92478f7e0ef5ffb5bfe1d942c88ce8d
9e3362d9d9b4c7c54ea56950ea1a1604925281a0
375f83cab3d7d75045aaa6c58c101dc81ad3ee4017984321b1a2e25baf9863c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
scmplayer.net/config.js
104.21.234.157200 OK 492 B IP 104.21.234.157:0
File type ASCII text, with very long lines (1178), with no line terminators
Hash d4805b277cde7f5bd2fa5475d0e40c8f
dbadc8ce284f4a8e5c90dda449e1b9cdf83e104a
2fc5e8c9e28c8458e08512002916f059c560756b5ffd1360e1d92d7c4e805952
GET /config.js HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scmplayer.net/scm.html
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:17:57 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=1328
ETag: W/"5eae4c3d-530"
Last-Modified: Sun, 03 May 2020 04:44:45 GMT
X-XSS-Protection: 0
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UwERbRt9CSf5rW%2FpkoGWCQ%2Bsa0k27Qna2TgVBM3xKwA4INhQ7xJBz3v0ujzUWijchHAFA%2BXDfTwRPpBjwfievNNWPAcGwaaBqeV3mFLNnhWGCEJ0ZO%2F%2B5GZ%2BZo5MZVJ%2B"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76ff79581c72065e-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
scmplayer.net/css/scm.css
104.21.234.157200 OK 587 B URL HTTP/1.1 scmplayer.net/css/scm.css
IP 104.21.234.157:0
File type ASCII text, with very long lines (1544), with no line terminators
Hash 673121c659bde1b772594cf8f4b063f7
f2c1fcc87fa5026bcd373bc05693e9ed734b50dd
d9953a5b5aaf1ec90fe8c9c0ba4326bcbfcd21c5dff2580995151575f8820db7
GET /css/scm.css HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scmplayer.net/scm.html
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:17:57 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=1718
etag: W/"5eae4c3d-6b6"
last-modified: Sun, 03 May 2020 04:44:45 GMT
vary: Accept-Encoding
x-xss-protection: 0
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LonjVK2VlFcrEH6w4M4zRy2m95deVQO%2BdsADLBwFoM%2Bj0WjL8g6pVt59GfsJmlAP1LLhrVj3bJjbgo6PTFGKC3EXtLU4130Q5Ww1j9t664tNyn8Q27VpHLj%2FPMswblqh"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76ff79582dd6dd86-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
scmplayer.net/js/lib/require/text.js
104.21.234.157200 OK 1.9 kB URL HTTP/1.1 scmplayer.net/js/lib/require/text.js
IP 104.21.234.157:0
File type ASCII text, with very long lines (733)
Hash 1b798a4c31e6ac1c1a2d6ccd0cfc6436
8e4718159834d1d60f6fad947f930d9e778fe801
b0d8391f0ae7236541029940490ca6a731e4a6b4337c2e20d01c06594036c973
GET /js/lib/require/text.js HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scmplayer.net/scm.html
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:17:57 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=12340
ETag: W/"5eae4c3d-3034"
Last-Modified: Sun, 03 May 2020 04:44:45 GMT
X-XSS-Protection: 0
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 6323
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9qAua%2FzL3GsofuGgBXBwtTu2weKCLl9epN%2FRDm07U2exDAJzrF753AoLJElGdPK2nUuJdNX7RUWXW5naP%2FuLhLpPx1LUmQoPk%2FkHG5PsPKaf66i67oF9iaKIAfSKs0Ie"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76ff79599a2f004e-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
scmplayer.net/js/binding/slider.js
104.21.234.157200 OK 432 B URL HTTP/1.1 scmplayer.net/js/binding/slider.js
IP 104.21.234.157:0
File type ASCII text, with very long lines (392)
Hash 16c110cd292252187862b9c09f0462ba
2fda42507b202e41b27497057f43c4f9f5c1379d
ce9014ddebf86472b386d9d91d9d79b48db73b872d703568bc1617d873a4ec99
GET /js/binding/slider.js HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scmplayer.net/scm.html
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:17:57 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=1385
ETag: W/"5eae4c3d-569"
Last-Modified: Sun, 03 May 2020 04:44:45 GMT
X-XSS-Protection: 0
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 6323
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6FNs2eFv5WgeHBxH6qg35K8PqizyABTyrwmiGEacuw8kwYR5JRp8Y3r%2BZLnTa0auV9fY6qZINCbGbuKTmxviMB1TxDWCI7x3hJz0sUDMFqnIXRtwVExXHpDhU%2BmSp1Dg"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76ff7959ad14065e-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
scmplayer.net/js/scm.js
104.21.234.157200 OK 1.4 kB IP 104.21.234.157:0
File type ASCII text, with very long lines (824)
Hash 7422c40749c8f8d88ceaf1a6341ed6f0
fd95d3302b0057ca2b4baea12790ad5fd5b530e2
ca87740d943334030125a2775b5e4916d49fbdbf4e5ff83ab6b64b68350f3f88
GET /js/scm.js HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scmplayer.net/scm.html
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:17:57 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=5284
ETag: W/"5eae4c3d-14a4"
Last-Modified: Sun, 03 May 2020 04:44:45 GMT
X-XSS-Protection: 0
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 2431
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1%2FyNOs8raFbQAVhfPmqaRr4Qroa43ht7zGWU8PNgWS04S7bnsFZawKD98LBRRyfSE9WqIO6nSjROPBpO8c6BcdveQG%2FGkl%2Bzc3ZbsEykAHoekDFk9fb0171AexhhMzd0"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76ff7959a8bf75cc-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
scmplayer.net/js/song.js
104.21.234.157200 OK 188 B IP 104.21.234.157:0
File type ASCII text, with no line terminators
Hash b05f7dc918523511d309d58fc7e2d1f4
3a30ec6847ddf662936d265d581dfa6f13fa8e3c
87677a05a64758732ab5becce417f38f66e653d5e3494ab95b78c5a78062c920
GET /js/song.js HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scmplayer.net/scm.html
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:17:57 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=341
etag: W/"5eae4c3d-155"
last-modified: Sun, 03 May 2020 04:44:45 GMT
x-xss-protection: 0
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 4981
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=93Cd10qncCFIrHSoxDN2pLw%2FeooxIgYG2hFOJWRXmsibFnoeHElmQbWtVnbB8xfT1CHRuKKgKOfLXrZUa3aQsEJ8Y4zR1R3TvmRyNWDXiIJcsuprHTv4U1Lf8xmuKGVw"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76ff7959aacc777f-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.blogger.com/dyn-css/authorization.css?targetBlogID=4710558400597784832&zx=6d27326f-eef4-4440-9429-0c2c420d3012
216.58.207.201200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=4710558400597784832&zx=6d27326f-eef4-4440-9429-0c2c420d3012
IP 216.58.207.201:0
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=4710558400597784832&zx=6d27326f-eef4-4440-9429-0c2c420d3012 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 26 Nov 2022 03:17:57 GMT
last-modified: Sat, 26 Nov 2022 03:17:57 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/knockout/2.1.0/knockout-min.js
104.17.24.14200 OK 13 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/knockout/2.1.0/knockout-min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (625)
Hash 6ef835bd00cff38324f628d4b181652d
a91a323351bc0946184cf0c46985c7c3da11e15f
d7f302d4aab692a5dde8e09db6be7916083f135c40051314c6e16b414f2b3479
GET /ajax/libs/knockout/2.1.0/knockout-min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://scmplayer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 03:17:57 GMT
content-type: application/javascript; charset=utf-8
content-length: 12965
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ecf-a16e"
last-modified: Mon, 04 May 2020 16:11:59 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 17822759
expires: Thu, 16 Nov 2023 03:17:57 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3kKsu%2BnIQmgvLaNiJ3I86TWa2WOPzOfse68%2F6wCPrOlwFFuz4RaDUcpTw97FHBjKX1xQi7fGMaCC%2Fp%2BGDUIuKwdJtJJ28tgUi4ElV0ZiP9nHM2VIuQvygqYpXZMM7i%2B2B5H3WxvD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76ff7959ccabb4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/underscore.js/1.4.1/underscore-min.js
104.17.24.14200 OK 4.2 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/underscore.js/1.4.1/underscore-min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (13248)
Hash 2776d3ba8ff975fa7d523bf9df52f619
45e58f8d652fa7eb4912d346d9e6dfdf1361dd64
10dd1e10341be5f8e33bbe15bd86169e16ccd5648179a38ef98ad89ee7fc906d
GET /ajax/libs/underscore.js/1.4.1/underscore-min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://scmplayer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 03:17:57 GMT
content-type: application/javascript; charset=utf-8
content-length: 4171
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04015-3476"
last-modified: Mon, 04 May 2020 16:17:25 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 10700595
expires: Thu, 16 Nov 2023 03:17:57 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FZTOzKnj8EhTqHHwPLhrum3uRen9Lri%2BcBBcZL4p1v2JW57Jc5IQ4P%2FUoZ0joozk1dQmMD9odG0Q324cQcwxFjnzu088NyI2b5Stoun2nk05tR2pP6gP91jKGi2oliM43Jmy07t7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76ff7959ccadb4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
scmplayer.net/js/lib/knockout/pauseable.js
104.21.234.157200 OK 695 B URL HTTP/1.1 scmplayer.net/js/lib/knockout/pauseable.js
IP 104.21.234.157:0
File type ASCII text, with very long lines (324)
Hash e69445ccb6dee4e58d82de047e9ca806
85f3738d9686274add34cd4ba944f2b614099056
561c1c54f753fab39050328367e4c67d7d83d2bd76f3517f711aad27fe8e1527
GET /js/lib/knockout/pauseable.js HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scmplayer.net/scm.html
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:17:57 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=3551
ETag: W/"5eae4c3d-ddf"
Last-Modified: Sun, 03 May 2020 04:44:45 GMT
X-XSS-Protection: 0
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 3696
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HTiVZy6MviKK02jib9XITkT7qyYTyO%2B0IcYANRJKNJ4gog%2BDQJClqcc9QjG1Gk6JmWboEGsoH3nEYW9nPHP%2FyTmdPfL0vobNlv4RnMF1cm8Rjs%2FfBzDGRJ4SgB5qmm%2FQ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76ff7959ed2f065e-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
doelasthackerx-cdsiverz.blogspot.com/
142.250.74.161304 Not Modified 0 B URL HTTP/1.1 doelasthackerx-cdsiverz.blogspot.com/
IP 142.250.74.161:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: doelasthackerx-cdsiverz.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scmplayer.net/
Upgrade-Insecure-Requests: 1
If-Modified-Since: Tue, 07 Dec 2021 17:06:17 GMT
If-None-Match: W/"6a794b0bc53d41331929e31a04e6ef790c09a782d4789e73e179631eef2828f1"
HTTP/1.1 304 Not Modified
Expires: Sat, 26 Nov 2022 03:17:57 GMT
Date: Sat, 26 Nov 2022 03:17:57 GMT
Cache-Control: private, max-age=0
ETag: W/"6a794b0bc53d41331929e31a04e6ef790c09a782d4789e73e179631eef2828f1"
Server: GSE
scmplayer.net/js/binding/scm.js
104.21.234.157200 OK 892 B URL HTTP/1.1 scmplayer.net/js/binding/scm.js
IP 104.21.234.157:0
File type ASCII text, with very long lines (628)
Hash 4d7d72a745dd2851af56173e26bcc5e2
dd1bfaa8af5554c261fa0e57621d9b32a8b68b4c
e7e5439064298179bd05b2bc92c39908cb8be71f61f5a49cff34e049348f43a9
GET /js/binding/scm.js HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scmplayer.net/scm.html
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:17:57 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=3415
ETag: W/"5eae4c3d-d57"
Last-Modified: Sun, 03 May 2020 04:44:45 GMT
X-XSS-Protection: 0
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MFhB%2F5UjZxSfJqNyCXUjKpQ5PbSbzLYp1ioQpJKIo2qHWCjeMyP%2FIq15%2BuQm3SASC0fHN%2Bag%2B%2FcsZkNX6P%2FxOGC3vumwi4ku9d%2B%2Fgs2Bd99q7DfBNS60FivfzKJUiC0%2B"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76ff7959da39004e-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
scmplayer.net/js/scm.ui.js
104.21.234.157200 OK 559 B URL HTTP/1.1 scmplayer.net/js/scm.ui.js
IP 104.21.234.157:0
File type ASCII text, with very long lines (895)
Hash fdaf740934bbaa15c2ba2d95c9a3c4e9
393e0520541ac9e603b10171f32f806af782942e
356669285df603f35da8065ee859983deac1538229562619b60de7867c104cbf
GET /js/scm.ui.js HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scmplayer.net/scm.html
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:17:57 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=1592
ETag: W/"5eae4c3d-638"
Last-Modified: Sun, 03 May 2020 04:44:45 GMT
X-XSS-Protection: 0
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RUVmJ5MFE32%2BZmLgEua3D6TQGHdn%2FaYrOMqW4AnPa%2FKgEfOZYBYi%2BpyFCWVGYXokD%2BxmzkgU%2BcFGpMuHuZXSqvTt2Sl8eJd0hfdl%2BUJPzap6fJkVMp6yxgIpr5U80HOH"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76ff7959aeaedd86-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
scmplayer.net/js/view/player.html
104.21.234.157200 OK 685 B URL HTTP/1.1 scmplayer.net/js/view/player.html
IP 104.21.234.157:0
File type HTML document, ASCII text
Hash 4cad1917d0de82050055cf644766e9e2
87ae1dc408aa2c71cf44692c99dc20b0b9ab65f8
675198bea60c2587ebda5a0dc7db08287cfd24eca3f110daa33774e8e43f064e
GET /js/view/player.html HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scmplayer.net/scm.html
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:17:57 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 03 May 2020 04:44:45 GMT
Vary: Accept-Encoding
X-XSS-Protection: 0
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qYQekqHCqgJFBP2fG5pVBRsy%2B48s%2BJv3eyNeXL4O0DREjdlrFIyUWGDu5%2B42LxR0YNeDikylvZ99sAr9vgrD9qySSjx6YKhRptUcDtlgk4V7hkexrlgcEkxElkobVyOL"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76ff7959e8dd75cc-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
scmplayer.net/js/view/playlist.html
104.21.234.157200 OK 497 B URL HTTP/1.1 scmplayer.net/js/view/playlist.html
IP 104.21.234.157:0
File type exported SGML document, ASCII text
Hash 6a8804f1d346e209cd05e974ffadcdde
788802c6890a7a80ba10ccfd20397a5bd81905b8
00387952e61daebdd010fb3c09b3fb7afa7a18a1a66a308bca9d18a005ed444f
GET /js/view/playlist.html HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scmplayer.net/scm.html
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:17:57 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 03 May 2020 08:28:11 GMT
Vary: Accept-Encoding
X-XSS-Protection: 0
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d%2BGmsnyHx6jDODXQTpAO4WjS4eFzsZYa4h9Ee%2BzfC8HdsQzLigt%2FwcKPaAYNcJVkd%2BbY72bY2fe9bK0hDtp5p8c9R8gwWERHfhxfGc0wBjqzE1YUwuUFGu2SyP9kF0%2FK"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76ff7959eaea777f-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
fonts.gstatic.com/s/rancho/v17/46kulbzmXjLaqZRVam_h.woff2
216.58.207.195200 OK 20 kB URL HTTP/1.1 fonts.gstatic.com/s/rancho/v17/46kulbzmXjLaqZRVam_h.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 20540, version 1.0\012- data
Hash 7de3315082ccf61c77635e1b1aec8dcd
c82cbdd870334e973e38dcea26a99b88dc86b1b4
d7ac978e6a882c1fd3827df0b4d1aaa8d520e413fce6e5071a392279a2cc1d0c
GET /s/rancho/v17/46kulbzmXjLaqZRVam_h.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://doelasthackerx-cdsiverz.blogspot.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 20540
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 19 Nov 2022 06:40:28 GMT
Expires: Sun, 19 Nov 2023 06:40:28 GMT
Cache-Control: public, max-age=31536000
Age: 592649
Last-Modified: Tue, 19 Apr 2022 20:04:28 GMT
Content-Type: font/woff2
www.blogger.com/img/logo-16.png
216.58.207.201200 OK 279 B URL HTTP/1.1 www.blogger.com/img/logo-16.png
IP 216.58.207.201:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 5ffecab6c722bb0adc3fce8d83b27993
0e59b05d3da526e82bb4f5d47c5d94e2a318dafb
cca664ca16fde285160e80eae6ba4501c27b1dd1ce09aec1e84caa74b5baff53
GET /img/logo-16.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 279
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 04:27:52 GMT
Expires: Wed, 30 Nov 2022 04:27:52 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 22 Nov 2022 07:51:00 GMT
Content-Type: image/png
Age: 255005
4.bp.blogspot.com/-7Fdqy2FxXto/UOytYsl7koI/AAAAAAAAC4k/0oTBMBiHj-M/s000/logobox.png
142.250.74.161200 OK 786 B URL HTTP/1.1 4.bp.blogspot.com/-7Fdqy2FxXto/UOytYsl7koI/AAAAAAAAC4k/0oTBMBiHj-M/s000/logobox.png
IP 142.250.74.161:0
File type PNG image data, 477 x 95, 8-bit/color RGBA, non-interlaced\012- data
Hash 06b6d13eee01203d692a7a574e80fb92
c1cbd8f6f096e0f4d3abacce2b9d9e0c8306aa87
5ddf879434a1d1e679c195ef4412bcfc760260194c30c7ea4adeec13bcaaaf5f
GET /-7Fdqy2FxXto/UOytYsl7koI/AAAAAAAAC4k/0oTBMBiHj-M/s000/logobox.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="logobox.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 786
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 03:17:57 GMT
Expires: Thu, 17 Nov 2022 09:11:51 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vb89"
Content-Type: image/png
Age: 0
4.bp.blogspot.com/-ublTFjCIGtY/UOytccOkABI/AAAAAAAAC5c/YrQIz2vwkk0/s000/k.gif
142.250.74.161200 OK 573 B URL HTTP/1.1 4.bp.blogspot.com/-ublTFjCIGtY/UOytccOkABI/AAAAAAAAC5c/YrQIz2vwkk0/s000/k.gif
IP 142.250.74.161:0
File type GIF image data, version 89a, 13 x 13\012- data
Hash 51318e07af828209d0c27b1ffc7ff56b
5fab49501f4e53f22d06269978412a459c0d24a0
b783728e0ad3e4b783a78013563291459d6b4111ab3c93e25065b42d32126162
GET /-ublTFjCIGtY/UOytccOkABI/AAAAAAAAC5c/YrQIz2vwkk0/s000/k.gif HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="k.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 573
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 03:17:57 GMT
Expires: Thu, 24 Nov 2022 05:28:01 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v143f"
Content-Type: image/gif
Age: 0
1.bp.blogspot.com/-fQuEtlVIZmU/UOytYAc7nxI/AAAAAAAAC4c/0SzqidP7xRk/s000/o3f1388bguwa.jpg
142.250.74.161200 OK 111 kB URL HTTP/1.1 1.bp.blogspot.com/-fQuEtlVIZmU/UOytYAc7nxI/AAAAAAAAC4c/0SzqidP7xRk/s000/o3f1388bguwa.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 800x800, components 3\012- data
Size 111 kB (111377 bytes)
Hash efd27b78351e21e9cfb496d2594dfeb7
6c708816c65c59d9958f60c1b02441667c01262a
bc6c75155ffcb3e66bc0c6d56120ff219745a72fcf3ca2249793b809b085bd4c
GET /-fQuEtlVIZmU/UOytYAc7nxI/AAAAAAAAC4c/0SzqidP7xRk/s000/o3f1388bguwa.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="o3f1388bguwa.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 111377
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 03:17:57 GMT
Expires: Fri, 25 Nov 2022 06:13:08 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vb87"
Content-Type: image/jpeg
Age: 0
1.bp.blogspot.com/-nUWj1hHCZ50/UOytbmUU16I/AAAAAAAAC5U/ILOBtFlhKuU/s000/narutofnew-h2.jpg
142.250.74.161200 OK 805 B URL HTTP/1.1 1.bp.blogspot.com/-nUWj1hHCZ50/UOytbmUU16I/AAAAAAAAC5U/ILOBtFlhKuU/s000/narutofnew-h2.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 29x28, components 3\012- data
Hash 442c1f8d37221591d89ff6ae9d4ca877
5c12879cf98b18b943915dae3a6ca7a96a9b1416
27c1f296963d0156abbca14372459e4ddc9e78d07036f692da2c7a01e8fc025c
GET /-nUWj1hHCZ50/UOytbmUU16I/AAAAAAAAC5U/ILOBtFlhKuU/s000/narutofnew-h2.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="narutofnew-h2.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 805
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 03:17:57 GMT
Expires: Sat, 26 Nov 2022 22:12:53 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vb95"
Content-Type: image/jpeg
Age: 0
fonts.gstatic.com/s/metamorphous/v18/Wnz8HA03aAXcC39ZEX5y133EOyqs.woff2
216.58.207.195200 OK 23 kB URL HTTP/1.1 fonts.gstatic.com/s/metamorphous/v18/Wnz8HA03aAXcC39ZEX5y133EOyqs.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23100, version 1.0\012- data
Hash 63f7001df33da71a26c8e90cd9aea4e2
3af20c96203f771ffc01e56620d6172042757c8d
8254a00416dd6f08b633e72eaa427edbc4142a5046ed83914ea7796ec946d670
GET /s/metamorphous/v18/Wnz8HA03aAXcC39ZEX5y133EOyqs.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://doelasthackerx-cdsiverz.blogspot.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 23100
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 21 Nov 2022 17:16:10 GMT
Expires: Tue, 21 Nov 2023 17:16:10 GMT
Cache-Control: public, max-age=31536000
Age: 381707
Last-Modified: Tue, 26 Apr 2022 14:37:41 GMT
Content-Type: font/woff2
scmplayer.net/js/playback/youtube.js
104.21.234.157200 OK 862 B URL HTTP/1.1 scmplayer.net/js/playback/youtube.js
IP 104.21.234.157:0
File type ASCII text, with very long lines (424)
Hash f6628ea844e3d2807a93b9574eb2370d
dc9de6d793515e26d0b8e71e0a091c6ff5b9f677
d7e04e25641a43f9c7009b571334fe4ff9a6b593fe859f5c57e185cbaed2e117
GET /js/playback/youtube.js HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scmplayer.net/scm.html
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:17:57 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=2131
etag: W/"5eae4c3d-853"
last-modified: Sun, 03 May 2020 04:44:45 GMT
x-xss-protection: 0
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 6322
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U9tbmharjiUMUj1DyfWJmXP7U3HHerBw3NXS8Wq26MKqu1QraHs7EGHsPnbVUrwOtL8OL0K16j11dquoj0kF2WzPn1pWhQb8RF0TnBN7hfCL5S%2FnShgCfM6m%2FXbLqj4P"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76ff795bdab1004e-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
scmplayer.net/skins/black/skin.css
104.21.234.157200 OK 383 B URL HTTP/1.1 scmplayer.net/skins/black/skin.css
IP 104.21.234.157:0
File type ASCII text, with very long lines (1030), with no line terminators
Hash a490c1d46aa7069ff5f5839bea9424d2
741521a7b0be1d5c8884c92378203fce984ea7eb
bf0ac7df960defdf920da1e75be3240a18af9a16bddc0d21bad21319c93fffc2
GET /skins/black/skin.css HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scmplayer.net/scm.html
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:17:57 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=1179
etag: W/"5eae4c3d-49b"
last-modified: Sun, 03 May 2020 04:44:45 GMT
vary: Accept-Encoding
x-xss-protection: 0
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 5916
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RpGoLvd6rMYH8frTrze%2BO6OYxrEasJWcG601v1me1BBEyzaIObHRqb9lSeL5G7vCrInCNBET5Ic1BvjXVcJfJ5efbUSLFRaTtGjcv%2FvF1NYak6Fi6ea13ZgmOYMjTvmW"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76ff795bd9f775cc-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
scmplayer.net/skins/black/bar.jpg
104.21.234.157200 OK 679 B URL HTTP/1.1 scmplayer.net/skins/black/bar.jpg
IP 104.21.234.157:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 4x22, components 3\012- data
Hash 1ac2ce5bb07624d28636ff061790f010
28992f1fdf7596ef6733f86dce439275bb1b9e14
cbdadaa09778eac8e8190ea1ea38966efa1600fe866a63067d28219cbf71df29
GET /skins/black/bar.jpg HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scmplayer.net/skins/black/skin.css
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:17:57 GMT
Content-Type: image/jpeg
Content-Length: 679
Connection: keep-alive
Last-Modified: Sun, 03 May 2020 04:44:45 GMT
ETag: "5eae4c3d-2a7"
X-XSS-Protection: 0
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 3452
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ML4TyU83AVUVfYQIa45l9XHgHLUD3d84a2437nzpGqvMcguud9rySX2vdhWh2VoV0TYeSkYB%2FWKe8L%2F6cb6C3L4%2FqDy4W1sK7xLO8aJTrGAIjMEwpIcj3Oo2JLjxs3hu"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76ff795c2e63065e-LHR
alt-svc: h2=":443"; ma=60
scmplayer.net/skins/black/playBtn.png
104.21.234.157200 OK 1.2 kB URL HTTP/1.1 scmplayer.net/skins/black/playBtn.png
IP 104.21.234.157:0
File type PNG image data, 26 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash e81de7fda53cf98024bdb062426248a4
d3839bdd127d54db3cd1a5472692817cdb08d18a
07f2b97387b09fbdb2274ed2b1cf2bf1d1246a0d5f414c3c7a3fd7267a629c67
GET /skins/black/playBtn.png HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scmplayer.net/skins/black/skin.css
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:17:57 GMT
Content-Type: image/png
Content-Length: 1238
Connection: keep-alive
Last-Modified: Sun, 03 May 2020 04:44:45 GMT
ETag: "5eae4c3d-4d6"
X-XSS-Protection: 0
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 3373
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NGGKMg5UZjThXn7v8tF9H6abNi6X0eC66OH5fO%2BAGkejp2lPi%2BBf4xelM%2BL%2Fao3dnCQIIKQnqqMzZaewi%2FpImHZt0KZywD3GQQV6rJHgFS0Vcv39pGG8%2BIlVhqO2UueT"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76ff795c2a2375cc-LHR
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
scmplayer.net/skins/black/sizerAndVol.png
104.21.234.157200 OK 462 B URL HTTP/1.1 scmplayer.net/skins/black/sizerAndVol.png
IP 104.21.234.157:0
File type PNG image data, 9 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 62fd8bf99b8646c936671f5b0eaa4ce2
e0f1124b8cbaada18c8cc828f97291f3996a9253
163c707dfad341d8cec66dd74a263484c3682aee300ff3e44ee550ded70b6b76
GET /skins/black/sizerAndVol.png HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scmplayer.net/skins/black/skin.css
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:17:57 GMT
Content-Type: image/png
Content-Length: 462
Connection: keep-alive
last-modified: Sun, 03 May 2020 04:44:45 GMT
etag: "5eae4c3d-1ce"
x-xss-protection: 0
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S6hJ9y5azwMP2N7SLeMMX1o97MWUUc5gtBb%2F69%2BaUig3dya3v4i%2BdR4V%2BWtuzgVIDhOEnFEPT1oh71CGXqzis0qTA9L4gzHsCL8MzuqSdcqiHOH7k7pM3YkmNG60t%2Fvq"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76ff795c2ac8004e-LHR
alt-svc: h2=":443"; ma=60
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Nov 2022 12:31:58 GMT
expires: Sun, 19 Nov 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 571559
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
scmplayer.net/skins/black/main.png
104.21.234.157200 OK 4.9 kB URL HTTP/1.1 scmplayer.net/skins/black/main.png
IP 104.21.234.157:0
File type PNG image data, 300 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 061d2bd369b1d85bc4d2646e2fa00ff4
87f41c7fd8a14ee4df1052f2097796275be4d637
cf6f72b70c5f0918d69d8bb7f3afc7da7e8d0f3541e4b29d538df27fa3320d56
GET /skins/black/main.png HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scmplayer.net/skins/black/skin.css
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:17:57 GMT
Content-Type: image/png
Content-Length: 4870
Connection: keep-alive
last-modified: Sun, 03 May 2020 04:44:45 GMT
etag: "5eae4c3d-1306"
x-xss-protection: 0
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L38J5wgOMQqGxfo%2BPqLgfPfKrUsmw6wwa86FAvAu5SEKrauF%2BoXpPvqwhUuJKGSQgdeu19NpBHjhGqG58PDhARPx29LyVun9xR4KssGOf5QvdONXD0GpdI561ON0y3ns"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76ff795c2c52777f-LHR
alt-svc: h2=":443"; ma=60
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 21:46:16 GMT
expires: Fri, 24 Nov 2023 21:46:16 GMT
cache-control: public, max-age=31536000
age: 106301
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19497
Expires: Sat, 26 Nov 2022 08:42:55 GMT
Date: Sat, 26 Nov 2022 03:17:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19497
Expires: Sat, 26 Nov 2022 08:42:55 GMT
Date: Sat, 26 Nov 2022 03:17:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19497
Expires: Sat, 26 Nov 2022 08:42:55 GMT
Date: Sat, 26 Nov 2022 03:17:58 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2bfe2d23-9843-4fb7-b46a-fd8ffd7bce9a.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2bfe2d23-9843-4fb7-b46a-fd8ffd7bce9a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d30923b7d20eeb37527255c3ee1da34f
bed54bd4f659fbf29834b262e9179df7e7bc56a6
3110f22342b17a7b1d30bd53350e6a11fd6032d97bccf4206e4a27d6e332c79b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2bfe2d23-9843-4fb7-b46a-fd8ffd7bce9a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9011
x-amzn-requestid: f0e83373-0f65-4358-a902-45f2e9c24c24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLUfPHzAoAMF4ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813461-19e037da49c44e4363bbe8f0;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:32:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: N2zsqycYk04GXPSMhxJKCrX84Asqzq8UNIFTYg2hJllP4fTGXzwEuA==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:16:10 GMT
age: 18108
etag: "bed54bd4f659fbf29834b262e9179df7e7bc56a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
34.120.237.76200 OK 3.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a783df85f30f9c555f9df6b99f61744d
61f9bed607e81606be78285596acdc5e0e4f4994
19db42201d0fa059f680d890ede6683c04e893e6308a2256d0203f826a7f34de
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3502
x-amzn-requestid: ca3f2610-e03c-48a7-abb3-fbbab76f63d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYUHO5IAMFqDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-7e36137711dc4668278c1c94;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: SRN-oOfa8Z0mQZFYkWAv32XFiXChfGjfwZkfWz-IzHubwrKgzwoTxQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 06:35:07 GMT
age: 74571
etag: "61f9bed607e81606be78285596acdc5e0e4f4994"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3b1c6878914466cfece680fa7cb73502
47fac81a2dd809df5c42ca1362f71d553572d2b1
6458883dfa2bdfd483e92e5f847a229508ef00ce1dbd11f49eec369d0bd3160a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9914
x-amzn-requestid: 4db4ed29-20b4-4ca7-8835-2463d0989d5b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVFHQYIAMFc4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135b9-613da006118724124e345b29;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qKxrYxVsJWOXAbrn6IpwLycF3rknFLkQeDyKOLq5WyflvTLeUjg_Lg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:18:42 GMT
age: 17956
etag: "47fac81a2dd809df5c42ca1362f71d553572d2b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e649ab-6d56-47c9-ab7e-c65d9bdfcffd.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e649ab-6d56-47c9-ab7e-c65d9bdfcffd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 926df9839ec3d924b563b55d8bccace8
c47a3884465fc02b5c57faa5ffbd986ba29c64c2
a97cd625959aa81bc516024628315b2c6e2ce94f76cd579751a686a6611cc4d2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e649ab-6d56-47c9-ab7e-c65d9bdfcffd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6789
x-amzn-requestid: eede6332-5376-4f9c-83fc-f894430c1f4b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLWWYFFgoAMFhaQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381375b-66d7ffc70f7d901420a503da;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:44:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: yM8EHyxy6pUHVZhGUOHuFOU-Z4eTyL2N3Ooa6QMrPlIfp6X5I_JBRw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:46:06 GMT
age: 19912
etag: "c47a3884465fc02b5c57faa5ffbd986ba29c64c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5088223f5973e3cd56f03f50a1e84b79
0b6c9b51d10762a4747286ab5b1c2354fa39c622
8159e4f7eec7bea518bb29e3fdb070bab4fb70116205577f7b7d74ad4d0dfbc7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8913
x-amzn-requestid: d0a9414c-eccf-44e8-adb7-92654544eeb5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLWWXEpeIAMFnzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381375b-5825510666b3e80a5f83cafa;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:44:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: whO__FB0B2ywDP_p63eQ044RXbT207sX1i87I6nPAFUB85nSYc0Cuw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:46:06 GMT
age: 19912
etag: "0b6c9b51d10762a4747286ab5b1c2354fa39c622"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: blE0hGNioAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 04:38:44 GMT
age: 81554
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash a22bc94a1116f343d9c3377cfd4fc5b2
b0bad6a620abd0c33a96c32721ad87849da9f9e6
294cd4b44650b17a93cbe9a4de887ad1da8ab8c11105707cccff17812a8d5890
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 60951c730d96e02c20219f2765873699
64d0ecb0d9001990841e9faa434d9239af4b6927
9eb0e510930409a6eed080afd7759a51ca4ecb58dd30ea04221cea917358f658
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/id
216.58.207.194302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 216.58.207.194:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Sat, 26 Nov 2022 03:17:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.doubleclick.net/instream/ad_status.js
142.250.74.166200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.166:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 03:15:21 GMT
expires: Sat, 26 Nov 2022 03:30:21 GMT
cache-control: public, max-age=900
age: 157
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.202200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.202:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sat, 26 Nov 2022 03:17:58 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d3d2d21ac304813a16da64921ce18ba4
98b1762c675c61eeb18254986461e6b1074ebc92
af00429c189464ddb8df704dc48035421f943444df6ca17390fb97466c2e7e9b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 60951c730d96e02c20219f2765873699
64d0ecb0d9001990841e9faa434d9239af4b6927
9eb0e510930409a6eed080afd7759a51ca4ecb58dd30ea04221cea917358f658
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.202200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.202:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash c8f2668a575751102168431e69552201
36d1dede6c1d2244ec57c9d15e73282bbc83fc85
f4e14423cd759cfe3374f1b7a6e1dde9a33b97281e466905a431acbb9a96afca
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 26 Nov 2022 03:17:58 GMT
server: ESF
cache-control: private
content-length: 30629
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
doelasthackerx-cdsiverz.blogspot.com/favicon.ico
142.250.74.161200 OK 412 B URL HTTP/1.1 doelasthackerx-cdsiverz.blogspot.com/favicon.ico
IP 142.250.74.161:0
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 501c61a70f5c41181aa050d9110909ca
5b985d5671a7caf686fdfb1df13488c4407f6c9f
c4aaf001607ee331f6871b4dbbf45942b1e197726714fd106e46d70cc10ee97e
GET /favicon.ico HTTP/1.1
Host: doelasthackerx-cdsiverz.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
Expires: Sat, 26 Nov 2022 03:17:58 GMT
Date: Sat, 26 Nov 2022 03:17:58 GMT
Cache-Control: private, max-age=86400
Last-Modified: Tue, 07 Dec 2021 17:06:17 GMT
ETag: W/"6a794b0bc53d41331929e31a04e6ef790c09a782d4789e73e179631eef2828f1"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 6e7acc030331e8541a960af15ec2d1a0
db0c57134dfe24c32c89cd8abe0c913c8093ce87
1b685a311d0fe545c8f86e548d227e0f3fe23e4a174f24342901d14557f99ede
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 6e7acc030331e8541a960af15ec2d1a0
db0c57134dfe24c32c89cd8abe0c913c8093ce87
1b685a311d0fe545c8f86e548d227e0f3fe23e4a174f24342901d14557f99ede
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1669454278&ei=ZoWBY4atMs2FyQXKiY7IDQ&ip=91.90.42.154&id=o-AANj4MX2_8t7EI2bNQYDO7L6YEV6Wc8nBHJdyPks3aZU&itag=251&source=youtube&requiressl=yes&mh=IZ&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynlk&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1113750&spc=SFxXNt58ucUBG78nUqDxG8yMAZxO6aY&vprv=1&mime=audio%2Fwebm&ns=nRoMWLtJo91wlpgdzotTSGcJ&gir=yes&clen=6450967&dur=361.441&lmt=1496637407802687&mt=1669432178&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&n=mYG5jJ9rgtEigA&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgMChu9fDCJnlbgDhr7Qbn7jtK7QFu3k7LOeYe5LcLjK4CIBawufDL6-RXaBqp097pLwElbgLvBk7YhWk37kL3pzPg&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIgdbZ0Ydd9F-Lr5kWQPEt25Putq11TEFKvBjCp_F3_QjcCIQCgZKAlfluVrtWKlwWrDGdb8N-QDKESTDXjc36YYSH41g%3D%3D&alr=yes&cpn=E0THX4yHiwueWaIR&cver=1.20221120.00.00&range=0-66433&rn=2&rbuf=0&pot=DxE9-kE8UiAKEQVfGxQ7CwP0cM1u3Dz9WT9JARNLLyCbgZZ9vGem2Auy2-DdTwb6e9cgN6G1zrqiwXOceHhNWnlG9aq5-2zvFIoRLgs05-FEHkolna2r1_lAhh_mSI8UTSzE8Ik=
91.90.45.173200 OK 1.2 kB URL HTTP/1.1 rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1669454278&ei=ZoWBY4atMs2FyQXKiY7IDQ&ip=91.90.42.154&id=o-AANj4MX2_8t7EI2bNQYDO7L6YEV6Wc8nBHJdyPks3aZU&itag=251&source=youtube&requiressl=yes&mh=IZ&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynlk&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1113750&spc=SFxXNt58ucUBG78nUqDxG8yMAZxO6aY&vprv=1&mime=audio%2Fwebm&ns=nRoMWLtJo91wlpgdzotTSGcJ&gir=yes&clen=6450967&dur=361.441&lmt=1496637407802687&mt=1669432178&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&n=mYG5jJ9rgtEigA&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgMChu9fDCJnlbgDhr7Qbn7jtK7QFu3k7LOeYe5LcLjK4CIBawufDL6-RXaBqp097pLwElbgLvBk7YhWk37kL3pzPg&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIgdbZ0Ydd9F-Lr5kWQPEt25Putq11TEFKvBjCp_F3_QjcCIQCgZKAlfluVrtWKlwWrDGdb8N-QDKESTDXjc36YYSH41g%3D%3D&alr=yes&cpn=E0THX4yHiwueWaIR&cver=1.20221120.00.00&range=0-66433&rn=2&rbuf=0&pot=DxE9-kE8UiAKEQVfGxQ7CwP0cM1u3Dz9WT9JARNLLyCbgZZ9vGem2Auy2-DdTwb6e9cgN6G1zrqiwXOceHhNWnlG9aq5-2zvFIoRLgs05-FEHkolna2r1_lAhh_mSI8UTSzE8Ik=
IP 91.90.45.173:0
ASN #50304 Blix Solutions AS
File type ASCII text, with very long lines (1153), with no line terminators
Hash 92b64cbf9b874ca04329804cba500c20
e349cc8700221e56d1e6348fd4c2f9a128efd10d
b1e90bca5233f5e263203ab4e6b4d27db40a7551d2522897a861003c59b49ed5
GET /videoplayback?expire=1669454278&ei=ZoWBY4atMs2FyQXKiY7IDQ&ip=91.90.42.154&id=o-AANj4MX2_8t7EI2bNQYDO7L6YEV6Wc8nBHJdyPks3aZU&itag=251&source=youtube&requiressl=yes&mh=IZ&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynlk&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1113750&spc=SFxXNt58ucUBG78nUqDxG8yMAZxO6aY&vprv=1&mime=audio%2Fwebm&ns=nRoMWLtJo91wlpgdzotTSGcJ&gir=yes&clen=6450967&dur=361.441&lmt=1496637407802687&mt=1669432178&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&n=mYG5jJ9rgtEigA&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgMChu9fDCJnlbgDhr7Qbn7jtK7QFu3k7LOeYe5LcLjK4CIBawufDL6-RXaBqp097pLwElbgLvBk7YhWk37kL3pzPg&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIgdbZ0Ydd9F-Lr5kWQPEt25Putq11TEFKvBjCp_F3_QjcCIQCgZKAlfluVrtWKlwWrDGdb8N-QDKESTDXjc36YYSH41g%3D%3D&alr=yes&cpn=E0THX4yHiwueWaIR&cver=1.20221120.00.00&range=0-66433&rn=2&rbuf=0&pot=DxE9-kE8UiAKEQVfGxQ7CwP0cM1u3Dz9WT9JARNLLyCbgZZ9vGem2Auy2-DdTwb6e9cgN6G1zrqiwXOceHhNWnlG9aq5-2zvFIoRLgs05-FEHkolna2r1_lAhh_mSI8UTSzE8Ik= HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Sat, 26 Nov 2022 03:17:59 GMT
Expires: Sat, 26 Nov 2022 03:17:59 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 1153
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1669454278&ei=ZoWBY4atMs2FyQXKiY7IDQ&ip=91.90.42.154&id=o-AANj4MX2_8t7EI2bNQYDO7L6YEV6Wc8nBHJdyPks3aZU&itag=243&aitags=133%2C134%2C135%2C160%2C242%2C243%2C244%2C278&source=youtube&requiressl=yes&mh=IZ&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynlk&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1113750&spc=SFxXNt58ucUBG78nUqDxG8yMAZxO6aY&vprv=1&mime=video%2Fwebm&ns=nRoMWLtJo91wlpgdzotTSGcJ&gir=yes&clen=3779010&dur=361.333&lmt=1496637523077741&mt=1669432178&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&n=mYG5jJ9rgtEigA&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAPs5gj0QRNzyLhI7jIXi8wfJkj29BDNfsYZzKZPgvyb8AiEAsbS5AsuLbbP1yvwBFXa3fQ4KWpOAlODwF84BfqVrJQo%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIgdbZ0Ydd9F-Lr5kWQPEt25Putq11TEFKvBjCp_F3_QjcCIQCgZKAlfluVrtWKlwWrDGdb8N-QDKESTDXjc36YYSH41g%3D%3D&alr=yes&cpn=E0THX4yHiwueWaIR&cver=1.20221120.00.00&range=0-66923&rn=1&rbuf=0&pot=DxE9-kE8UiAKEQVfGxQ7CwP0cM1u3Dz9WT9JARNLLyCbgZZ9vGem2Auy2-DdTwb6e9cgN6G1zrqiwXOceHhNWnlG9aq5-2zvFIoRLgs05-FEHkolna2r1_lAhh_mSI8UTSzE8Ik=
91.90.45.173200 OK 1.2 kB URL HTTP/1.1 rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1669454278&ei=ZoWBY4atMs2FyQXKiY7IDQ&ip=91.90.42.154&id=o-AANj4MX2_8t7EI2bNQYDO7L6YEV6Wc8nBHJdyPks3aZU&itag=243&aitags=133%2C134%2C135%2C160%2C242%2C243%2C244%2C278&source=youtube&requiressl=yes&mh=IZ&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynlk&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1113750&spc=SFxXNt58ucUBG78nUqDxG8yMAZxO6aY&vprv=1&mime=video%2Fwebm&ns=nRoMWLtJo91wlpgdzotTSGcJ&gir=yes&clen=3779010&dur=361.333&lmt=1496637523077741&mt=1669432178&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&n=mYG5jJ9rgtEigA&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAPs5gj0QRNzyLhI7jIXi8wfJkj29BDNfsYZzKZPgvyb8AiEAsbS5AsuLbbP1yvwBFXa3fQ4KWpOAlODwF84BfqVrJQo%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIgdbZ0Ydd9F-Lr5kWQPEt25Putq11TEFKvBjCp_F3_QjcCIQCgZKAlfluVrtWKlwWrDGdb8N-QDKESTDXjc36YYSH41g%3D%3D&alr=yes&cpn=E0THX4yHiwueWaIR&cver=1.20221120.00.00&range=0-66923&rn=1&rbuf=0&pot=DxE9-kE8UiAKEQVfGxQ7CwP0cM1u3Dz9WT9JARNLLyCbgZZ9vGem2Auy2-DdTwb6e9cgN6G1zrqiwXOceHhNWnlG9aq5-2zvFIoRLgs05-FEHkolna2r1_lAhh_mSI8UTSzE8Ik=
IP 91.90.45.173:0
ASN #50304 Blix Solutions AS
File type ASCII text, with very long lines (1212), with no line terminators
Hash 8690a74c27babe1b29c4046cdfbbdd04
696c8324405f46d42255bc0d239d55ce1bbc5282
6178b4a802c93b04dfc5034ea9a17bc6d1647d9e9250f3d0fb2f01d650ba9285
GET /videoplayback?expire=1669454278&ei=ZoWBY4atMs2FyQXKiY7IDQ&ip=91.90.42.154&id=o-AANj4MX2_8t7EI2bNQYDO7L6YEV6Wc8nBHJdyPks3aZU&itag=243&aitags=133%2C134%2C135%2C160%2C242%2C243%2C244%2C278&source=youtube&requiressl=yes&mh=IZ&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynlk&ms=au%2Crdu&mv=m&mvi=2&pl=21&initcwndbps=1113750&spc=SFxXNt58ucUBG78nUqDxG8yMAZxO6aY&vprv=1&mime=video%2Fwebm&ns=nRoMWLtJo91wlpgdzotTSGcJ&gir=yes&clen=3779010&dur=361.333&lmt=1496637523077741&mt=1669432178&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&n=mYG5jJ9rgtEigA&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAPs5gj0QRNzyLhI7jIXi8wfJkj29BDNfsYZzKZPgvyb8AiEAsbS5AsuLbbP1yvwBFXa3fQ4KWpOAlODwF84BfqVrJQo%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIgdbZ0Ydd9F-Lr5kWQPEt25Putq11TEFKvBjCp_F3_QjcCIQCgZKAlfluVrtWKlwWrDGdb8N-QDKESTDXjc36YYSH41g%3D%3D&alr=yes&cpn=E0THX4yHiwueWaIR&cver=1.20221120.00.00&range=0-66923&rn=1&rbuf=0&pot=DxE9-kE8UiAKEQVfGxQ7CwP0cM1u3Dz9WT9JARNLLyCbgZZ9vGem2Auy2-DdTwb6e9cgN6G1zrqiwXOceHhNWnlG9aq5-2zvFIoRLgs05-FEHkolna2r1_lAhh_mSI8UTSzE8Ik= HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Sat, 26 Nov 2022 03:17:59 GMT
Expires: Sat, 26 Nov 2022 03:17:59 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 1212
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 6e7acc030331e8541a960af15ec2d1a0
db0c57134dfe24c32c89cd8abe0c913c8093ce87
1b685a311d0fe545c8f86e548d227e0f3fe23e4a174f24342901d14557f99ede
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash b3214789d61d3d087275ca7ce604a329
b0a9e164fe5450cd758681c28565c605c47416df
c7a874e0fd8bd637b09b9dd466933ff0e4ac73e0279e774d2350c8fb3718fdd7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 11f21f5b7a8ced43f390356274d20eae
752926a39aa7c8eb577bdcd621f0246997a0a10a
9fc5caab6782001d1d48cd076bbb0197e7cd4d1c7502d59011a0a7f7f9e62d6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 216d858ad02d0f9765e7844973400881
62a1fb9255bfc33b0fbc8960502272a42ecf73f6
f90483fc88bda7a012064641af0cf72c31d2ae7522097e4ac52f0b096b519f79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr3---sn-5go7ynlk.googlevideo.com/videoplayback?expire=1669454278&ei=ZoWBY4atMs2FyQXKiY7IDQ&ip=91.90.42.154&id=o-AANj4MX2_8t7EI2bNQYDO7L6YEV6Wc8nBHJdyPks3aZU&itag=243&aitags=133%2C134%2C135%2C160%2C242%2C243%2C244%2C278&source=youtube&requiressl=yes&spc=SFxXNt58ucUBG78nUqDxG8yMAZxO6aY&vprv=1&mime=video%2Fwebm&ns=nRoMWLtJo91wlpgdzotTSGcJ&gir=yes&clen=3779010&dur=361.333&lmt=1496637523077741&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&n=mYG5jJ9rgtEigA&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAPs5gj0QRNzyLhI7jIXi8wfJkj29BDNfsYZzKZPgvyb8AiEAsbS5AsuLbbP1yvwBFXa3fQ4KWpOAlODwF84BfqVrJQo%3D&alr=yes&cpn=E0THX4yHiwueWaIR&cver=1.20221120.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=IZ&mm=29&mn=sn-5go7ynlk&ms=rdu&mt=1669432656&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhAJSJMXNLmegLVuid5kCiJroqF5vkvn89-oeNMgrizKBxAiEA_TTsqjPBZpRXJ8mWvu8AxOUOH9kZEs0lIZ_ZUV8BsrU%3D&range=0-66923&rn=3&rbuf=0&pot=DxE9-kE8UiAKEQVfGxQ7CwP0cM1u3Dz9WT9JARNLLyCbgZZ9vGem2Auy2-DdTwb6e9cgN6G1zrqiwXOceHhNWnlG9aq5-2zvFIoRLgs05-FEHkolna2r1_lAhh_mSI8UTSzE8Ik=&altitags=242
173.194.6.8200 OK 1.2 kB URL HTTP/1.1 rr3---sn-5go7ynlk.googlevideo.com/videoplayback?expire=1669454278&ei=ZoWBY4atMs2FyQXKiY7IDQ&ip=91.90.42.154&id=o-AANj4MX2_8t7EI2bNQYDO7L6YEV6Wc8nBHJdyPks3aZU&itag=243&aitags=133%2C134%2C135%2C160%2C242%2C243%2C244%2C278&source=youtube&requiressl=yes&spc=SFxXNt58ucUBG78nUqDxG8yMAZxO6aY&vprv=1&mime=video%2Fwebm&ns=nRoMWLtJo91wlpgdzotTSGcJ&gir=yes&clen=3779010&dur=361.333&lmt=1496637523077741&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&n=mYG5jJ9rgtEigA&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAPs5gj0QRNzyLhI7jIXi8wfJkj29BDNfsYZzKZPgvyb8AiEAsbS5AsuLbbP1yvwBFXa3fQ4KWpOAlODwF84BfqVrJQo%3D&alr=yes&cpn=E0THX4yHiwueWaIR&cver=1.20221120.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=IZ&mm=29&mn=sn-5go7ynlk&ms=rdu&mt=1669432656&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhAJSJMXNLmegLVuid5kCiJroqF5vkvn89-oeNMgrizKBxAiEA_TTsqjPBZpRXJ8mWvu8AxOUOH9kZEs0lIZ_ZUV8BsrU%3D&range=0-66923&rn=3&rbuf=0&pot=DxE9-kE8UiAKEQVfGxQ7CwP0cM1u3Dz9WT9JARNLLyCbgZZ9vGem2Auy2-DdTwb6e9cgN6G1zrqiwXOceHhNWnlG9aq5-2zvFIoRLgs05-FEHkolna2r1_lAhh_mSI8UTSzE8Ik=&altitags=242
IP 173.194.6.8:0
File type ASCII text, with very long lines (1238), with no line terminators
Hash 8460887ed18b4d0e26d33836bac718e6
8cebc0b9bfdbe4ce445c54baa67d997c31efef0c
dc4c54bf87d7f6ba862f49513639576af0627a697788665c5730d3ee6d986eb6
GET /videoplayback?expire=1669454278&ei=ZoWBY4atMs2FyQXKiY7IDQ&ip=91.90.42.154&id=o-AANj4MX2_8t7EI2bNQYDO7L6YEV6Wc8nBHJdyPks3aZU&itag=243&aitags=133%2C134%2C135%2C160%2C242%2C243%2C244%2C278&source=youtube&requiressl=yes&spc=SFxXNt58ucUBG78nUqDxG8yMAZxO6aY&vprv=1&mime=video%2Fwebm&ns=nRoMWLtJo91wlpgdzotTSGcJ&gir=yes&clen=3779010&dur=361.333&lmt=1496637523077741&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&n=mYG5jJ9rgtEigA&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAPs5gj0QRNzyLhI7jIXi8wfJkj29BDNfsYZzKZPgvyb8AiEAsbS5AsuLbbP1yvwBFXa3fQ4KWpOAlODwF84BfqVrJQo%3D&alr=yes&cpn=E0THX4yHiwueWaIR&cver=1.20221120.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=IZ&mm=29&mn=sn-5go7ynlk&ms=rdu&mt=1669432656&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhAJSJMXNLmegLVuid5kCiJroqF5vkvn89-oeNMgrizKBxAiEA_TTsqjPBZpRXJ8mWvu8AxOUOH9kZEs0lIZ_ZUV8BsrU%3D&range=0-66923&rn=3&rbuf=0&pot=DxE9-kE8UiAKEQVfGxQ7CwP0cM1u3Dz9WT9JARNLLyCbgZZ9vGem2Auy2-DdTwb6e9cgN6G1zrqiwXOceHhNWnlG9aq5-2zvFIoRLgs05-FEHkolna2r1_lAhh_mSI8UTSzE8Ik=&altitags=242 HTTP/1.1
Host: rr3---sn-5go7ynlk.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Sat, 26 Nov 2022 03:17:59 GMT
Expires: Sat, 26 Nov 2022 03:17:59 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 1238
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr3---sn-5go7ynlk.googlevideo.com/videoplayback?expire=1669454278&ei=ZoWBY4atMs2FyQXKiY7IDQ&ip=91.90.42.154&id=o-AANj4MX2_8t7EI2bNQYDO7L6YEV6Wc8nBHJdyPks3aZU&itag=251&source=youtube&requiressl=yes&spc=SFxXNt58ucUBG78nUqDxG8yMAZxO6aY&vprv=1&mime=audio%2Fwebm&ns=nRoMWLtJo91wlpgdzotTSGcJ&gir=yes&clen=6450967&dur=361.441&lmt=1496637407802687&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&n=mYG5jJ9rgtEigA&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgMChu9fDCJnlbgDhr7Qbn7jtK7QFu3k7LOeYe5LcLjK4CIBawufDL6-RXaBqp097pLwElbgLvBk7YhWk37kL3pzPg&alr=yes&cpn=E0THX4yHiwueWaIR&cver=1.20221120.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=IZ&mm=29&mn=sn-5go7ynlk&ms=rdu&mt=1669432656&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgGymQW_zFtsNsLsndCH6Ikl7BkN3bG7AnnNahs1JIh3oCIQD2DomtQ5k6QV-PZt_K_iuH1vSCdwQ9G747y9H246g_oA%3D%3D&range=0-66433&rn=4&rbuf=0&pot=DxE9-kE8UiAKEQVfGxQ7CwP0cM1u3Dz9WT9JARNLLyCbgZZ9vGem2Auy2-DdTwb6e9cgN6G1zrqiwXOceHhNWnlG9aq5-2zvFIoRLgs05-FEHkolna2r1_lAhh_mSI8UTSzE8Ik=
173.194.6.8200 OK 1.2 kB URL HTTP/1.1 rr3---sn-5go7ynlk.googlevideo.com/videoplayback?expire=1669454278&ei=ZoWBY4atMs2FyQXKiY7IDQ&ip=91.90.42.154&id=o-AANj4MX2_8t7EI2bNQYDO7L6YEV6Wc8nBHJdyPks3aZU&itag=251&source=youtube&requiressl=yes&spc=SFxXNt58ucUBG78nUqDxG8yMAZxO6aY&vprv=1&mime=audio%2Fwebm&ns=nRoMWLtJo91wlpgdzotTSGcJ&gir=yes&clen=6450967&dur=361.441&lmt=1496637407802687&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&n=mYG5jJ9rgtEigA&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgMChu9fDCJnlbgDhr7Qbn7jtK7QFu3k7LOeYe5LcLjK4CIBawufDL6-RXaBqp097pLwElbgLvBk7YhWk37kL3pzPg&alr=yes&cpn=E0THX4yHiwueWaIR&cver=1.20221120.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=IZ&mm=29&mn=sn-5go7ynlk&ms=rdu&mt=1669432656&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgGymQW_zFtsNsLsndCH6Ikl7BkN3bG7AnnNahs1JIh3oCIQD2DomtQ5k6QV-PZt_K_iuH1vSCdwQ9G747y9H246g_oA%3D%3D&range=0-66433&rn=4&rbuf=0&pot=DxE9-kE8UiAKEQVfGxQ7CwP0cM1u3Dz9WT9JARNLLyCbgZZ9vGem2Auy2-DdTwb6e9cgN6G1zrqiwXOceHhNWnlG9aq5-2zvFIoRLgs05-FEHkolna2r1_lAhh_mSI8UTSzE8Ik=
IP 173.194.6.8:0
File type ASCII text, with very long lines (1162), with no line terminators
Hash af8699805684194a8df9bb44c3d3a386
a32f6c56763ec41b0dd6b65ac5718f8c3c5ad59e
3965c035610c057cfee799399e68cb7e195794d49212f6f67613927b5f46f69f
GET /videoplayback?expire=1669454278&ei=ZoWBY4atMs2FyQXKiY7IDQ&ip=91.90.42.154&id=o-AANj4MX2_8t7EI2bNQYDO7L6YEV6Wc8nBHJdyPks3aZU&itag=251&source=youtube&requiressl=yes&spc=SFxXNt58ucUBG78nUqDxG8yMAZxO6aY&vprv=1&mime=audio%2Fwebm&ns=nRoMWLtJo91wlpgdzotTSGcJ&gir=yes&clen=6450967&dur=361.441&lmt=1496637407802687&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&n=mYG5jJ9rgtEigA&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgMChu9fDCJnlbgDhr7Qbn7jtK7QFu3k7LOeYe5LcLjK4CIBawufDL6-RXaBqp097pLwElbgLvBk7YhWk37kL3pzPg&alr=yes&cpn=E0THX4yHiwueWaIR&cver=1.20221120.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=IZ&mm=29&mn=sn-5go7ynlk&ms=rdu&mt=1669432656&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgGymQW_zFtsNsLsndCH6Ikl7BkN3bG7AnnNahs1JIh3oCIQD2DomtQ5k6QV-PZt_K_iuH1vSCdwQ9G747y9H246g_oA%3D%3D&range=0-66433&rn=4&rbuf=0&pot=DxE9-kE8UiAKEQVfGxQ7CwP0cM1u3Dz9WT9JARNLLyCbgZZ9vGem2Auy2-DdTwb6e9cgN6G1zrqiwXOceHhNWnlG9aq5-2zvFIoRLgs05-FEHkolna2r1_lAhh_mSI8UTSzE8Ik= HTTP/1.1
Host: rr3---sn-5go7ynlk.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Sat, 26 Nov 2022 03:17:59 GMT
Expires: Sat, 26 Nov 2022 03:17:59 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 1162
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash a166b692e49569f49412a4835a95d3a5
c98c9ca2a1ddc28e49f34eb35c8e3c46aa8487b7
4ed9e17a1d8f15022b4f16a825b670ae1f1d9dfb2aced8746dc60e601c426be3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr3---sn-5go7ynlk.googlevideo.com/videoplayback?expire=1669454278&ei=ZoWBY4atMs2FyQXKiY7IDQ&ip=91.90.42.154&id=o-AANj4MX2_8t7EI2bNQYDO7L6YEV6Wc8nBHJdyPks3aZU&itag=243&aitags=133%2C134%2C135%2C160%2C242%2C243%2C244%2C278&source=youtube&requiressl=yes&spc=SFxXNt58ucUBG78nUqDxG8yMAZxO6aY&vprv=1&mime=video%2Fwebm&ns=nRoMWLtJo91wlpgdzotTSGcJ&gir=yes&clen=3779010&dur=361.333&lmt=1496637523077741&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&n=mYG5jJ9rgtEigA&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAPs5gj0QRNzyLhI7jIXi8wfJkj29BDNfsYZzKZPgvyb8AiEAsbS5AsuLbbP1yvwBFXa3fQ4KWpOAlODwF84BfqVrJQo%3D&alr=yes&cpn=E0THX4yHiwueWaIR&cver=1.20221120.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=IZ&mm=29&mn=sn-5go7ynlk&ms=rdu&mt=1669432656&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRAIgAgQ5vK_anZHjv2ZsU41IbuXcb8mDkfGPSWZG8pWjmAgCIH4pjtPg-1u0N_O5s4T5ukS93Z_dreps-LuB-SqLY82i&range=0-66923&rn=7&rbuf=0&pot=DxE9-kE8UiAKEQVfGxQ7CwP0cM1u3Dz9WT9JARNLLyCbgZZ9vGem2Auy2-DdTwb6e9cgN6G1zrqiwXOceHhNWnlG9aq5-2zvFIoRLgs05-FEHkolna2r1_lAhh_mSI8UTSzE8Ik=&altitags=242
173.194.6.8200 OK 1.2 kB URL HTTP/1.1 rr3---sn-5go7ynlk.googlevideo.com/videoplayback?expire=1669454278&ei=ZoWBY4atMs2FyQXKiY7IDQ&ip=91.90.42.154&id=o-AANj4MX2_8t7EI2bNQYDO7L6YEV6Wc8nBHJdyPks3aZU&itag=243&aitags=133%2C134%2C135%2C160%2C242%2C243%2C244%2C278&source=youtube&requiressl=yes&spc=SFxXNt58ucUBG78nUqDxG8yMAZxO6aY&vprv=1&mime=video%2Fwebm&ns=nRoMWLtJo91wlpgdzotTSGcJ&gir=yes&clen=3779010&dur=361.333&lmt=1496637523077741&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&n=mYG5jJ9rgtEigA&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAPs5gj0QRNzyLhI7jIXi8wfJkj29BDNfsYZzKZPgvyb8AiEAsbS5AsuLbbP1yvwBFXa3fQ4KWpOAlODwF84BfqVrJQo%3D&alr=yes&cpn=E0THX4yHiwueWaIR&cver=1.20221120.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=IZ&mm=29&mn=sn-5go7ynlk&ms=rdu&mt=1669432656&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRAIgAgQ5vK_anZHjv2ZsU41IbuXcb8mDkfGPSWZG8pWjmAgCIH4pjtPg-1u0N_O5s4T5ukS93Z_dreps-LuB-SqLY82i&range=0-66923&rn=7&rbuf=0&pot=DxE9-kE8UiAKEQVfGxQ7CwP0cM1u3Dz9WT9JARNLLyCbgZZ9vGem2Auy2-DdTwb6e9cgN6G1zrqiwXOceHhNWnlG9aq5-2zvFIoRLgs05-FEHkolna2r1_lAhh_mSI8UTSzE8Ik=&altitags=242
IP 173.194.6.8:0
File type ASCII text, with very long lines (1236), with no line terminators
Hash 680b07dd325c2037190da248c0921aee
c391694fccb441acf1b3136a51ac873f15468920
9501814317afea79b4d5f7e57d8d72839e23b298070e0e9b8dffddc25c1231d9
GET /videoplayback?expire=1669454278&ei=ZoWBY4atMs2FyQXKiY7IDQ&ip=91.90.42.154&id=o-AANj4MX2_8t7EI2bNQYDO7L6YEV6Wc8nBHJdyPks3aZU&itag=243&aitags=133%2C134%2C135%2C160%2C242%2C243%2C244%2C278&source=youtube&requiressl=yes&spc=SFxXNt58ucUBG78nUqDxG8yMAZxO6aY&vprv=1&mime=video%2Fwebm&ns=nRoMWLtJo91wlpgdzotTSGcJ&gir=yes&clen=3779010&dur=361.333&lmt=1496637523077741&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&n=mYG5jJ9rgtEigA&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAPs5gj0QRNzyLhI7jIXi8wfJkj29BDNfsYZzKZPgvyb8AiEAsbS5AsuLbbP1yvwBFXa3fQ4KWpOAlODwF84BfqVrJQo%3D&alr=yes&cpn=E0THX4yHiwueWaIR&cver=1.20221120.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7l&cms_redirect=yes&cmsv=e&mh=IZ&mm=29&mn=sn-5go7ynlk&ms=rdu&mt=1669432656&mv=m&mvi=3&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRAIgAgQ5vK_anZHjv2ZsU41IbuXcb8mDkfGPSWZG8pWjmAgCIH4pjtPg-1u0N_O5s4T5ukS93Z_dreps-LuB-SqLY82i&range=0-66923&rn=7&rbuf=0&pot=DxE9-kE8UiAKEQVfGxQ7CwP0cM1u3Dz9WT9JARNLLyCbgZZ9vGem2Auy2-DdTwb6e9cgN6G1zrqiwXOceHhNWnlG9aq5-2zvFIoRLgs05-FEHkolna2r1_lAhh_mSI8UTSzE8Ik=&altitags=242 HTTP/1.1
Host: rr3---sn-5go7ynlk.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Sat, 26 Nov 2022 03:17:59 GMT
Expires: Sat, 26 Nov 2022 03:17:59 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 1236
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash b3214789d61d3d087275ca7ce604a329
b0a9e164fe5450cd758681c28565c605c47416df
c7a874e0fd8bd637b09b9dd466933ff0e4ac73e0279e774d2350c8fb3718fdd7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi_webp/PdgrEIlTXrk/hqdefault.webp
142.250.74.150200 OK 11 kB URL HTTP/2 i.ytimg.com/vi_webp/PdgrEIlTXrk/hqdefault.webp
IP 142.250.74.150:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 480x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c1cd5e18f419a7e4167d9b6d1fb59dad
d9fca1e4a8910acec196d9d27c03998af9f97722
ca045c23b128a487736410dd0204e3f08fbc3e8e459e1f649eea29ac1295c6ee
GET /vi_webp/PdgrEIlTXrk/hqdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 10710
date: Sat, 26 Nov 2022 03:17:59 GMT
expires: Sat, 26 Nov 2022 05:17:59 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 216d858ad02d0f9765e7844973400881
62a1fb9255bfc33b0fbc8960502272a42ecf73f6
f90483fc88bda7a012064641af0cf72c31d2ae7522097e4ac52f0b096b519f79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/an/4Vad8KX1NM5lB9rS-HaYoQ/featured_channel.jpg?v=5cf43748
142.250.74.150200 OK 7.2 kB URL HTTP/2 i.ytimg.com/an/4Vad8KX1NM5lB9rS-HaYoQ/featured_channel.jpg?v=5cf43748
IP 142.250.74.150:0
File type PNG image data, 106 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash d9fd1a86bf60a62bcfecddf2fcfcd787
a362d211ad5ab589b753d162e117db9a6b809619
7e10976218c1f496d498f2f331cb3157e9c3dea4eaa2d8a7f4a49210e6519823
GET /an/4Vad8KX1NM5lB9rS-HaYoQ/featured_channel.jpg?v=5cf43748 HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 7210
date: Sat, 26 Nov 2022 03:17:59 GMT
expires: Sat, 26 Nov 2022 05:17:59 GMT
cache-control: public, max-age=7200
etag: "1559508808"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash b7757171f2e55c37975a5bcdeba7a4ae
1ce146a166c3c1d510d26c855321ca4b2426353d
7675dc8e0d7a554bf286e61db1c9546aa6fc7188cb83c3d9bd5beb80c2351fe5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/ytc/AMLnZu8ngMBKxMc_TEn2eU-UlqQNMTlfJNIeyJLjpt9u=s88-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 3.9 kB URL HTTP/2 yt3.ggpht.com/ytc/AMLnZu8ngMBKxMc_TEn2eU-UlqQNMTlfJNIeyJLjpt9u=s88-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 88x88, components 3\012- data
Hash ad77f2c798ee0422acf3db7d8a50df9d
f1fd2ace05ce730e6b865b609ba24a7b7144e058
2595f6b4ed53d7578c104640a73bf5e6e8cef2b241c1867f0bb5521380669585
GET /ytc/AMLnZu8ngMBKxMc_TEn2eU-UlqQNMTlfJNIeyJLjpt9u=s88-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v121"
expires: Sun, 27 Nov 2022 03:17:59 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 26 Nov 2022 03:17:59 GMT
server: fife
content-length: 3904
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
rr4---sn-5hne6nzk.googlevideo.com/videoplayback?expire=1669454278&ei=ZoWBY4atMs2FyQXKiY7IDQ&ip=91.90.42.154&id=o-AANj4MX2_8t7EI2bNQYDO7L6YEV6Wc8nBHJdyPks3aZU&itag=251&source=youtube&requiressl=yes&spc=SFxXNt58ucUBG78nUqDxG8yMAZxO6aY&vprv=1&mime=audio%2Fwebm&ns=nRoMWLtJo91wlpgdzotTSGcJ&gir=yes&clen=6450967&dur=361.441&lmt=1496637407802687&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&n=mYG5jJ9rgtEigA&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgMChu9fDCJnlbgDhr7Qbn7jtK7QFu3k7LOeYe5LcLjK4CIBawufDL6-RXaBqp097pLwElbgLvBk7YhWk37kL3pzPg&alr=yes&cpn=E0THX4yHiwueWaIR&cver=1.20221120.00.00&cm2rm=sn-capm-vnae7l,sn-5gose7s&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=IZ&mm=34&mn=sn-5hne6nzk&ms=ltu&mt=1669432381&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhANzpHzyWlpVRU3l33uPNVlWLIV40sjOa33xVTkxWo9tAAiEArZFvrXse-bnddDehpohTE9jtxlUpsgaDig1NzBerJyc%3D&range=0-66433&rn=6&rbuf=0&pot=DxE9-kE8UiAKEQVfGxQ7CwP0cM1u3Dz9WT9JARNLLyCbgZZ9vGem2Auy2-DdTwb6e9cgN6G1zrqiwXOceHhNWnlG9aq5-2zvFIoRLgs05-FEHkolna2r1_lAhh_mSI8UTSzE8Ik=
172.217.132.137200 OK 66 kB URL HTTP/1.1 rr4---sn-5hne6nzk.googlevideo.com/videoplayback?expire=1669454278&ei=ZoWBY4atMs2FyQXKiY7IDQ&ip=91.90.42.154&id=o-AANj4MX2_8t7EI2bNQYDO7L6YEV6Wc8nBHJdyPks3aZU&itag=251&source=youtube&requiressl=yes&spc=SFxXNt58ucUBG78nUqDxG8yMAZxO6aY&vprv=1&mime=audio%2Fwebm&ns=nRoMWLtJo91wlpgdzotTSGcJ&gir=yes&clen=6450967&dur=361.441&lmt=1496637407802687&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&n=mYG5jJ9rgtEigA&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgMChu9fDCJnlbgDhr7Qbn7jtK7QFu3k7LOeYe5LcLjK4CIBawufDL6-RXaBqp097pLwElbgLvBk7YhWk37kL3pzPg&alr=yes&cpn=E0THX4yHiwueWaIR&cver=1.20221120.00.00&cm2rm=sn-capm-vnae7l,sn-5gose7s&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=IZ&mm=34&mn=sn-5hne6nzk&ms=ltu&mt=1669432381&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhANzpHzyWlpVRU3l33uPNVlWLIV40sjOa33xVTkxWo9tAAiEArZFvrXse-bnddDehpohTE9jtxlUpsgaDig1NzBerJyc%3D&range=0-66433&rn=6&rbuf=0&pot=DxE9-kE8UiAKEQVfGxQ7CwP0cM1u3Dz9WT9JARNLLyCbgZZ9vGem2Auy2-DdTwb6e9cgN6G1zrqiwXOceHhNWnlG9aq5-2zvFIoRLgs05-FEHkolna2r1_lAhh_mSI8UTSzE8Ik=
IP 172.217.132.137:0
File type WebM\012- EBML file, creator webmB\20\012- data
Hash 2891512805b51c6bc449e8568fd118d6
3d8a6f42fde84081f79a4acdea364b366ac1f632
e40c2400e97e28dc5ae5554192eecdf863588466a21eca3fc4e9642944476a61
GET /videoplayback?expire=1669454278&ei=ZoWBY4atMs2FyQXKiY7IDQ&ip=91.90.42.154&id=o-AANj4MX2_8t7EI2bNQYDO7L6YEV6Wc8nBHJdyPks3aZU&itag=251&source=youtube&requiressl=yes&spc=SFxXNt58ucUBG78nUqDxG8yMAZxO6aY&vprv=1&mime=audio%2Fwebm&ns=nRoMWLtJo91wlpgdzotTSGcJ&gir=yes&clen=6450967&dur=361.441&lmt=1496637407802687&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&n=mYG5jJ9rgtEigA&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgMChu9fDCJnlbgDhr7Qbn7jtK7QFu3k7LOeYe5LcLjK4CIBawufDL6-RXaBqp097pLwElbgLvBk7YhWk37kL3pzPg&alr=yes&cpn=E0THX4yHiwueWaIR&cver=1.20221120.00.00&cm2rm=sn-capm-vnae7l,sn-5gose7s&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=IZ&mm=34&mn=sn-5hne6nzk&ms=ltu&mt=1669432381&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhANzpHzyWlpVRU3l33uPNVlWLIV40sjOa33xVTkxWo9tAAiEArZFvrXse-bnddDehpohTE9jtxlUpsgaDig1NzBerJyc%3D&range=0-66433&rn=6&rbuf=0&pot=DxE9-kE8UiAKEQVfGxQ7CwP0cM1u3Dz9WT9JARNLLyCbgZZ9vGem2Auy2-DdTwb6e9cgN6G1zrqiwXOceHhNWnlG9aq5-2zvFIoRLgs05-FEHkolna2r1_lAhh_mSI8UTSzE8Ik= HTTP/1.1
Host: rr4---sn-5hne6nzk.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Mon, 05 Jun 2017 04:36:47 GMT
Content-Type: audio/webm
Date: Sat, 26 Nov 2022 03:17:59 GMT
Expires: Sat, 26 Nov 2022 03:17:59 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 66434
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash b7757171f2e55c37975a5bcdeba7a4ae
1ce146a166c3c1d510d26c855321ca4b2426353d
7675dc8e0d7a554bf286e61db1c9546aa6fc7188cb83c3d9bd5beb80c2351fe5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:17:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr4---sn-5hne6nzk.googlevideo.com/videoplayback?expire=1669454278&ei=ZoWBY4atMs2FyQXKiY7IDQ&ip=91.90.42.154&id=o-AANj4MX2_8t7EI2bNQYDO7L6YEV6Wc8nBHJdyPks3aZU&itag=243&aitags=133%2C134%2C135%2C160%2C242%2C243%2C244%2C278&source=youtube&requiressl=yes&spc=SFxXNt58ucUBG78nUqDxG8yMAZxO6aY&vprv=1&mime=video%2Fwebm&ns=nRoMWLtJo91wlpgdzotTSGcJ&gir=yes&clen=3779010&dur=361.333&lmt=1496637523077741&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&n=mYG5jJ9rgtEigA&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAPs5gj0QRNzyLhI7jIXi8wfJkj29BDNfsYZzKZPgvyb8AiEAsbS5AsuLbbP1yvwBFXa3fQ4KWpOAlODwF84BfqVrJQo%3D&alr=yes&cpn=E0THX4yHiwueWaIR&cver=1.20221120.00.00&cm2rm=sn-capm-vnae7l,sn-5gose7s&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=IZ&mm=34&mn=sn-5hne6nzk&ms=ltu&mt=1669432381&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhAN3S86PVVEJ4KDX9qfoJ48GTJ0aG1UE7jOnOnosn2zG1AiEA7NPRIHH6cAxymduFMwFldsRkVnp8xzsbwBE4MnT8Epk%3D&range=0-66923&rn=8&rbuf=0&pot=DxE9-kE8UiAKEQVfGxQ7CwP0cM1u3Dz9WT9JARNLLyCbgZZ9vGem2Auy2-DdTwb6e9cgN6G1zrqiwXOceHhNWnlG9aq5-2zvFIoRLgs05-FEHkolna2r1_lAhh_mSI8UTSzE8Ik=&altitags=242
172.217.132.137200 OK 67 kB URL HTTP/1.1 rr4---sn-5hne6nzk.googlevideo.com/videoplayback?expire=1669454278&ei=ZoWBY4atMs2FyQXKiY7IDQ&ip=91.90.42.154&id=o-AANj4MX2_8t7EI2bNQYDO7L6YEV6Wc8nBHJdyPks3aZU&itag=243&aitags=133%2C134%2C135%2C160%2C242%2C243%2C244%2C278&source=youtube&requiressl=yes&spc=SFxXNt58ucUBG78nUqDxG8yMAZxO6aY&vprv=1&mime=video%2Fwebm&ns=nRoMWLtJo91wlpgdzotTSGcJ&gir=yes&clen=3779010&dur=361.333&lmt=1496637523077741&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&n=mYG5jJ9rgtEigA&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAPs5gj0QRNzyLhI7jIXi8wfJkj29BDNfsYZzKZPgvyb8AiEAsbS5AsuLbbP1yvwBFXa3fQ4KWpOAlODwF84BfqVrJQo%3D&alr=yes&cpn=E0THX4yHiwueWaIR&cver=1.20221120.00.00&cm2rm=sn-capm-vnae7l,sn-5gose7s&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=IZ&mm=34&mn=sn-5hne6nzk&ms=ltu&mt=1669432381&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhAN3S86PVVEJ4KDX9qfoJ48GTJ0aG1UE7jOnOnosn2zG1AiEA7NPRIHH6cAxymduFMwFldsRkVnp8xzsbwBE4MnT8Epk%3D&range=0-66923&rn=8&rbuf=0&pot=DxE9-kE8UiAKEQVfGxQ7CwP0cM1u3Dz9WT9JARNLLyCbgZZ9vGem2Auy2-DdTwb6e9cgN6G1zrqiwXOceHhNWnlG9aq5-2zvFIoRLgs05-FEHkolna2r1_lAhh_mSI8UTSzE8Ik=&altitags=242
IP 172.217.132.137:0
File type WebM\012- EBML file, creator webmB\20\012- data
Hash 5fda6f21a6940805ee15555335d8d187
dd5ae20bc48bbb9a193ec8ad83edf951705b4ba4
4220cd149f91cfd98df61386fd29596edcb76ffcb9abbebc10f59eeb84f011f9
GET /videoplayback?expire=1669454278&ei=ZoWBY4atMs2FyQXKiY7IDQ&ip=91.90.42.154&id=o-AANj4MX2_8t7EI2bNQYDO7L6YEV6Wc8nBHJdyPks3aZU&itag=243&aitags=133%2C134%2C135%2C160%2C242%2C243%2C244%2C278&source=youtube&requiressl=yes&spc=SFxXNt58ucUBG78nUqDxG8yMAZxO6aY&vprv=1&mime=video%2Fwebm&ns=nRoMWLtJo91wlpgdzotTSGcJ&gir=yes&clen=3779010&dur=361.333&lmt=1496637523077741&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&n=mYG5jJ9rgtEigA&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAPs5gj0QRNzyLhI7jIXi8wfJkj29BDNfsYZzKZPgvyb8AiEAsbS5AsuLbbP1yvwBFXa3fQ4KWpOAlODwF84BfqVrJQo%3D&alr=yes&cpn=E0THX4yHiwueWaIR&cver=1.20221120.00.00&cm2rm=sn-capm-vnae7l,sn-5gose7s&redirect_counter=2&cms_redirect=yes&cmsv=e&mh=IZ&mm=34&mn=sn-5hne6nzk&ms=ltu&mt=1669432381&mv=m&mvi=4&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhAN3S86PVVEJ4KDX9qfoJ48GTJ0aG1UE7jOnOnosn2zG1AiEA7NPRIHH6cAxymduFMwFldsRkVnp8xzsbwBE4MnT8Epk%3D&range=0-66923&rn=8&rbuf=0&pot=DxE9-kE8UiAKEQVfGxQ7CwP0cM1u3Dz9WT9JARNLLyCbgZZ9vGem2Auy2-DdTwb6e9cgN6G1zrqiwXOceHhNWnlG9aq5-2zvFIoRLgs05-FEHkolna2r1_lAhh_mSI8UTSzE8Ik=&altitags=242 HTTP/1.1
Host: rr4---sn-5hne6nzk.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Mon, 05 Jun 2017 04:38:43 GMT
Content-Type: video/webm
Date: Sat, 26 Nov 2022 03:17:59 GMT
Expires: Sat, 26 Nov 2022 03:17:59 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 66924
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad04f54-f199-4bc1-a785-cf5c76640147.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad04f54-f199-4bc1-a785-cf5c76640147.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d0f860248042a8499ffb1701a880b2ba
845842c789e6e97fd1687e668d446bbb8309ffc7
9eca5258c7b6e4e145ca6576a3f3791f1324714404ffd7a56a61961f81e7bd44
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad04f54-f199-4bc1-a785-cf5c76640147.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11150
x-amzn-requestid: 0b773c28-feda-41a2-9de6-8b559bd773eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVC5EukoAMFxfA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813545-3bfe118939abc352072c5af1;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:36:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: TpEr70sCNigNhVg7rDFIUG12AVpzC0BUW6-xW3QTvjLcBUrpehjJbQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:46:06 GMT
age: 19919
etag: "845842c789e6e97fd1687e668d446bbb8309ffc7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
sinomido.blogspot.com/2011/05/misteri-penampakan-hantu_2946.html
142.250.74.161404 Not Found 0 B URL HTTP/1.1 sinomido.blogspot.com/2011/05/misteri-penampakan-hantu_2946.html
IP 142.250.74.161:0
GET /2011/05/misteri-penampakan-hantu_2946.html HTTP/1.1
Host: sinomido.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Sat, 26 Nov 2022 03:17:56 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 7210
Server: GSE
sinomido.blogspot.com/2011/05/misteri-penampakan-hantu_2946.html
142.250.74.161404 Not Found 0 B URL HTTP/1.1 sinomido.blogspot.com/2011/05/misteri-penampakan-hantu_2946.html
IP 142.250.74.161:0
GET /2011/05/misteri-penampakan-hantu_2946.html HTTP/1.1
Host: sinomido.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Sat, 26 Nov 2022 03:17:57 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 7210
Server: GSE
doelasthackerx-cdsiverz.blogspot.com/url
142.250.74.161404 Not Found 0 B URL HTTP/1.1 doelasthackerx-cdsiverz.blogspot.com/url
IP 142.250.74.161:0
Analyzer Verdict Alert fortinet Malware
GET /url HTTP/1.1
Host: doelasthackerx-cdsiverz.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://doelasthackerx-cdsiverz.blogspot.com/
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Sat, 26 Nov 2022 03:17:58 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 14251
Server: GSE