datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
200 OK 73 kB URL User Request GET HTTP/1.1 datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
IP
ASN #210848 Telkom Internet LTD
Certificate IssuerLet's Encrypt
Subjectdatanodes.to
Fingerprint8B:19:7E:2F:34:E2:1E:F1:29:FA:AC:B5:46:1D:D5:50:78:C5:31:5F
ValidityTue, 07 Nov 2023 22:07:45 GMT - Mon, 05 Feb 2024 22:07:44 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (64017)
Hash 139d1d491adcb348315fb9b83a155e7f
81e7c865dec72a7974c789d71468c310da9eda25
56cc7b82f07f228f54f9900bd88c70f4cc563a72becd33eddefd10830c2e6ff0
GET /n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar HTTP/1.1
Host: datanodes.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 01 Dec 2023 19:20:31 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_perl/2.0.11 Perl/v5.16.3
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Expires: Thu, 30 Nov 2023 19:20:31 GMT
Set-Cookie: lang=english; domain=.datanodes.to; path=/
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
datanodes.to/theme_2023/dist/assets/app-8e8ccbbc.css
200 OK 52 kB URL GET HTTP/1.1 datanodes.to/theme_2023/dist/assets/app-8e8ccbbc.css
IP
ASN #210848 Telkom Internet LTD
Requested by https://datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
Certificate IssuerLet's Encrypt
Subjectdatanodes.to
Fingerprint8B:19:7E:2F:34:E2:1E:F1:29:FA:AC:B5:46:1D:D5:50:78:C5:31:5F
ValidityTue, 07 Nov 2023 22:07:45 GMT - Mon, 05 Feb 2024 22:07:44 GMT
File type Unicode text, UTF-8 text, with very long lines (51957)
Hash 9486115982b5c92d8fbd53d436d5e58d
6512d4c4ecbdbacb057df7720ac7c9f32de50adc
8e8ccbbc5b562e0ae1fdb595bf9f2e8b4eddadfc2e91472da3979228b509da11
GET /theme_2023/dist/assets/app-8e8ccbbc.css HTTP/1.1
Host: datanodes.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
Cookie: lang=english
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 01 Dec 2023 19:20:31 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_perl/2.0.11 Perl/v5.16.3
Last-Modified: Sun, 11 Jun 2023 09:19:46 GMT
ETag: "cafe-5fdd71a625080"
Accept-Ranges: bytes
Content-Length: 51966
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
nb.freezyproto.com/1clkn/31269
200 OK 26 B URL GET HTTP/1.1 nb.freezyproto.com/1clkn/31269
IP
Requested by https://datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
Certificate IssuerLet's Encrypt
Subjectnb.freezyproto.com
Fingerprint31:87:1F:6D:D9:C3:3B:98:75:8D:9C:09:CE:EB:F5:0E:A6:EC:F3:6D
ValiditySat, 28 Oct 2023 23:15:01 GMT - Fri, 26 Jan 2024 23:15:00 GMT
File type ASCII text, with no line terminators
Hash 9082dc37e5e8046929da411544ad071a
41e0e3963ed94e59e8a2f115994c382712411537
b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550
GET /1clkn/31269 HTTP/1.1
Host: nb.freezyproto.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 01 Dec 2023 19:20:31 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version
Set-Cookie: GL_UI4=eJw9zV1OhDAcBHC%2BWXVBJ%2BEAHqFVQXz0Za%2FgIyntH6wL7aZU0NtLTPRtMvlNJgiCqLpFuGYp4k9R414NvJGs5fKhfmRNUz8JRkPfvvTtc8MFa3Gll86LfiKf4LDMwvnOrwmOIxlyWnbSKipwt6u%2F5mzsZhKkvRNGFUjnXUwF8t7ZbSFXxUiMmAn5STsa7NcuxId1iDmr96zNnkOGyC5VXF4jf9NG7cvyiIizsswC3Fwm4Qfr5k6rLEQ6OqEI4SsOUngarftGrmg5e3sB7KS6f%2F97HG%2BcIVO0aklIrX8n9wNBjE5s; expires=Sat, 02-Dec-2023 19:20:31 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwViE0KgzAUBvMeJVAqhY96AE%2BQamsXbmuXRReewGopgZBIEvtz%2B%2BpiBmaEEJwmYD0hqQpV5ao8qeJSgl7gpgUPFrJx%2FtP%2FQB6cn8HeYtcG47LazTYuf8BmbZDG%2Fmr0N%2BucmaN2NoAXtnX%2FMM%2FjrbuDJkng6FaHMRWgtzz8AV7hHdE%3D; expires=Sat, 02-Dec-2023 19:20:31 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
d2udkjdo48yngu.cloudfront.net/?jkdud=966945
200 OK 55 kB URL GET HTTP/2 d2udkjdo48yngu.cloudfront.net/?jkdud=966945
IP
Requested by https://datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (15945)
Hash 4ad5994645b3709dd979da52aa2ad8fb
af48e10cd5d2a960ab83c80593dbbc50e45e555d
038fde9cd5f28669f1328b80430239806695d907fc49653617e9cea65245e8ca
GET /?jkdud=966945 HTTP/1.1
Host: d2udkjdo48yngu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 54785
date: Fri, 01 Dec 2023 19:20:31 GMT
access-control-allow-origin: *
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Miss from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: VBCq51viVLLzmuowhcEkovivg03bm_4AkJDLCmj5OiZIOz85Q5XrEQ==
X-Firefox-Spdy: h2
datanodes.to/theme_2023/dist/assets/app-599b20c0.js
200 OK 175 kB URL GET HTTP/1.1 datanodes.to/theme_2023/dist/assets/app-599b20c0.js
IP
ASN #210848 Telkom Internet LTD
Requested by https://datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
Certificate IssuerLet's Encrypt
Subjectdatanodes.to
Fingerprint8B:19:7E:2F:34:E2:1E:F1:29:FA:AC:B5:46:1D:D5:50:78:C5:31:5F
ValidityTue, 07 Nov 2023 22:07:45 GMT - Mon, 05 Feb 2024 22:07:44 GMT
File type ASCII text, with very long lines (47312)
Size 175 kB (175246 bytes)
Hash 2805e3f7b8e7fbd69bcc908c50b06a23
8f3a999da139b913d81b5c1c8462f7c1f1f04374
d6faff64e12fafa6ea374ec1b9efda5cc5d664e19f07d184aa345d26e7b3d7b1
GET /theme_2023/dist/assets/app-599b20c0.js HTTP/1.1
Host: datanodes.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
Cookie: lang=english
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 01 Dec 2023 19:20:31 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_perl/2.0.11 Perl/v5.16.3
Last-Modified: Mon, 12 Jun 2023 12:53:43 GMT
ETag: "2ac8e-5fdee355ec3c0"
Accept-Ranges: bytes
Content-Length: 175246
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
ldrenandthe.org/MWRqT2ceWwk8WnwiMBsyAyEvFTBVFTwOKVs+LQU2ciNfPj13IUw7DlVZU3lRCFBfaRdYAFd+QUIQCzsSQllbaQ5fAgVyQUdZW2FUBUpZe0kBQh9yVhcQGi4ADFVMPxNFCFd+UAFVXnpfBVdcdlEB
204 No Content 0 B URL GET HTTP/2 ldrenandthe.org/MWRqT2ceWwk8WnwiMBsyAyEvFTBVFTwOKVs+LQU2ciNfPj13IUw7DlVZU3lRCFBfaRdYAFd+QUIQCzsSQllbaQ5fAgVyQUdZW2FUBUpZe0kBQh9yVhcQGi4ADFVMPxNFCFd+UAFVXnpfBVdcdlEB
IP
Requested by https://datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
Certificate IssuerGoogle Trust Services LLC
Subjectldrenandthe.org
FingerprintB1:E1:DF:C0:4E:E7:2F:9B:70:DF:D1:CA:75:2B:47:98:1B:CC:5F:BB
ValidityWed, 29 Nov 2023 06:03:19 GMT - Tue, 27 Feb 2024 06:03:18 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /MWRqT2ceWwk8WnwiMBsyAyEvFTBVFTwOKVs+LQU2ciNfPj13IUw7DlVZU3lRCFBfaRdYAFd+QUIQCzsSQllbaQ5fAgVyQUdZW2FUBUpZe0kBQh9yVhcQGi4ADFVMPxNFCFd+UAFVXnpfBVdcdlEB HTTP/1.1
Host: ldrenandthe.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Fri, 01 Dec 2023 19:20:32 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jdkAKVDgS39ZeqTG%2BKao7QGESCLpOCQGBbwg6VZzKm19bI3RUXfFSwIMhCwpQ09MZFQ5AD7pOZbNuGBp5%2Be99DQNN9qadDT5ntoblqhhlBpoOdrF6pfKwT4%2F9qWWr3T9njY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82edb020ff07b511-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Poppins:wght@300;400;500;600;700;800;900&display=swap
200 OK 8.3 kB URL GET HTTP/2 fonts.googleapis.com/css2?family=Poppins:wght@300;400;500;600;700;800;900&display=swap
IP
Requested by https://datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type gzip compressed data, max compression\012- data
Hash ea90a1e2a84907473deee65a56e30552
2111a803df3fa588c4ffb4fabb6fd166785b3f74
613f5cc65f11277df53109277235971a7825e1e28e7b5d806b7620213954226c
GET /css2?family=Poppins:wght@300;400;500;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 01 Dec 2023 19:20:31 GMT
date: Fri, 01 Dec 2023 19:20:31 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ldrenandthe.org/popunder.gif
200 OK 7.9 kB URL GET HTTP/2 ldrenandthe.org/popunder.gif
IP
Requested by https://datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
Certificate IssuerGoogle Trust Services LLC
Subjectldrenandthe.org
FingerprintB1:E1:DF:C0:4E:E7:2F:9B:70:DF:D1:CA:75:2B:47:98:1B:CC:5F:BB
ValidityWed, 29 Nov 2023 06:03:19 GMT - Tue, 27 Feb 2024 06:03:18 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 72f9847dc117a80fb3254cb3fc4e8b79
8e11f9651ea461644e1ffcec81eba75049e8e462
13b99661be972b9e75c1f9e5e30d1734d7fdbc089cf92861e9d9a7b15b934f71
GET /popunder.gif HTTP/1.1
Host: ldrenandthe.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 19:20:32 GMT
content-type: image/gif
access-control-allow-origin: *
pragma: public
cache-control: public, max-age=604800, immutable
cf-cache-status: HIT
age: 16502
last-modified: Fri, 01 Dec 2023 14:45:30 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4uU533LeQ5miKoWT9VnhLEvxaYRWBa2zF28zNXNvMSP2Z3GYPToSjTEl0lSzXcL7RY8zp%2Ft5ubOGXwFVD%2F6p%2BmDa1aDI9rw5r7KeGhRgq1YjvvNeRCiGM%2Bv3vjYyxy2otv4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82edb020ff0bb511-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
200 OK 7.9 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
Requested by https://datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://datanodes.to
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 02:38:20 GMT
expires: Fri, 29 Nov 2024 02:38:20 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
age: 146532
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
200 OK 8.0 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP
Requested by https://datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://datanodes.to
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:53:49 GMT
expires: Fri, 29 Nov 2024 04:53:49 GMT
cache-control: public, max-age=31536000
age: 138403
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDD4Z1xlFQ.woff2
200 OK 7.8 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDD4Z1xlFQ.woff2
IP
Requested by https://datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 7824, version 1.0\012- data
Hash af4d371a10271dafeb343f1eace762bc
6d11d743bc3cfb169d70bc86450f18351dc1a905
60bf0aba6526436f3930c58c12047687fbb6bff4dd180cce4613458ed3439ea2
GET /s/poppins/v20/pxiByp8kv8JHgFVrLDD4Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://datanodes.to
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:13:59 GMT
expires: Thu, 28 Nov 2024 21:13:59 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:52:02 GMT
content-type: font/woff2
age: 165993
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lingrethertantin.com/UkczUzQzJVA+CzN6UXVBICsOdgYUYgEVUGAyVzheNigHa008IEZ9Vz4oRjdSIChdJxo8Ikd2BhQ1YQdiGCRlBlkFLlALVTgBUB9hKjRQJHolFWQRXgo9XDZ7KBJ6H3c2L3AkQxMUcB5kAy19F3koDmcDZSE/VhJiJA9nAkYHKWELeREzZDdxED15FXEgE3QVXgMTWDZkPC9mHGYlcHpiXygFWQoGFz1EAlURL1IeTDVyeAVmIRZLHUMVdF8GbmESVwNcNXB6BVt3dXESWhB0cQBXFCR7MHI3AnVkUAAFBR4HEHRxBwALCAAedjACegttEyMGEGMcP3YbGT09UBtXFAhEN0M2KWFnZQUFQRFjEBJpYGIBC3EaEWAFeDt2ZQkBNwUQD18RbhoSdjFxHCt6YkNlAXceRQYQSxdxYRZ1NXJrK2pjdmIWcnVeIShdIwk3EQcdDRt+RRlDKHVVJA
200 OK 1.2 kB URL GET HTTP/2 lingrethertantin.com/UkczUzQzJVA+CzN6UXVBICsOdgYUYgEVUGAyVzheNigHa008IEZ9Vz4oRjdSIChdJxo8Ikd2BhQ1YQdiGCRlBlkFLlALVTgBUB9hKjRQJHolFWQRXgo9XDZ7KBJ6H3c2L3AkQxMUcB5kAy19F3koDmcDZSE/VhJiJA9nAkYHKWELeREzZDdxED15FXEgE3QVXgMTWDZkPC9mHGYlcHpiXygFWQoGFz1EAlURL1IeTDVyeAVmIRZLHUMVdF8GbmESVwNcNXB6BVt3dXESWhB0cQBXFCR7MHI3AnVkUAAFBR4HEHRxBwALCAAedjACegttEyMGEGMcP3YbGT09UBtXFAhEN0M2KWFnZQUFQRFjEBJpYGIBC3EaEWAFeDt2ZQkBNwUQD18RbhoSdjFxHCt6YkNlAXceRQYQSxdxYRZ1NXJrK2pjdmIWcnVeIShdIwk3EQcdDRt+RRlDKHVVJA
IP
Requested by https://datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
Certificate IssuerAmazon
Subjectlingrethertantin.com
Fingerprint05:43:5F:62:44:4A:F8:16:0D:0E:1F:DC:05:AA:39:FF:6E:4C:56:B8
ValidityMon, 27 Nov 2023 00:00:00 GMT - Wed, 25 Dec 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3047), with no line terminators
Hash 740c5a5c284486988f467cca0b9ba284
2b67fbb2e44673942e2b9018fd24d523bc17e1ce
7cc124d0b7eb017a1f19705b443b4d2d5cd8cab5a41329c1a9d05af27d2f5f6a
GET /UkczUzQzJVA+CzN6UXVBICsOdgYUYgEVUGAyVzheNigHa008IEZ9Vz4oRjdSIChdJxo8Ikd2BhQ1YQdiGCRlBlkFLlALVTgBUB9hKjRQJHolFWQRXgo9XDZ7KBJ6H3c2L3AkQxMUcB5kAy19F3koDmcDZSE/VhJiJA9nAkYHKWELeREzZDdxED15FXEgE3QVXgMTWDZkPC9mHGYlcHpiXygFWQoGFz1EAlURL1IeTDVyeAVmIRZLHUMVdF8GbmESVwNcNXB6BVt3dXESWhB0cQBXFCR7MHI3AnVkUAAFBR4HEHRxBwALCAAedjACegttEyMGEGMcP3YbGT09UBtXFAhEN0M2KWFnZQUFQRFjEBJpYGIBC3EaEWAFeDt2ZQkBNwUQD18RbhoSdjFxHCt6YkNlAXceRQYQSxdxYRZ1NXJrK2pjdmIWcnVeIShdIwk3EQcdDRt+RRlDKHVVJA HTTP/1.1
Host: lingrethertantin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-length: 1197
date: Fri, 01 Dec 2023 19:20:32 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -9gFQyasLR6ovPB1a4XeGzCScziAajOej9MwJ1jOn0OCzAHDdalUYg==
X-Firefox-Spdy: h2
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
302 Found 0 B URL GET HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
IP
Requested by https://datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint1E:A9:E1:96:78:1D:08:FC:96:C8:C2:34:4F:02:D3:3D:FA:9A:D2:6B
ValidityMon, 23 Oct 2023 11:25:04 GMT - Mon, 15 Jan 2024 11:25:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:Uje3ZwHVAlp7S1MF7bjvqhP2p8RdWw:3KAq9fMCXPO7cccP; Expires=Sun, 30-Nov-2025 19:20:32 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 01 Dec 2023 19:20:32 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=ASKXGp17CsM9RW63foo9hqfcfcufvrxoH6SRjb7AeyoT82FT-wjQsdJG6dKNuHXWPI4fquyCf2Sf3w
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-mMovvTqqYz3tpF5rHnqLAQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport
cross-origin-opener-policy: unsafe-none
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
302 Found 0 B URL GET HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
IP
Requested by https://datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint1E:A9:E1:96:78:1D:08:FC:96:C8:C2:34:4F:02:D3:3D:FA:9A:D2:6B
ValidityMon, 23 Oct 2023 11:25:04 GMT - Mon, 15 Jan 2024 11:25:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:QREHoVOwTNKzsmEL7mWqRGzVNN3Anw:i8vDYBpOBbRqsoVQ; Expires=Sun, 30-Nov-2025 19:20:32 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 01 Dec 2023 19:20:32 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=ASKXGp0RY5c24T51BW8FAds3olYJDJhNzttvbjOM4Al6yXs83m_GB_ENreTkLusIvQpaHkZefOr3uQ
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-nvM6pEzxHgzwWA2K55WJsQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist
cross-origin-opener-policy: unsafe-none
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-resource-policy: cross-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=ASKXGp17CsM9RW63foo9hqfcfcufvrxoH6SRjb7AeyoT82FT-wjQsdJG6dKNuHXWPI4fquyCf2Sf3w
302 Found 408 B URL GET HTTP/2 accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=ASKXGp17CsM9RW63foo9hqfcfcufvrxoH6SRjb7AeyoT82FT-wjQsdJG6dKNuHXWPI4fquyCf2Sf3w
IP
Requested by https://datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint1E:A9:E1:96:78:1D:08:FC:96:C8:C2:34:4F:02:D3:3D:FA:9A:D2:6B
ValidityMon, 23 Oct 2023 11:25:04 GMT - Mon, 15 Jan 2024 11:25:03 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (400)
Hash 8b58ddc24e95d10cfea1792db2932b3e
9fe85364fe0335e24f7a082aea8cfbceab478bcc
09eb11b3f1884742f8c673ba0e11a2b72f0e2e0c6df4067addd4f2209f880331
GET /InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=ASKXGp17CsM9RW63foo9hqfcfcufvrxoH6SRjb7AeyoT82FT-wjQsdJG6dKNuHXWPI4fquyCf2Sf3w HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://datanodes.to/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:5l42NHnwQo0lkGR5FDReqBchiUQGIQ:oOinDvuDcHSf6XzG;Path=/;Expires=Sun, 30-Nov-2025 19:20:32 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 01 Dec 2023 19:20:32 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=ASKXGp0GItRcXSQk7qOE93NFVee5TAtgWIA6jKUtTyCD49ad5xeN_cWyMAfcsIVW2f_yMFxYS_CeHQ&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1358022343%3A1701458432575336&theme=glif
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-XIJOEYTKPOIrrqofEQlCww' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 408
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=ASKXGp0RY5c24T51BW8FAds3olYJDJhNzttvbjOM4Al6yXs83m_GB_ENreTkLusIvQpaHkZefOr3uQ
302 Found 405 B URL GET HTTP/2 accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=ASKXGp0RY5c24T51BW8FAds3olYJDJhNzttvbjOM4Al6yXs83m_GB_ENreTkLusIvQpaHkZefOr3uQ
IP
Requested by https://datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint1E:A9:E1:96:78:1D:08:FC:96:C8:C2:34:4F:02:D3:3D:FA:9A:D2:6B
ValidityMon, 23 Oct 2023 11:25:04 GMT - Mon, 15 Jan 2024 11:25:03 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (395)
Hash 0e96a3894d4c7848495d555410b5cc7f
c5a48085d58dc229de83d128432a8a68b2815fb3
194034f48b46605ae81acc2abf113fae11403ac4430e4bc91a1bc2260d7b86a7
GET /InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=ASKXGp0RY5c24T51BW8FAds3olYJDJhNzttvbjOM4Al6yXs83m_GB_ENreTkLusIvQpaHkZefOr3uQ HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://datanodes.to/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:43blknLSbHr6MH2XJXnSec_Ngan-fQ:4q3sgqlOqdh5yMaa;Path=/;Expires=Sun, 30-Nov-2025 19:20:32 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 01 Dec 2023 19:20:32 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=ASKXGp0RMaJt3YFh-__588FaNUJRlrOn2oY-mqYIj0wzUGSM3J9mtA6_cSExj4SVIGZYM8sSAKpspg&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-184249626%3A1701458432579089&theme=glif
strict-transport-security: max-age=31536000; includeSubDomains
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-vXLGdULHL5KmeNQb0pRZ4g' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 405
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lingrethertantin.com/utx?cb=eDaeM3VrUhUj&top=datanodes.to&tid=966945
204 No Content 0 B URL GET HTTP/2 lingrethertantin.com/utx?cb=eDaeM3VrUhUj&top=datanodes.to&tid=966945
IP
Requested by https://datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
Certificate IssuerAmazon
Subjectlingrethertantin.com
Fingerprint05:43:5F:62:44:4A:F8:16:0D:0E:1F:DC:05:AA:39:FF:6E:4C:56:B8
ValidityMon, 27 Nov 2023 00:00:00 GMT - Wed, 25 Dec 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utx?cb=eDaeM3VrUhUj&top=datanodes.to&tid=966945 HTTP/1.1
Host: lingrethertantin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://datanodes.to
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Fri, 01 Dec 2023 19:20:32 GMT
server: openresty/1.17.8.2
access-control-allow-credentials: true
access-control-allow-origin: https://datanodes.to
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: ut=x; Expires=Fri, 01 Dec 2023 19:21:32 GMT; Max-Age=60
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: R1P1vh7guAvtwm0eQSwPLrk87kZ440WMZosOmg1GYfuUhzMaTlHxlA==
X-Firefox-Spdy: h2
d2udkjdo48yngu.cloudfront.net/?jkdud=966945
200 OK 55 kB URL GET HTTP/2 d2udkjdo48yngu.cloudfront.net/?jkdud=966945
IP
Requested by https://datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (15945)
Hash 6f67ceaa5b6bfe7bae285629e1d742c0
d988b7f4c1acb0326d30180f64105fc1079ee568
3c85623d2df8a8a662fcc1365af4f7903f49eb65f71eae8dcdd0f1b3d586aebe
GET /?jkdud=966945 HTTP/1.1
Host: d2udkjdo48yngu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://datanodes.to/
Origin: https://datanodes.to
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 54785
date: Fri, 01 Dec 2023 19:20:32 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://datanodes.to
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Miss from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _l-Lfm6XhISNqhGS729swWzf96LIMcSzYARPtxcTX2BkwWPpWadPTA==
X-Firefox-Spdy: h2
datanodes.to/n9i5juvio68h/favicon.ico
302 Moved 0 B URL GET HTTP/1.1 datanodes.to/n9i5juvio68h/favicon.ico
IP
ASN #210848 Telkom Internet LTD
Requested by https://datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
Certificate IssuerLet's Encrypt
Subjectdatanodes.to
Fingerprint8B:19:7E:2F:34:E2:1E:F1:29:FA:AC:B5:46:1D:D5:50:78:C5:31:5F
ValidityTue, 07 Nov 2023 22:07:45 GMT - Mon, 05 Feb 2024 22:07:44 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /n9i5juvio68h/favicon.ico HTTP/1.1
Host: datanodes.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
Cookie: lang=english
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved
Date: Fri, 01 Dec 2023 19:20:32 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_perl/2.0.11 Perl/v5.16.3
Set-Cookie: file_code=n9i5juvio68h; domain=.datanodes.to; path=/; expires=Fri, 01-Dec-2023 20:20:32 GMT
Location: https://datanodes.to/download
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
d2udkjdo48yngu.cloudfront.net/rRTVJcVUmWicXajFcLUxscwNwRWBjXzoeOzUILCdhCwwASCMPQjNDMzITPQsxeAVvHTQrUnRXMCtWdEBzJFErTGFjQTkePnhUORw7I1kzBjY2EzwQaChaMxg5KVRsQxNwG3lUZ3UdPhg7IVo+AnB3BScFcHcFeEF7dRB6M3B3BT4YO3MBbEIXYAd5CWNxEH-ozcHcFOwdwdnR4QWBrBWBUZ3VSLBI+KhB7N2d1BHlBZHUEbENlI1w7FDMqTWxDE3QFfF9lY0B0QA
591 B URL d2udkjdo48yngu.cloudfront.net/rRTVJcVUmWicXajFcLUxscwNwRWBjXzoeOzUILCdhCwwASCMPQjNDMzITPQsxeAVvHTQrUnRXMCtWdEBzJFErTGFjQTkePnhUORw7I1kzBjY2EzwQaChaMxg5KVRsQxNwG3lUZ3UdPhg7IVo+AnB3BScFcHcFeEF7dRB6M3B3BT4YO3MBbEIXYAd5CWNxEH-ozcHcFOwdwdnR4QWBrBWBUZ3VSLBI+KhB7N2d1BHlBZHUEbENlI1w7FDMqTWxDE3QFfF9lY0B0QA
IP
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File type ASCII text, with very long lines (810), with no line terminators
Hash 52795fff76fe170c16896bf668a9cac5
885302f1ecf062ba6cc6fea59a1c32f0d631bac7
d4302b2db68b0bddb3e6dbb27d435ed8cc08625b9b84c95556b930b1f056aadb
GET /rRTVJcVUmWicXajFcLUxscwNwRWBjXzoeOzUILCdhCwwASCMPQjNDMzITPQsxeAVvHTQrUnRXMCtWdEBzJFErTGFjQTkePnhUORw7I1kzBjY2EzwQaChaMxg5KVRsQxNwG3lUZ3UdPhg7IVo+AnB3BScFcHcFeEF7dRB6M3B3BT4YO3MBbEIXYAd5CWNxEH-ozcHcFOwdwdnR4QWBrBWBUZ3VSLBI+KhB7N2d1BHlBZHUEbENlI1w7FDMqTWxDE3QFfF9lY0B0QA HTTP/1.1
Host: d2udkjdo48yngu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lingrethertantin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 591
date: Fri, 01 Dec 2023 19:20:32 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: iDaTe43_hQm3Dv7sBLzRS_qLTHeOj8AUj0rDVYuhECotOV5Ofk_aJQ==
X-Firefox-Spdy: h2
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=ASKXGp0GItRcXSQk7qOE93NFVee5TAtgWIA6jKUtTyCD49ad5xeN_cWyMAfcsIVW2f_yMFxYS_CeHQ&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1358022343%3A1701458432575336&theme=glif
403 Forbidden 87 kB URL GET HTTP/3 accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=ASKXGp0GItRcXSQk7qOE93NFVee5TAtgWIA6jKUtTyCD49ad5xeN_cWyMAfcsIVW2f_yMFxYS_CeHQ&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1358022343%3A1701458432575336&theme=glif
IP
Requested by https://datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type gzip compressed data, max compression\012- data
Hash d2a70c71cc87405dca7866d802721ab5
30f86b18ab48642f8bacbe5f218283a1ebc35004
7c51eef2e34351ffa390bef4b0906593639115958e20d3de4c9b331b4464c0f5
GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=ASKXGp0GItRcXSQk7qOE93NFVee5TAtgWIA6jKUtTyCD49ad5xeN_cWyMAfcsIVW2f_yMFxYS_CeHQ&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1358022343%3A1701458432575336&theme=glif HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://datanodes.to/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 01 Dec 2023 19:20:32 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport, script-src 'nonce-Wu_Gbua6u50JYz9vDOlMcA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
pogothere.xyz/asd100.bin
200 OK 102 kB IP
Requested by https://datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint17:F9:2D:6F:B5:5E:5F:37:A6:FB:BE:61:4F:97:64:33:85:5C:3A:FB
ValidityTue, 28 Feb 2023 00:00:00 GMT - Tue, 27 Feb 2024 23:59:59 GMT
Size 102 kB (102400 bytes)
Hash 4c6426ac7ef186464ecbb0d81cbfcb1e
5a6918eebd9d635e8f632e3ef34e3792b1b5ec13
f627ca4c2c322f15db26152df306bd4f983f0146409b81a4341b9b340c365a16
GET /asd100.bin HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://datanodes.to/
Origin: https://datanodes.to
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 19:20:32 GMT
content-type: binary/octet-stream
access-control-allow-origin: https://datanodes.to
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cache-control: max-age=14400
cf-cache-status: HIT
age: 2415
last-modified: Fri, 01 Dec 2023 18:40:17 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sHiV6GJfAw%2FyjNBcVsd2b%2B6pLzRJHwuYx510NAg%2Bg2lzKOQKZbbTFoHMCFpkXVRF5ZzAuUe6ML%2FCMJSlakF1wzN2%2FhUw%2FEVN0SHAGGsP7XCDlsGLwwpo92g3soDcbCeg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82edb023d80a657c-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
200 OK 7.8 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP
Requested by https://datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Hash 25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://datanodes.to
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:00:51 GMT
expires: Fri, 29 Nov 2024 04:00:51 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
age: 141581
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=ASKXGp0RMaJt3YFh-__588FaNUJRlrOn2oY-mqYIj0wzUGSM3J9mtA6_cSExj4SVIGZYM8sSAKpspg&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-184249626%3A1701458432579089&theme=glif
403 Forbidden 0 B URL GET HTTP/3 accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=ASKXGp0RMaJt3YFh-__588FaNUJRlrOn2oY-mqYIj0wzUGSM3J9mtA6_cSExj4SVIGZYM8sSAKpspg&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-184249626%3A1701458432579089&theme=glif
IP
Requested by https://datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=ASKXGp0RMaJt3YFh-__588FaNUJRlrOn2oY-mqYIj0wzUGSM3J9mtA6_cSExj4SVIGZYM8sSAKpspg&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-184249626%3A1701458432579089&theme=glif HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://datanodes.to/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 01 Dec 2023 19:20:32 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: script-src 'nonce-3ErLQIXQM_UwQ4YYC1AKxg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
200 OK 7.7 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP
Requested by https://datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Hash a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://datanodes.to
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:35:53 GMT
expires: Thu, 28 Nov 2024 21:35:53 GMT
cache-control: public, max-age=31536000
age: 164679
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pogothere.xyz/
200 OK 27 B IP
Requested by https://datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint17:F9:2D:6F:B5:5E:5F:37:A6:FB:BE:61:4F:97:64:33:85:5C:3A:FB
ValidityTue, 28 Feb 2023 00:00:00 GMT - Tue, 27 Feb 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 910f15464da29ccfe3a22ff61b7e7144
889a3e8fe75ec22c838b2b5b82cea601d66e81e2
aa297c220624820e7d06ed588a2e09400e96d7513e806b3428e8235b9bf11ae2
GET / HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://datanodes.to/
Origin: https://datanodes.to
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 19:20:32 GMT
content-type: text/plain
set-cookie: csu=1069915073457453@1@1701458432; Max-Age=31104000; Secure; SameSite=None
access-control-allow-origin: https://datanodes.to
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ri9px8RGS3tWuCelVqnTsHbR%2BeX6H1%2FytLG9ydDkMrJFT7XI0bPRdi%2B0iJ8avV31sOATOXRaoCpkf7qRMUjXLrnNcClNmhlKQxBcyzCawqb03fA2V%2FOONcqrjR3sZG9z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82edb023d808657c-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
datanodes.to/download
200 OK 86 kB IP
ASN #210848 Telkom Internet LTD
Requested by https://datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
Certificate IssuerLet's Encrypt
Subjectdatanodes.to
Fingerprint8B:19:7E:2F:34:E2:1E:F1:29:FA:AC:B5:46:1D:D5:50:78:C5:31:5F
ValidityTue, 07 Nov 2023 22:07:45 GMT - Mon, 05 Feb 2024 22:07:44 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /download HTTP/1.1
Host: datanodes.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://datanodes.to/n9i5juvio68h/Parking-Tycoon-Business-Simulator.rar
DNT: 1
Connection: keep-alive
Cookie: lang=english; file_code=n9i5juvio68h
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 01 Dec 2023 19:20:33 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_perl/2.0.11 Perl/v5.16.3
Strict-Transport-Security: max-age=0;includeSubDomains;
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Expires: Thu, 30 Nov 2023 19:20:33 GMT
Set-Cookie: affiliate=H127yY1l3jwJ2fSUcUnMp2U6u%2Bicsg7G92Q71O5v%2F5L7PCo3z%2FmT8Ftq5dhVg%2Br6JBMfxxVvOYeOYLZ2vx1mMCkDOGOvoo1FZ%2FRlFNWM4lzFSbSpGd7kR9hJbJQEu%2BN9dMgGYaJdDV6G6SahrsYeGGxD89alZg%2F94WpuAWXunk4hC%2FPxx4JjeOUMdl%2FZFw%3D%3D; domain=.datanodes.to; path=/; expires=Fri, 15-Dec-2023 19:20:33 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
31.43.191.18
172.67.194.104
23.109.82.11
0.0.0.0