e1.o.lencr.org/
345 B IP
ASN #20940 Akamai International B.V.
Hash 59c3dddd8906b769e62c239c006f4a59
6a41959496aeef0e6d2d85b9644561caaca1b094
dd10fbe0858ae8d244b86d5f458cf0eb6f82e6fb5bbebbc6184134af87e84d55
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "DD10FBE0858AE8D244B86D5F458CF0EB6F82E6FB5BBEBBC6184134AF87E84D55"
Last-Modified: Sun, 05 Nov 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21580
Expires: Sun, 05 Nov 2023 12:10:01 GMT
Date: Sun, 05 Nov 2023 06:10:21 GMT
Connection: keep-alive
popcorntime-update.xyz/?app_id=T4PSEC&hid=d48f0fbfbee73419416f96934c4cfbac&ver=6.2.0.13&os=WIN060200
200 OK 1.3 kB URL User Request GET HTTP/1.1 popcorntime-update.xyz/?app_id=T4PSEC&hid=d48f0fbfbee73419416f96934c4cfbac&ver=6.2.0.13&os=WIN060200
IP
Certificate IssuerLet's Encrypt
Subjectpopcorntime-update.xyz
FingerprintCE:9D:FC:09:5D:06:D7:53:CF:C6:D3:3E:2C:0B:CC:26:43:97:E1:55
ValidityMon, 02 Oct 2023 11:31:01 GMT - Sun, 31 Dec 2023 11:31:00 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (578)
Hash 13f2c36828cc473d2c9b4225da5fffc2
a027f2183cea62f14c8fefd6ff6c9177c5a55b95
b200ec1749cc196355cc671caeda8f0dee1f107e9d056f0e9b12db2e38322e5b
GET /?app_id=T4PSEC&hid=d48f0fbfbee73419416f96934c4cfbac&ver=6.2.0.13&os=WIN060200 HTTP/1.1
Host: popcorntime-update.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Nov 2023 06:10:20 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1281
X-Request-Id: 31c2b60b-0aff-42bc-88dc-df428b75cd2c
Cache-Control: no-store, max-age=0
Accept-Ch: sec-ch-prefers-color-scheme
Critical-Ch: sec-ch-prefers-color-scheme
Vary: sec-ch-prefers-color-scheme
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_q2jibMduzn70FBc1BdNIRUPfqshuojwtvK9M1oGfjQLN5GidEBzfiQCyZag4j2HRph2/jPRmR7t8ImSSkgM9tQ==
Set-Cookie: parking_session=31c2b60b-0aff-42bc-88dc-df428b75cd2c; expires=Sun, 05 Nov 2023 06:25:21 GMT; path=/
Connection: close
popcorntime-update.xyz/bJiFTaeiS.js
200 OK 32 kB URL GET HTTP/1.1 popcorntime-update.xyz/bJiFTaeiS.js
IP
Requested by https://popcorntime-update.xyz/?app_id=T4PSEC&hid=d48f0fbfbee73419416f96934c4cfbac&ver=6.2.0.13&os=WIN060200
Certificate IssuerLet's Encrypt
Subjectpopcorntime-update.xyz
FingerprintCE:9D:FC:09:5D:06:D7:53:CF:C6:D3:3E:2C:0B:CC:26:43:97:E1:55
ValidityMon, 02 Oct 2023 11:31:01 GMT - Sun, 31 Dec 2023 11:31:00 GMT
File type Unicode text, UTF-8 text, with very long lines (32099)
Hash 6ebd59b2d273cf49366bb4c4cd13faf0
36c1815062aeb1a99220b1abe338e5aaf02dd2ba
7b599318da054f1d77c5b0882c18aa908234c5a32c79b28c791ffafdca11516e
GET /bJiFTaeiS.js HTTP/1.1
Host: popcorntime-update.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://popcorntime-update.xyz/?app_id=T4PSEC&hid=d48f0fbfbee73419416f96934c4cfbac&ver=6.2.0.13&os=WIN060200
Cookie: parking_session=31c2b60b-0aff-42bc-88dc-df428b75cd2c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Nov 2023 06:10:21 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 32102
X-Request-Id: 6f4f834e-97d7-4bbc-b49c-6a25f0370606
Set-Cookie: parking_session=31c2b60b-0aff-42bc-88dc-df428b75cd2c; expires=Sun, 05 Nov 2023 06:25:22 GMT
Connection: close
popcorntime-update.xyz/_fd?app_id=T4PSEC&hid=d48f0fbfbee73419416f96934c4cfbac&ver=6.2.0.13&os=WIN060200
200 OK 2.0 kB URL POST HTTP/1.1 popcorntime-update.xyz/_fd?app_id=T4PSEC&hid=d48f0fbfbee73419416f96934c4cfbac&ver=6.2.0.13&os=WIN060200
IP
Requested by https://popcorntime-update.xyz/?app_id=T4PSEC&hid=d48f0fbfbee73419416f96934c4cfbac&ver=6.2.0.13&os=WIN060200
Certificate IssuerLet's Encrypt
Subjectpopcorntime-update.xyz
FingerprintCE:9D:FC:09:5D:06:D7:53:CF:C6:D3:3E:2C:0B:CC:26:43:97:E1:55
ValidityMon, 02 Oct 2023 11:31:01 GMT - Sun, 31 Dec 2023 11:31:00 GMT
File type ASCII text, with very long lines (4005), with no line terminators
Hash 2ac5a5c8abc023437b650b8345e9d613
87f01d7c5202727df1101f188f9cacf5082ad023
f42d8dbad907c36bf1e9b2a1d34680cb2e2a5ff84f5a9b0a598b8104a01f9565
POST /_fd?app_id=T4PSEC&hid=d48f0fbfbee73419416f96934c4cfbac&ver=6.2.0.13&os=WIN060200 HTTP/1.1
Host: popcorntime-update.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://popcorntime-update.xyz/?app_id=T4PSEC&hid=d48f0fbfbee73419416f96934c4cfbac&ver=6.2.0.13&os=WIN060200
Content-Type: application/json
Origin: https://popcorntime-update.xyz
DNT: 1
Connection: keep-alive
Cookie: parking_session=31c2b60b-0aff-42bc-88dc-df428b75cd2c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/1.1 200 OK
Server: openresty
Date: Sun, 05 Nov 2023 06:10:21 GMT
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Content-Length: 2030
X-Version: 2.110.2
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: parking_session=31c2b60b-0aff-42bc-88dc-df428b75cd2c; expires=Sun, 05 Nov 2023 06:25:22 GMT; Max-Age=900; path=/; httponly
Connection: close
www.google.com/afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol202%2Cpid-bodis-gcontrol47%2Cpid-bodis-gcontrol306%2Cpid-bodis-gcontrol152%2Cpid-bodis-gcontrol424&client=dp-bodis30_3ph&r=m&hl=en&rpbu=https%3A%2F%2Fpopcorntime-update.xyz%3Fcaf%26app_id%3DT4PSEC%26hid%3Dd48f0fbfbee73419416f96934c4cfbac%26ver%3D6.2.0.13%26os%3DWIN060200&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2148305361097618&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002&format=r3&nocache=7811699164622990&num=0&output=afd_ads&domain_name=popcorntime-update.xyz&v=3&bsl=8&pac=2&u_his=2&u_tz=0&dt=1699164622991&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=922&frm=0&cl=578165713&uio=-&cont=rs&jsid=caf&jsv=578165713&rurl=https%3A%2F%2Fpopcorntime-update.xyz%2F%3Fapp_id%3DT4PSEC%26hid%3Dd48f0fbfbee73419416f96934c4cfbac%26ver%3D6.2.0.13%26os%3DWIN060200
200 OK 2.6 kB URL GET HTTP/3 www.google.com/afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol202%2Cpid-bodis-gcontrol47%2Cpid-bodis-gcontrol306%2Cpid-bodis-gcontrol152%2Cpid-bodis-gcontrol424&client=dp-bodis30_3ph&r=m&hl=en&rpbu=https%3A%2F%2Fpopcorntime-update.xyz%3Fcaf%26app_id%3DT4PSEC%26hid%3Dd48f0fbfbee73419416f96934c4cfbac%26ver%3D6.2.0.13%26os%3DWIN060200&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2148305361097618&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002&format=r3&nocache=7811699164622990&num=0&output=afd_ads&domain_name=popcorntime-update.xyz&v=3&bsl=8&pac=2&u_his=2&u_tz=0&dt=1699164622991&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=922&frm=0&cl=578165713&uio=-&cont=rs&jsid=caf&jsv=578165713&rurl=https%3A%2F%2Fpopcorntime-update.xyz%2F%3Fapp_id%3DT4PSEC%26hid%3Dd48f0fbfbee73419416f96934c4cfbac%26ver%3D6.2.0.13%26os%3DWIN060200
IP
Requested by https://popcorntime-update.xyz/?app_id=T4PSEC&hid=d48f0fbfbee73419416f96934c4cfbac&ver=6.2.0.13&os=WIN060200
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13266)
Hash d1abea0fdf42cb58c3247e2943b21410
d0a7862564417a9908ffea5ba316f9575170975d
e17a64c1deb4e86c70e1edc449406b8593fc78092b7ea2266ec63f740eadd594
GET /afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol202%2Cpid-bodis-gcontrol47%2Cpid-bodis-gcontrol306%2Cpid-bodis-gcontrol152%2Cpid-bodis-gcontrol424&client=dp-bodis30_3ph&r=m&hl=en&rpbu=https%3A%2F%2Fpopcorntime-update.xyz%3Fcaf%26app_id%3DT4PSEC%26hid%3Dd48f0fbfbee73419416f96934c4cfbac%26ver%3D6.2.0.13%26os%3DWIN060200&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2148305361097618&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002&format=r3&nocache=7811699164622990&num=0&output=afd_ads&domain_name=popcorntime-update.xyz&v=3&bsl=8&pac=2&u_his=2&u_tz=0&dt=1699164622991&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=922&frm=0&cl=578165713&uio=-&cont=rs&jsid=caf&jsv=578165713&rurl=https%3A%2F%2Fpopcorntime-update.xyz%2F%3Fapp_id%3DT4PSEC%26hid%3Dd48f0fbfbee73419416f96934c4cfbac%26ver%3D6.2.0.13%26os%3DWIN060200 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://popcorntime-update.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/html; charset=UTF-8
content-disposition: inline
date: Sun, 05 Nov 2023 06:10:23 GMT
expires: Sun, 05 Nov 2023 06:10:23 GMT
cache-control: private, max-age=3600
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-j0HJSDhPh1ULfhjTf-7f6w' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
content-encoding: br
server: gws
content-length: 2624
x-xss-protection: 0
set-cookie: CONSENT=PENDING+051; expires=Tue, 04-Nov-2025 06:10:23 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.googleapis.com/css?family=Quicksand
200 OK 110 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Quicksand
IP
Requested by https://popcorntime-update.xyz/?app_id=T4PSEC&hid=d48f0fbfbee73419416f96934c4cfbac&ver=6.2.0.13&os=WIN060200
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintFA:D7:68:E4:12:7D:FE:22:87:DE:95:F1:1E:49:5A:49:FA:12:1E:B9
ValidityMon, 16 Oct 2023 08:10:01 GMT - Mon, 08 Jan 2024 08:10:00 GMT
File type ASCII text, with very long lines (2067)
Size 110 kB (109563 bytes)
Hash f7a98f9d0f0a56517ba195f6b7bb3be5
0c73b6bfa372330e5819b5abe5df87df38661e99
bd8bcf77b37a0add2dc4606a82497f39541d5bbe2a6b2208a5052c6018910dd6
GET /css?family=Quicksand HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://popcorntime-update.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 Nov 2023 06:10:22 GMT
date: Sun, 05 Nov 2023 06:10:22 GMT
cache-control: private, max-age=86400
content-security-policy-report-only: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/bcfae741e379a885f2ab2cf83ebe6d32/mr
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/call_to_action_arrow.svg?c=%23ffffff
200 OK 278 B URL GET HTTP/2 afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/call_to_action_arrow.svg?c=%23ffffff
IP
Requested by https://www.google.com/afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol202%2Cpid-bodis-gcontrol47%2Cpid-bodis-gcontrol306%2Cpid-bodis-gcontrol152%2Cpid-bodis-gcontrol424&client=dp-bodis30_3ph&r=m&hl=en&rpbu=https%3A%2F%2Fpopcorntime-update.xyz%3Fcaf%26app_id%3DT4PSEC%26hid%3Dd48f0fbfbee73419416f96934c4cfbac%26ver%3D6.2.0.13%26os%3DWIN060200&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2148305361097618&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002&format=r3&nocache=7811699164622990&num=0&output=afd_ads&domain_name=popcorntime-update.xyz&v=3&bsl=8&pac=2&u_his=2&u_tz=0&dt=1699164622991&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=922&frm=0&cl=578165713&uio=-&cont=rs&jsid=caf&jsv=578165713&rurl=https%3A%2F%2Fpopcorntime-update.xyz%2F%3Fapp_id%3DT4PSEC%26hid%3Dd48f0fbfbee73419416f96934c4cfbac%26ver%3D6.2.0.13%26os%3DWIN060200
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintCB:BB:D8:FC:60:AA:94:8F:47:5C:88:BB:C3:30:22:92:26:D3:85:2F
ValidityMon, 16 Oct 2023 08:09:46 GMT - Mon, 08 Jan 2024 08:09:45 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (306)
Hash fe7dd8c3c629cc6e9cd6d3e4d3cbe905
59ef3b8e4a17169a4cb45fba65bf0d2bf49c8a18
5455d8d4b8ae5150039ff7a83a6679d4338a435945985fa9f8d0ecbea9ae2f6e
GET /ad_icons/standard/publisher_icon_image/call_to_action_arrow.svg?c=%23ffffff HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 278
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 Nov 2023 01:28:00 GMT
expires: Mon, 06 Nov 2023 00:28:00 GMT
cache-control: public, max-age=82800
age: 16943
last-modified: Tue, 27 Jun 2023 17:28:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
popcorntime-update.xyz/_tr
200 OK 22 B URL POST HTTP/1.1 popcorntime-update.xyz/_tr
IP
Requested by https://popcorntime-update.xyz/?app_id=T4PSEC&hid=d48f0fbfbee73419416f96934c4cfbac&ver=6.2.0.13&os=WIN060200
Certificate IssuerLet's Encrypt
Subjectpopcorntime-update.xyz
FingerprintCE:9D:FC:09:5D:06:D7:53:CF:C6:D3:3E:2C:0B:CC:26:43:97:E1:55
ValidityMon, 02 Oct 2023 11:31:01 GMT - Sun, 31 Dec 2023 11:31:00 GMT
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /_tr HTTP/1.1
Host: popcorntime-update.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://popcorntime-update.xyz/?app_id=T4PSEC&hid=d48f0fbfbee73419416f96934c4cfbac&ver=6.2.0.13&os=WIN060200
Content-Type: application/json
Content-Length: 1849
Origin: https://popcorntime-update.xyz
DNT: 1
Connection: keep-alive
Cookie: parking_session=31c2b60b-0aff-42bc-88dc-df428b75cd2c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Sun, 05 Nov 2023 06:10:23 GMT
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Content-Length: 22
X-Version: 2.110.2
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: parking_session=31c2b60b-0aff-42bc-88dc-df428b75cd2c; expires=Sun, 05 Nov 2023 06:25:23 GMT; Max-Age=900; path=/; httponly
Connection: close
www.google.com/afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=zbt1wl2yh2ru&aqid=zzFHZf2EA5-fiM0Ps_yemAo&psid=3113057640&pbt=bs&adbx=290&adby=145&adbh=481&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=578165713&csala=7%7C0%7C282%7C75%7C272&lle=0&ifv=1&usr=0&hpt=0
204 No Content 0 B URL GET HTTP/3 www.google.com/afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=zbt1wl2yh2ru&aqid=zzFHZf2EA5-fiM0Ps_yemAo&psid=3113057640&pbt=bs&adbx=290&adby=145&adbh=481&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=578165713&csala=7%7C0%7C282%7C75%7C272&lle=0&ifv=1&usr=0&hpt=0
IP
Requested by https://popcorntime-update.xyz/?app_id=T4PSEC&hid=d48f0fbfbee73419416f96934c4cfbac&ver=6.2.0.13&os=WIN060200
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=zbt1wl2yh2ru&aqid=zzFHZf2EA5-fiM0Ps_yemAo&psid=3113057640&pbt=bs&adbx=290&adby=145&adbh=481&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=578165713&csala=7%7C0%7C282%7C75%7C272&lle=0&ifv=1&usr=0&hpt=0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://popcorntime-update.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-mMcREguMRJo92VxO9Ktdnw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Sun, 05 Nov 2023 06:10:25 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: NID=511=CpxpdHZhYic6BfhEAlhdJDY7jPw15QgQ6lDsJW6ijfY14iwEZhfOpIeyOpDnrvkDvF6UthYRzK8lIk65RprOcDUpO7f95z3zrS1H1W4axQudLK4lx4eBKkDlEGpgYmIKyoovjuqyVFawtvNkn3ICOO9zVVge141wHjS-zYWRFTs; expires=Mon, 06-May-2024 06:10:25 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+330; expires=Tue, 04-Nov-2025 06:10:25 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=8lmcqdbga5ma&aqid=zzFHZf2EA5-fiM0Ps_yemAo&psid=3113057640&pbt=bv&adbx=290&adby=145&adbh=481&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=578165713&csala=7%7C0%7C282%7C75%7C272&lle=0&ifv=1&usr=0&hpt=0
204 No Content 0 B URL GET HTTP/3 www.google.com/afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=8lmcqdbga5ma&aqid=zzFHZf2EA5-fiM0Ps_yemAo&psid=3113057640&pbt=bv&adbx=290&adby=145&adbh=481&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=578165713&csala=7%7C0%7C282%7C75%7C272&lle=0&ifv=1&usr=0&hpt=0
IP
Requested by https://popcorntime-update.xyz/?app_id=T4PSEC&hid=d48f0fbfbee73419416f96934c4cfbac&ver=6.2.0.13&os=WIN060200
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=8lmcqdbga5ma&aqid=zzFHZf2EA5-fiM0Ps_yemAo&psid=3113057640&pbt=bv&adbx=290&adby=145&adbh=481&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=578165713&csala=7%7C0%7C282%7C75%7C272&lle=0&ifv=1&usr=0&hpt=0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://popcorntime-update.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-4D5Yp-lZaHX6KN-BE7ccYA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Sun, 05 Nov 2023 06:10:25 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: NID=511=I5cNzyO6iJ-6hvvK27OcgcbZViQOtYhhBH5g2fZFdfL5JaoP_AUfZHjD8Nz_FdXGO4f031gqO6Q1En4H1-Bzzg1TaZ9nInLWi3Ko6SR0Uh3_T4LO1hDIfxySgaCxXZAown465I9busSACcBhskqhovh7ABBG_emqdn15y4UGQKs; expires=Mon, 06-May-2024 06:10:25 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+809; expires=Tue, 04-Nov-2025 06:10:25 GMT; path=/; domain=.google.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%2302198b
200 OK 200 B URL GET HTTP/2 afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%2302198b
IP
Requested by https://www.google.com/afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol202%2Cpid-bodis-gcontrol47%2Cpid-bodis-gcontrol306%2Cpid-bodis-gcontrol152%2Cpid-bodis-gcontrol424&client=dp-bodis30_3ph&r=m&hl=en&rpbu=https%3A%2F%2Fpopcorntime-update.xyz%3Fcaf%26app_id%3DT4PSEC%26hid%3Dd48f0fbfbee73419416f96934c4cfbac%26ver%3D6.2.0.13%26os%3DWIN060200&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2148305361097618&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002&format=r3&nocache=7811699164622990&num=0&output=afd_ads&domain_name=popcorntime-update.xyz&v=3&bsl=8&pac=2&u_his=2&u_tz=0&dt=1699164622991&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=922&frm=0&cl=578165713&uio=-&cont=rs&jsid=caf&jsv=578165713&rurl=https%3A%2F%2Fpopcorntime-update.xyz%2F%3Fapp_id%3DT4PSEC%26hid%3Dd48f0fbfbee73419416f96934c4cfbac%26ver%3D6.2.0.13%26os%3DWIN060200
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintCB:BB:D8:FC:60:AA:94:8F:47:5C:88:BB:C3:30:22:92:26:D3:85:2F
ValidityMon, 16 Oct 2023 08:09:46 GMT - Mon, 08 Jan 2024 08:09:45 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash e81eb30a6c5589e7f39436e40b400822
ca2513ede010b3db00099335b809ca693c2cd65c
055ae1fef3be182534069c718e2dc0ab07d7464bcc3ded19553da07d37333657
GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%2302198b HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 174
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 Nov 2023 07:38:33 GMT
expires: Sun, 05 Nov 2023 06:38:33 GMT
cache-control: public, max-age=82800
age: 81110
last-modified: Thu, 02 Nov 2023 22:48:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/adsense/domains/caf.js
200 OK 150 kB URL GET HTTP/3 www.google.com/adsense/domains/caf.js
IP
Requested by https://www.google.com/afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol202%2Cpid-bodis-gcontrol47%2Cpid-bodis-gcontrol306%2Cpid-bodis-gcontrol152%2Cpid-bodis-gcontrol424&client=dp-bodis30_3ph&r=m&hl=en&rpbu=https%3A%2F%2Fpopcorntime-update.xyz%3Fcaf%26app_id%3DT4PSEC%26hid%3Dd48f0fbfbee73419416f96934c4cfbac%26ver%3D6.2.0.13%26os%3DWIN060200&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2148305361097618&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002&format=r3&nocache=7811699164622990&num=0&output=afd_ads&domain_name=popcorntime-update.xyz&v=3&bsl=8&pac=2&u_his=2&u_tz=0&dt=1699164622991&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=922&frm=0&cl=578165713&uio=-&cont=rs&jsid=caf&jsv=578165713&rurl=https%3A%2F%2Fpopcorntime-update.xyz%2F%3Fapp_id%3DT4PSEC%26hid%3Dd48f0fbfbee73419416f96934c4cfbac%26ver%3D6.2.0.13%26os%3DWIN060200
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT
File type ASCII text, with very long lines (2067)
Size 150 kB (150089 bytes)
Hash 9cf22a540fd371b148f6a182178f8286
9c49604496bbbcb0f64a90712e305b71f1b89811
bdaa36e167d0a217c16d02adfc39af74dbec994426ad0fee2aae49466db434db
GET /adsense/domains/caf.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Sun, 05 Nov 2023 06:10:23 GMT
expires: Sun, 05 Nov 2023 06:10:23 GMT
cache-control: private, max-age=3600
etag: "11742922006327471653"
x-content-type-options: nosniff
link: <https://www.adsensecustomsearchads.com>; rel="preconnect"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/adsense/domains/caf.js
200 OK 150 kB URL GET HTTP/2 www.google.com/adsense/domains/caf.js
IP
Requested by https://popcorntime-update.xyz/?app_id=T4PSEC&hid=d48f0fbfbee73419416f96934c4cfbac&ver=6.2.0.13&os=WIN060200
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintF5:CC:DA:B5:BA:1E:14:14:44:CC:27:90:92:CC:60:1F:5F:08:AF:77
ValidityMon, 16 Oct 2023 08:10:46 GMT - Mon, 08 Jan 2024 08:10:45 GMT
File type ASCII text, with very long lines (2067)
Size 150 kB (150123 bytes)
Hash a8fbb14ee8d6ff3992ab8380a321f98c
4c10968a6bb0fbf3fc8013ad36db79785e41b6f2
b5157f47da508e2cc0379669b1db1081c5bc0ecb7e29f0bcfabb95c14fab66f4
GET /adsense/domains/caf.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://popcorntime-update.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Sun, 05 Nov 2023 06:10:22 GMT
expires: Sun, 05 Nov 2023 06:10:22 GMT
cache-control: private, max-age=3600
etag: "16698292921475804467"
x-content-type-options: nosniff
link: <https://www.adsensecustomsearchads.com>; rel="preconnect"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
199.59.243.225
23.33.119.57