GET vjs.zencdn.net/7.8.4/video-js.css?ver=7.8.4
200 OK 11 kB URL GET HTTP/2 vjs.zencdn.net/7.8.4/video-js.css?ver=7.8.4
IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerGlobalSign nv-sa
Subjectvjs.zencdn.net
Fingerprint6B:3F:11:07:D7:05:FD:AF:4D:46:B4:BA:1C:8A:60:70:95:37:35:17
ValidityWed, 06 Mar 2024 21:50:11 GMT - Mon, 07 Apr 2025 21:50:10 GMT
File type Unicode text, UTF-8 text, with very long lines (5844)
Hash 397a94bb87dfd0a64ba4d3d502912e4a
c43be470c7ff54d4bf6d4f5256502d68fc2221bc
5ead814b213a977667a2d801ed60313d28ad913178384faf945b4b9859a6cccc
GET /7.8.4/video-js.css?ver=7.8.4 HTTP/1.1
Host: vjs.zencdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pinayum.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Wed, 08 Jul 2020 20:29:36 GMT
etag: "397a94bb87dfd0a64ba4d3d502912e4a"
cache-control: public, max-age=31536000
content-type: text/css; charset=utf-8
content-encoding: gzip
date: Thu, 02 May 2024 03:22:44 GMT
x-served-by: cache-hel1410023-HEL
x-cache: HIT
x-cache-hits: 62844
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
content-length: 10738
X-Firefox-Spdy: h2
GET pinayum.org/wp-content/themes/retrotube/assets/stylesheets/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
200 OK 77 kB URL GET HTTP/3 pinayum.org/wp-content/themes/retrotube/assets/stylesheets/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerLet's Encrypt
Subjectpinayum.org
Fingerprint44:98:66:18:24:6B:99:C1:F9:EF:0C:3A:C0:D3:B3:06:5A:5A:D4:2C
ValidityThu, 07 Mar 2024 08:16:27 GMT - Wed, 05 Jun 2024 08:16:26 GMT
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wp-content/themes/retrotube/assets/stylesheets/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: pinayum.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://pinayum.org/wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 02 May 2024 03:22:45 GMT
content-type: font/woff2
content-length: 77160
cache-control: public, max-age=604800
expires: Wed, 08 May 2024 05:24:20 GMT
last-modified: Thu, 08 Feb 2024 03:46:25 GMT
etag: "12d68-65c44e91-aa49949229e4249b;;;"
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
age: 76138
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 9ede3d91d2163259f1db71d87f3c8fe6-imm-edge2
x-hcdn-cache-status: HIT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aIxG27NauFmHvY566FzoZAU8r72mAUhwVQR%2Fxoohmg3nj%2FQIhRDsEc4n%2FOt76T6ueZTST7Z%2BX1qZsJ10Q9vTijInNBEQWW1bVodlVTh1EYeuP%2B%2BW1tsYuwTonD%2Fwtg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d4e37f6bb3b51e-OSL
GET cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js
200 OK 28 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65451)
Hash dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d
GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.sh/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 02 May 2024 03:22:45 GMT
content-type: application/javascript; charset=utf-8
content-length: 27958
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb09ed3-15d84"
last-modified: Mon, 04 May 2020 23:01:39 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 23363
expires: Tue, 22 Apr 2025 03:22:45 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LL%2FJnBP9ZjxcCqM5RzmiXUYD1qB4gJ6cnriVeXll2a7%2FsBtyHASblyPjmoT5XkK%2BwXk64mO%2Byv2OTROX8iB%2Brulb4zlcYmZTV2sFrmAWSve9PqbWTK5pA7CgS74%2B%2BcOfR6an8ski"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87d4e3803a5456a2-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET dood.sh/e/8p6jatncyuj9
200 OK 50 kB IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerGoogle Trust Services LLC
Subjectdood.sh
Fingerprint87:0C:E0:84:9B:C9:F0:5C:F4:39:DA:59:AF:01:24:59:3C:D6:36:DB
ValidityWed, 24 Apr 2024 00:27:36 GMT - Tue, 23 Jul 2024 00:27:35 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash dd69bb90108ca1f8bc3bb1973322a40e
79535c8308fe7264a0f3ed4005f949d424f6e3ea
5cf42f715cb4691542668b3db7c3b8d07307319b59a3213458058e4a99a026f3
Analyzer Verdict Alert urlquery suspicious Suspicious - Anti-debugging code
GET /e/8p6jatncyuj9 HTTP/1.1
Host: dood.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pinayum.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 02 May 2024 03:22:44 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Wed, 01 May 2024 03:22:44 GMT
set-cookie: lang=1; domain=.dood.sh; path=/; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TJ1ysoL5OkmD%2ByJ%2B7dwipk3zDo4KBS3pSFvCQKApMacqjmA5yib2E8DqAY4mCZOLXItmflddQySscofyku%2FkF3Ujqam5HoEjGWyGOc2b5xKaoysRFV55C2Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d4e37e3b4f569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cdnjs.cloudflare.com/ajax/libs/videojs-hotkeys/0.2.28/videojs.hotkeys.min.js
200 OK 1.6 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/videojs-hotkeys/0.2.28/videojs.hotkeys.min.js
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (4505)
Hash f2ecb2bd8a424c8e8cf507ce8bd933c2
3cbc08ca052ea25c3b0834b9291a3ca1e9122e26
4c0745052abbb26087a707bb0a043b43c393674055ba2d4452ac89e6923eb099
GET /ajax/libs/videojs-hotkeys/0.2.28/videojs.hotkeys.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.sh/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 02 May 2024 03:22:45 GMT
content-type: application/javascript; charset=utf-8
content-length: 1571
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "630ad3e5-623"
last-modified: Sun, 28 Aug 2022 02:33:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 24830
expires: Tue, 22 Apr 2025 03:22:45 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cUYHI%2FxnVrsth0%2BT2oMWAThAgexV%2B%2BVqQ1rTiqHkb8XpiTwSJglqk0Web75CXvhY6LxzKrqjkiDuu4JLBcryYCm31i0zn79OHqVxs%2BbxGsHVY4Fvt9XibnG54xrMr37qMPVGqDNe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87d4e3808a6e56a2-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cdnjs.cloudflare.com/ajax/libs/video.js/7.21.5/video.min.js
200 OK 137 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/video.js/7.21.5/video.min.js
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (48459)
Size 137 kB (137405 bytes)
Hash d7fdaaab43bc993b85290c713fd2d289
46bf3d27b2cf38b0e999d3b0a7613011181c87f9
c9535ea3a4e0af22e960ac1e32d363a71029f31aa96b29fc894e111fee49329e
GET /ajax/libs/video.js/7.21.5/video.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.sh/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 02 May 2024 03:22:45 GMT
content-type: application/javascript; charset=utf-8
content-length: 137405
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64bb5c88-218bd"
last-modified: Sat, 22 Jul 2023 04:35:20 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 17692
expires: Tue, 22 Apr 2025 03:22:45 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aldQNc3s3lodzmMJXHWaXT9Eq3Jlb2sGAjYIB2SXHJRFD0hoEIx%2BRLP%2Bq2ikqV3P9tomnJmXtEoPt8EaLahDKGfUAyJasrOle%2BCbpqppOSLX6%2FG%2FunFWut7%2FhvATJHkg3qRFkP8W"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87d4e3809a7356a2-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET vjs.zencdn.net/7.8.4/video.min.js?ver=7.8.4
200 OK 139 kB URL GET HTTP/2 vjs.zencdn.net/7.8.4/video.min.js?ver=7.8.4
IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerGlobalSign nv-sa
Subjectvjs.zencdn.net
Fingerprint6B:3F:11:07:D7:05:FD:AF:4D:46:B4:BA:1C:8A:60:70:95:37:35:17
ValidityWed, 06 Mar 2024 21:50:11 GMT - Mon, 07 Apr 2025 21:50:10 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (45362)
Size 139 kB (139307 bytes)
Hash 102cc1896541330762962b95fcb31f95
58af851e231b29a31690a7b74ebfa89a62977a0d
be788c49f862ad8e0f7947411cb71db6aac0046b3cee79c3144179a57baf07bb
GET /7.8.4/video.min.js?ver=7.8.4 HTTP/1.1
Host: vjs.zencdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pinayum.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 08 Jul 2020 20:29:39 GMT
etag: "102cc1896541330762962b95fcb31f95"
cache-control: public, max-age=31536000
content-type: application/javascript; charset=utf-8
content-encoding: gzip
date: Thu, 02 May 2024 03:22:45 GMT
x-served-by: cache-hel1410023-HEL
x-cache: HIT
x-cache-hits: 2222
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
content-length: 139307
X-Firefox-Spdy: h2
GET i.doodcdn.co/ads/ad.js
200 OK 18 B IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerCloudflare, Inc.
Subjectdoodcdn.co
Fingerprint8C:32:D4:AB:AF:53:AF:34:D3:6F:F9:E0:66:DC:21:B2:03:C6:34:F3
ValidityFri, 12 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 071c641b229d2bfadd243b8fa2a9c88d
4048ed3ad506f9bb9052c23283912d0cfea8bcc6
3716878d3ceb2042b22c092b31c6f43cc862f8464e92ddde416a49624b32716e
GET /ads/ad.js HTTP/1.1
Host: i.doodcdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.sh/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 02 May 2024 03:22:45 GMT
content-type: application/javascript
content-length: 18
access-control-allow-origin: *
cache-control: public, max-age=2592000
cf-bgj: minify
cf-polished: origSize=20
expires: Thu, 01 May 2025 19:45:12 GMT
last-modified: Mon, 03 Jan 2022 15:38:36 GMT
vary: User-Agent,Accept-Encoding
cf-cache-status: HIT
age: 25842
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N85VkvJ9XRvggICDTb%2BvtmNF1uiNrH3IdI4wocmkAklQvG7Wje1WR6CkIxKhNKhvSPx2f%2F%2BfBv4sjG2MOMaXmUu%2FrXxJ8j9wO%2FG%2FIR%2FbHzrqKIMhB0W7uZt4rNE5dg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d4e381cc8bb523-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET i.doodcdn.co/img/no_video_3.svg
200 OK 2.8 kB URL GET HTTP/2 i.doodcdn.co/img/no_video_3.svg
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerCloudflare, Inc.
Subjectdoodcdn.co
Fingerprint8C:32:D4:AB:AF:53:AF:34:D3:6F:F9:E0:66:DC:21:B2:03:C6:34:F3
ValidityFri, 12 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image
Hash 077bfdaa49ae4877a42611b739ec4752
a2f9e1222b7af9abc05122411ab8902efcc08ead
70d6a17097a8c27edfaad6740e11359d9363f3f04bff1b93483e29c25609fa6c
GET /img/no_video_3.svg HTTP/1.1
Host: i.doodcdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.sh/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 02 May 2024 03:22:45 GMT
content-type: image/svg+xml
content-length: 2812
last-modified: Mon, 03 Jan 2022 15:38:36 GMT
etag: "61d3187c-afc"
expires: Fri, 31 May 2024 18:35:50 GMT
cache-control: public, max-age=2592000, no-transform
access-control-allow-origin: *
cf-cache-status: HIT
age: 31468
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TBT13ch86d4KOk8kblYhtuwHeJfY2meeIv%2BYEEqAEWgJux3TzQnCEA7PMdPBxtXcWtMnuGWgbbD2dFWtsb%2FMB7Kl5I3a2wKKkGn67Xpqj5%2FgfjTg6FlSGdauVQVGHw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d4e381cc8cb523-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET pinayum.org/wp-content/themes/retrotube/style.css?ver=1.7.2.1707363985
200 OK 124 kB URL GET HTTP/3 pinayum.org/wp-content/themes/retrotube/style.css?ver=1.7.2.1707363985
IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerLet's Encrypt
Subjectpinayum.org
Fingerprint44:98:66:18:24:6B:99:C1:F9:EF:0C:3A:C0:D3:B3:06:5A:5A:D4:2C
ValidityThu, 07 Mar 2024 08:16:27 GMT - Wed, 05 Jun 2024 08:16:26 GMT
File type ASCII text, with very long lines (52553), with no line terminators
Size 124 kB (124369 bytes)
Hash d7e1d25af35cbeaeda2bd4167f20793f
3f66eb3cb08d20e9dc1629ae3fc83ffe23270a32
1fb6136323a89965592bf655d7542d97eb58f4b4c2feb473895374def3eac70a
GET /wp-content/themes/retrotube/style.css?ver=1.7.2.1707363985 HTTP/1.1
Host: pinayum.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 02 May 2024 03:22:44 GMT
content-type: text/css
age: 76138
cache-control: public, max-age=604800
cf-bgj: minify
cf-polished: origSize=75271
alt-svc: h3=":443"; ma=86400
content-security-policy: upgrade-insecure-requests
etag: W/"12607-65c44e91-8ccd7eb27e152d1c;br"
expires: Wed, 08 May 2024 05:22:31 GMT
last-modified: Thu, 08 Feb 2024 03:46:25 GMT
platform: hostinger
x-hcdn-cache-status: HIT
x-hcdn-request-id: a0422c6a6d0e1ab16e9804d71c6dbbea-imm-edge1
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0h%2FeYtcNlc%2BPfyucD7SjI%2ByCmQQjW3fKrx2RR0uatufF2irAdOxJ8FmMSUHusKlL05ufhZ744cmobKPC3Fv0Yj40JkV6%2B14EsSDqyf5tu7i6JOpVJtDFl27CzWZ4tA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d4e37deadbb51e-OSL
content-encoding: br
GET img.doodcdn.co/snaps/95qu3m3d014n8dw2.jpg
200 OK 26 kB URL GET HTTP/3 img.doodcdn.co/snaps/95qu3m3d014n8dw2.jpg
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerCloudflare, Inc.
Subjectdoodcdn.co
Fingerprint8C:32:D4:AB:AF:53:AF:34:D3:6F:F9:E0:66:DC:21:B2:03:C6:34:F3
ValidityFri, 12 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File type JPEG image data, baseline, precision 8, 480x848, components 3
Hash c12270bd3816208544cec7ab072a450f
759c81e0f215fc1832c33cacc8d19aeb6cddb0a8
58b5358c4654e01731783978d7aac0f0da1a24fa933a88246f75022ce3a3ae72
GET /snaps/95qu3m3d014n8dw2.jpg HTTP/1.1
Host: img.doodcdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.sh/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 02 May 2024 03:22:45 GMT
content-type: image/jpeg
content-length: 26103
access-control-allow-origin: *
cache-control: max-age=1209600
cf-bgj: imgq:100,h2pri
cf-polished: status=not_needed
etag: "65a29c8a-65f7"
expires: Wed, 15 May 2024 06:08:15 GMT
last-modified: Sat, 13 Jan 2024 14:22:02 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ReqkDD6O91pYfgslMzExdv4SmYDe0MrAwKi4Avj5DW4tuuVqsbddeX4ttPF9hUIffKdtEvFlnm2HSWyTEuiQFeBkLRiD39FnuZDZdHckYk9%2FbPNzoju7onma7Lr4zJaT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d4e381caf0b529-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET 6v41p4bsq.com/lv/esnk/1999130/code.js
200 OK 140 kB URL GET HTTP/2 6v41p4bsq.com/lv/esnk/1999130/code.js
IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerBuypass AS-983163327
Subject
Fingerprint61:0C:D2:DF:A5:99:8D:C6:B8:C1:FC:9D:F2:27:20:E0:21:BE:50:73
ValidityTue, 09 Jan 2024 12:50:38 GMT - Sat, 06 Jul 2024 21:59:00 GMT
File type JavaScript source, ASCII text, with very long lines (65107)
Size 140 kB (139935 bytes)
Hash 78ebfafd5e59680617bf293a24bdf559
6243feb29738ed9fa107fcaf31b0751ed6977a99
7f1cb7ba19af76e595eb2219a333e6e47ec33d7dc6c4ade8345e81f01b32b089
GET /lv/esnk/1999130/code.js HTTP/1.1
Host: 6v41p4bsq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pinayum.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 03:22:44 GMT
content-type: application/javascript
last-modified: Thu, 25 Apr 2024 17:06:20 GMT
vary: Accept-Encoding
etag: W/"662a8d8c-1c437"
x-js-ab2: current
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/js?id=GT-WR992JMM
200 OK 102 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=GT-WR992JMM
IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52
ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
File type JavaScript source, ASCII text, with very long lines (5945)
Size 102 kB (101506 bytes)
Hash 7f5df250ab77e6085cb601b7440422da
0f1de46259fd80276eef38849930690615ec3049
5125f955058c53ab595d6d97ec45d1db73eca331d3716783414f3fbc804b637a
GET /gtag/js?id=GT-WR992JMM HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pinayum.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 May 2024 03:22:45 GMT
expires: Thu, 02 May 2024 03:22:45 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 101506
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET unpkg.com/@silvermine/videojs-quality-selector@1.2.4/dist/js/silvermine-videojs-quality-selector.min.js
200 OK 10 kB URL GET HTTP/2 unpkg.com/@silvermine/videojs-quality-selector@1.2.4/dist/js/silvermine-videojs-quality-selector.min.js
IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerGoogle Trust Services LLC
Subjectunpkg.com
Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3
ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT
File type JavaScript source, ASCII text, with very long lines (23113)
Hash f923d2667324506e72f42ca781ccb6f9
ab63ce25316c340764513b00d48855dc85265cfd
65516c677f31b3dc7a46b25580752d407e4cf3b9c9f7edaa21b78c3dc5740266
GET /@silvermine/videojs-quality-selector@1.2.4/dist/js/silvermine-videojs-quality-selector.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pinayum.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 02 May 2024 03:22:45 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
content-encoding: br
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: "5acc-q2POJTFsNAdkUTsA1IhV3IUmXP0"
via: 1.1 fly.io
fly-request-id: 01HWR4TATYWJDD7BX5MFPW27WN-arn
cf-cache-status: HIT
age: 117850
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87d4e3840bf8b50b-OSL
X-Firefox-Spdy: h2
GET pinayum.org/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
200 OK 13 kB URL GET HTTP/3 pinayum.org/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerLet's Encrypt
Subjectpinayum.org
Fingerprint44:98:66:18:24:6B:99:C1:F9:EF:0C:3A:C0:D3:B3:06:5A:5A:D4:2C
ValidityThu, 07 Mar 2024 08:16:27 GMT - Wed, 05 Jun 2024 08:16:26 GMT
File type gzip compressed data, from Unix
Hash 906c3dc32bcfece186742853dc8ff71b
b1e80fa5db64dfb9079b2a447291ac6566ed4dd9
1bf42822ad12b6bbcc98d47b4b9162cbe8f3f59a7651e361df06aaf42f04e246
GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: pinayum.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 02 May 2024 03:22:44 GMT
content-type: application/javascript
last-modified: Tue, 30 Apr 2024 15:20:25 GMT
etag: W/"66310c39-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1Sq1sU1JsE1kLqxdQ%2FrbdOKBYKQvR5IeqetkT8CpR%2BzTP%2FVTfQTZP1fhV8zCp5yC6gbGHdHPYYIJXwEylnI%2FQc9wMio6dqKrvW1Ib%2F1AIN8ILBdV%2BxHWStKGM0gEYA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d4e37dfae4b51e-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sat, 04 May 2024 03:22:44 GMT
cache-control: max-age=172800, public
content-encoding: gzip
GET unpkg.com/@silvermine/videojs-quality-selector@1.2.4/dist/js/silvermine-videojs-quality-selector.min.js?ver=1.2.4
302 Found 5.8 kB URL GET HTTP/2 unpkg.com/@silvermine/videojs-quality-selector@1.2.4/dist/js/silvermine-videojs-quality-selector.min.js?ver=1.2.4
IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerGoogle Trust Services LLC
Subjectunpkg.com
Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3
ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT
File type ASCII text, with no line terminators
Hash a3e76fbecf35f0eaab82e1aa69d50316
88c472a442e7d97f7bd0bb6ecbe335f48bb90e46
0b0a9dedccddcc9297dd1a8afe58db1f787ceac8518f37dc21659bb1f468139b
GET /@silvermine/videojs-quality-selector@1.2.4/dist/js/silvermine-videojs-quality-selector.min.js?ver=1.2.4 HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pinayum.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 02 May 2024 03:22:45 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
location: /@silvermine/videojs-quality-selector@1.2.4/dist/js/silvermine-videojs-quality-selector.min.js
vary: Accept, Accept-Encoding
content-encoding: br
via: 1.1 fly.io
fly-request-id: 01HWVN6JK2K8B28001TS86AHAS-arn
cf-cache-status: HIT
age: 9
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87d4e3825b32b50b-OSL
X-Firefox-Spdy: h2
GET pinayum.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
200 OK 10 kB URL GET HTTP/3 pinayum.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerLet's Encrypt
Subjectpinayum.org
Fingerprint44:98:66:18:24:6B:99:C1:F9:EF:0C:3A:C0:D3:B3:06:5A:5A:D4:2C
ValidityThu, 07 Mar 2024 08:16:27 GMT - Wed, 05 Jun 2024 08:16:26 GMT
File type JavaScript source, ASCII text, with very long lines (13479)
Hash 9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: pinayum.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 02 May 2024 03:22:45 GMT
content-type: application/x-javascript
cache-control: public, max-age=604800
expires: Wed, 08 May 2024 06:13:48 GMT
last-modified: Thu, 08 Feb 2024 03:20:51 GMT
etag: W/"3509-65c44893-4fd312fe67bcf706;br"
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 38cf2af4a9e6667d6433d10275bc6f43-imm-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.853
cf-cache-status: HIT
age: 76137
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vUvVNEyqYpozA6M4xHyOLx4QD46BoqIeVysjNZdQUmg%2BU5RjzFVjuTSgHV3EgkyfoSuM%2F1kaEYbQFZn3hXv2Zwk14L4h8eMF0QwGz7mlTlerSDDpccr0LxNkFdTexw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d4e3807c84b51e-OSL
content-encoding: br
GET i.doodcdn.co/fonts/avertastd-regular-webfont.woff2
200 OK 24 kB URL GET HTTP/3 i.doodcdn.co/fonts/avertastd-regular-webfont.woff2
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerCloudflare, Inc.
Subjectdoodcdn.co
Fingerprint8C:32:D4:AB:AF:53:AF:34:D3:6F:F9:E0:66:DC:21:B2:03:C6:34:F3
ValidityFri, 12 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 23812, version 1.524
Hash eb586e5a1b86dbf1c866e3ed80f9d18e
280ee78d19c017ab9335f769595e5157d3c4a343
714e70103deac0d67f52a6285c5fabee6088ce4d710ce7e74353503837038baf
GET /fonts/avertastd-regular-webfont.woff2 HTTP/1.1
Host: i.doodcdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dood.sh
DNT: 1
Connection: keep-alive
Referer: https://i.doodcdn.co/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 02 May 2024 03:22:46 GMT
content-type: font/woff2
content-length: 23812
last-modified: Mon, 03 Jan 2022 15:38:36 GMT
cache-control: max-age=2592000
expires: Fri, 31 May 2024 16:39:29 GMT
vary: User-Agent,Accept-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 38297
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=flbhfOI7sMTNIkzus3RFQr0JK41oxTP9%2FH81d%2FognZI2LN1nB1F8Q3z%2B8nUgug55JQHWYUSyGUTL%2F5Di25LnoxBWzrR1JN%2BVyH9C8s7J0Rc6kvT5sMksurQfA82Mzg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d4e3858d0eb505-OSL
alt-svc: h3=":443"; ma=86400
POST 84gs08xe1.com/solid.gif?z=1999132&nojs=0&abvar=0&febuild=1.0.233&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=8838093625164288&eclog=0&im=1
200 OK 43 B URL POST HTTP/2 84gs08xe1.com/solid.gif?z=1999132&nojs=0&abvar=0&febuild=1.0.233&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=8838093625164288&eclog=0&im=1
IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerBuypass AS-983163327
Subject
Fingerprint2E:BB:12:7D:D0:64:37:24:6A:22:94:BC:E9:DD:26:B3:DA:01:C9:2C
ValiditySat, 27 Apr 2024 13:01:10 GMT - Wed, 23 Oct 2024 21:59:00 GMT
File type GIF image data, version 89a, 1 x 1
Hash 28e463819a210071de3b45ebe7633613
6dccd571828ec0912629119cf7eabfea9f33ddbc
44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84
POST /solid.gif?z=1999132&nojs=0&abvar=0&febuild=1.0.233&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=8838093625164288&eclog=0&im=1 HTTP/1.1
Host: 84gs08xe1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pinayum.org
DNT: 1
Connection: keep-alive
Referer: https://pinayum.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 03:22:46 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.tag.loaded
set-cookie: CHCK=1; Path=/; Expires=Thu, 05 Jun 2025 03:22:46 GMT; Secure; SameSite=None
UID=2405012222194c84577e2948d4be8db9d2b2; Path=/; Expires=Thu, 05 Jun 2025 03:22:46 GMT; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
GET i.doodcdn.com/theme_2/img/loader.svg
301 Moved Permanently 167 B URL GET HTTP/2 i.doodcdn.com/theme_2/img/loader.svg
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerGoogle Trust Services LLC
Subjectdoodcdn.com
FingerprintBF:BF:75:F1:F8:2C:6B:14:57:EF:04:47:A4:FC:01:46:C6:78:A6:CF
ValidityWed, 10 Apr 2024 07:21:20 GMT - Tue, 09 Jul 2024 07:21:19 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash 0104c301c5e02bd6148b8703d19b3a73
7436e0b4b1f8c222c38069890b75fa2baf9ca620
446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
GET /theme_2/img/loader.svg HTTP/1.1
Host: i.doodcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://i.doodcdn.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Thu, 02 May 2024 03:22:46 GMT
content-type: text/html
content-length: 167
location: https://i.doodcdn.co/theme_2/img/loader.svg
cache-control: max-age=3600
expires: Thu, 02 May 2024 04:22:46 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y4FAL01JREdBaCEK0Msk6LGtN0Bt1oKamYKunXf5QQJs2%2FrkrxbPkiw8S4gp7RCJMnmFkMwuHAo47akrVjQE385GwVj%2Bcx%2BuwtLV1z1XiWpF2Z3Np7hGg0kWLYlPwyDU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d4e385ff16b523-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cdn.cloudfrale.com/bn/db1/fc8/a8d/db1fc8a8dadd8a66dc20bacce73a0d2e9e9e2807.mp4
206 Partial Content 357 kB URL GET HTTP/2 cdn.cloudfrale.com/bn/db1/fc8/a8d/db1fc8a8dadd8a66dc20bacce73a0d2e9e9e2807.mp4
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerBuypass AS-983163327
Subject
Fingerprint5F:02:E3:5B:0C:B7:FA:C1:27:2A:35:DA:29:17:01:A8:47:B5:F3:A8
ValidityWed, 10 Jan 2024 08:59:56 GMT - Sun, 07 Jul 2024 21:59:00 GMT
File type ISO Media, MP4 v2 [ISO 14496-14]
Size 357 kB (357139 bytes)
Hash d4938e1a3b06ac9ac6dd49f43af75fc2
db1fc8a8dadd8a66dc20bacce73a0d2e9e9e2807
6bfb40cb5c5f9367a399aa9804488db58012b397688884903eb7da571f53f5bb
GET /bn/db1/fc8/a8d/db1fc8a8dadd8a66dc20bacce73a0d2e9e9e2807.mp4 HTTP/1.1
Host: cdn.cloudfrale.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
date: Thu, 02 May 2024 03:22:45 GMT
content-type: video/mp4
content-length: 357139
server: nginx/1.24.0
etag: d4938e1a3b06ac9ac6dd49f43af75fc2
last-modified: Sun, 05 Nov 2023 16:31:37 GMT
x-timestamp: 1699201896.46460
x-trans-id: txecfe0990e95840dcb961c-0065ca48c0
x-openstack-request-id: txecfe0990e95840dcb961c-0065ca48c0
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Sat, 04 May 2024 03:22:45 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
access-control-allow-origin: *
content-range: bytes 0-357138/357139
X-Firefox-Spdy: h2
GET pinayum.org/wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0
200 OK 364 kB URL GET HTTP/3 pinayum.org/wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerLet's Encrypt
Subjectpinayum.org
Fingerprint44:98:66:18:24:6B:99:C1:F9:EF:0C:3A:C0:D3:B3:06:5A:5A:D4:2C
ValidityThu, 07 Mar 2024 08:16:27 GMT - Wed, 05 Jun 2024 08:16:26 GMT
File type ASCII text, with very long lines (30837)
Size 364 kB (364117 bytes)
Hash 269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: pinayum.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 02 May 2024 03:22:44 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 08 May 2024 05:22:31 GMT
last-modified: Thu, 08 Feb 2024 03:46:25 GMT
etag: W/"7918-65c44e91-caa1e44dfef42033;br"
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
age: 76138
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 11a25d5a4e949a40bc1afe9b6fc0b935-imm-edge1
x-hcdn-cache-status: HIT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jFfQXAkCkvZFL4MxXYFZy9qQPxK2OBkMFel47BaUvXoZj064bfP%2BR7i93wHulv9p2f%2BCZAjwnX5KGq%2BAgiXtcFQL8qJEV6cALW7jmLCL9%2BhRirKntSBMm9CkVEtpMA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d4e37dead9b51e-OSL
content-encoding: br
GET pinayum.org/wp-content/themes/retrotube/assets/js/navigation.js?ver=1.0.0
200 OK 27 kB URL GET HTTP/3 pinayum.org/wp-content/themes/retrotube/assets/js/navigation.js?ver=1.0.0
IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerLet's Encrypt
Subjectpinayum.org
Fingerprint44:98:66:18:24:6B:99:C1:F9:EF:0C:3A:C0:D3:B3:06:5A:5A:D4:2C
ValidityThu, 07 Mar 2024 08:16:27 GMT - Wed, 05 Jun 2024 08:16:26 GMT
File type JavaScript source, ASCII text, with very long lines (792)
Hash 8f28d05cc29d8106973461c96e19e51f
51c5646754e68518fe8f5d8700c01a2556d10028
837f1f7050991bb53fb4562af9c14709d00fcad5e590487b229a3000e9bb9c41
GET /wp-content/themes/retrotube/assets/js/navigation.js?ver=1.0.0 HTTP/1.1
Host: pinayum.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 02 May 2024 03:22:45 GMT
content-type: application/x-javascript
age: 76138
cache-control: public, max-age=604800
cf-bgj: minify
cf-polished: origSize=4500
alt-svc: h3=":443"; ma=86400
content-security-policy: upgrade-insecure-requests
etag: W/"1194-65c44e91-5fa6fda1b5723af4;br"
expires: Wed, 08 May 2024 05:27:59 GMT
last-modified: Thu, 08 Feb 2024 03:46:25 GMT
platform: hostinger
x-hcdn-cache-status: HIT
x-hcdn-request-id: 2cbea016e8095b2d7761b0169f2fc7b5-imm-edge2
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uZGvnt91I8q3AEGP8xsxSRmpUJ0i0RuO%2BB%2BpXd4ZosexSJDZN9ixkBkv8un7%2Fom7ixOrr32ptn3na1tyz3c9JxvuGg9UjIwYxjx4h8sEezjU%2FXsfNk%2Fv6kFBzJNryA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d4e3805c5fb51e-OSL
content-encoding: br
POST ku42hjr2e.com/solid.gif?z=1941940&nojs=0&abvar=0&febuild=1.0.233&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1232&y=693&md=0&afid=6867768788280832&eclog=0&im=1
200 OK 43 B URL POST HTTP/2 ku42hjr2e.com/solid.gif?z=1941940&nojs=0&abvar=0&febuild=1.0.233&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1232&y=693&md=0&afid=6867768788280832&eclog=0&im=1
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerBuypass AS-983163327
Subject
Fingerprint15:EC:3A:52:11:EC:ED:35:8E:60:38:E6:CC:79:A7:3E:A3:5B:B6:62
ValidityTue, 09 Jan 2024 12:43:23 GMT - Sat, 06 Jul 2024 21:59:00 GMT
File type GIF image data, version 89a, 1 x 1
Hash 28e463819a210071de3b45ebe7633613
6dccd571828ec0912629119cf7eabfea9f33ddbc
44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84
POST /solid.gif?z=1941940&nojs=0&abvar=0&febuild=1.0.233&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1232&y=693&md=0&afid=6867768788280832&eclog=0&im=1 HTTP/1.1
Host: ku42hjr2e.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dood.sh
DNT: 1
Connection: keep-alive
Referer: https://dood.sh/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 03:22:46 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.tag.loaded
set-cookie: CHCK=1; Path=/; Expires=Thu, 05 Jun 2025 03:22:46 GMT; Secure; SameSite=None
UID=24050122221029b7bc8c2744889d5c944f09; Path=/; Expires=Thu, 05 Jun 2025 03:22:46 GMT; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
GET dood.sh/cdn-cgi/challenge-platform/scripts/jsd/main.js
302 Found 0 B URL GET HTTP/3 dood.sh/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerGoogle Trust Services LLC
Subjectdood.sh
Fingerprint87:0C:E0:84:9B:C9:F0:5C:F4:39:DA:59:AF:01:24:59:3C:D6:36:DB
ValidityWed, 24 Apr 2024 00:27:36 GMT - Tue, 23 Jul 2024 00:27:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: dood.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Thu, 02 May 2024 03:22:46 GMT
content-length: 0
cache-control: max-age=300, public
access-control-allow-origin: *
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KkVVdqp4k3Hg%2Bp6EU7B6L8gFmkhffusJdlsL3V85vC%2FjiKpbu8sfprFGIcs3giXl8fEZkHqijfnzB7Md3v04ssLwuUnir7gyivt%2Fuz3wZV5HMkh%2FT%2BKeVe0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d4e3869bad5696-OSL
alt-svc: h3=":443"; ma=86400
GET i.doodcdn.co/img/logo-s.png
200 OK 1.9 kB URL GET HTTP/3 i.doodcdn.co/img/logo-s.png
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerCloudflare, Inc.
Subjectdoodcdn.co
Fingerprint8C:32:D4:AB:AF:53:AF:34:D3:6F:F9:E0:66:DC:21:B2:03:C6:34:F3
ValidityFri, 12 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image
Hash 8211fb3cc137d3e1c1e399b86476f951
136d8ef228959aa0cee12e5ed463b6e6a4fcf720
2577866b9d26cd6a4be764910f0913ae5b737ed1d130d635048051ebe15ae680
GET /img/logo-s.png HTTP/1.1
Host: i.doodcdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.sh/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 02 May 2024 03:22:46 GMT
content-type: image/webp
content-length: 1932
access-control-allow-origin: *
cache-control: public, max-age=2592000, no-transform
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=6212
content-disposition: inline; filename="logo-s.webp"
etag: "61d3187c-1844"
expires: Fri, 31 May 2024 02:33:36 GMT
last-modified: Mon, 03 Jan 2022 15:38:36 GMT
vary: Accept
cf-cache-status: HIT
age: 31473
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2UaTu4%2FuAHQ%2F9oEgyXFAij1%2Fnar3bOlYni%2BJOqasn5MfLEz8YVeB5YEKJ9OgtT2XySn9uQRfZf%2FIBLhWmC2PIRXZUaPR2kfHL3FyobNGfxcXrMK2pky52WOcj87xFQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d4e3869b67712b-OSL
alt-svc: h3=":443"; ma=86400
GET cdn.tsyndicate.com/sdk/v1/puengine.js
200 OK 90 kB URL GET HTTP/2 cdn.tsyndicate.com/sdk/v1/puengine.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerLet's Encrypt
Subjectcdn.tsyndicate.com
Fingerprint27:B4:A1:69:D6:DF:AF:13:62:9C:06:AB:7A:E0:2F:B6:9B:08:43:75
ValidityTue, 09 Apr 2024 03:01:17 GMT - Mon, 08 Jul 2024 03:01:16 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash dd5e3d608cc7831780050c847b3b249e
ae5df44b84829faa0cbf2614c5b3c23d1901063b
9f8cc0fa666cd6911977e73e8ea15747da46c0e2fed880b774d974aeec94fa50
GET /sdk/v1/puengine.js HTTP/1.1
Host: cdn.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.sh/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 02 May 2024 03:22:46 GMT
content-type: application/javascript; charset=utf-8
content-length: 89731
server: nginx
last-modified: Mon, 15 Jan 2024 13:51:12 GMT
etag: "65a53850-15e83"
x-robots-tag: noindex, nofollow
cache-control: max-age=172800
expires: Sat, 04 May 2024 03:22:46 GMT
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET iresandal.info/S1ZXVGdkaTQnWh1kI2UEehwhDAwZHTY5Xi0EZyAJEgBiFjQmA3EgDi9rbmRfe2NgchciMmplQTgiNiASOGtmcg4lMDhpQT1rZnpUf3hkYkl/cCJpVm0iJzUAdmdxJBM/OmplUHpiYWZXemBibVZ8
204 No Content 0 B URL GET HTTP/2 iresandal.info/S1ZXVGdkaTQnWh1kI2UEehwhDAwZHTY5Xi0EZyAJEgBiFjQmA3EgDi9rbmRfe2NgchciMmplQTgiNiASOGtmcg4lMDhpQT1rZnpUf3hkYkl/cCJpVm0iJzUAdmdxJBM/OmplUHpiYWZXemBibVZ8
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerGoogle Trust Services LLC
Subjectiresandal.info
FingerprintD9:9E:21:6F:70:F4:90:F2:B5:4A:CC:E5:AB:CD:07:D7:A8:09:59:3A
ValidityMon, 01 Apr 2024 07:01:50 GMT - Sun, 30 Jun 2024 07:01:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /S1ZXVGdkaTQnWh1kI2UEehwhDAwZHTY5Xi0EZyAJEgBiFjQmA3EgDi9rbmRfe2NgchciMmplQTgiNiASOGtmcg4lMDhpQT1rZnpUf3hkYkl/cCJpVm0iJzUAdmdxJBM/OmplUHpiYWZXemBibVZ8 HTTP/1.1
Host: iresandal.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.sh/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Thu, 02 May 2024 03:22:46 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DqrMpGz582AQ6rZSUmEm00x%2BMDUDJ7R5YcVkGOgrJ%2BJod7MQ0%2FMeQmFQqovutojy8RrdxEQXJROPIzmgCje8DZUokrQZsETeH4jjZcJkPHCwPIaY%2Ffr2xOsetDJmrA0dQA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d4e3869f0356a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET iresandal.info/SjlVSXllBjY6RBxDAzEgeF07CzwYbgN7IAloAwMrEF4TAS8MWnM9EC4EbHlIeAxtbwkjXWh7QGxKISgNP0poeF8jVzMmRGxPaHhXehdjeVd+HyB0SGxNJSgedwhzOQ0+VWh4TnsNY3tJew9gcE14
204 No Content 0 B URL GET HTTP/2 iresandal.info/SjlVSXllBjY6RBxDAzEgeF07CzwYbgN7IAloAwMrEF4TAS8MWnM9EC4EbHlIeAxtbwkjXWh7QGxKISgNP0poeF8jVzMmRGxPaHhXehdjeVd+HyB0SGxNJSgedwhzOQ0+VWh4TnsNY3tJew9gcE14
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerGoogle Trust Services LLC
Subjectiresandal.info
FingerprintD9:9E:21:6F:70:F4:90:F2:B5:4A:CC:E5:AB:CD:07:D7:A8:09:59:3A
ValidityMon, 01 Apr 2024 07:01:50 GMT - Sun, 30 Jun 2024 07:01:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /SjlVSXllBjY6RBxDAzEgeF07CzwYbgN7IAloAwMrEF4TAS8MWnM9EC4EbHlIeAxtbwkjXWh7QGxKISgNP0poeF8jVzMmRGxPaHhXehdjeVd+HyB0SGxNJSgedwhzOQ0+VWh4TnsNY3tJew9gcE14 HTTP/1.1
Host: iresandal.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.sh/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Thu, 02 May 2024 03:22:46 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=V3VB9xIM9CpcXyjMiT3McjN%2FUvfOmC2swpk71ZX%2BkvfjxW5lhSzzUClO%2FxjZmnLk1IdKEsIZ196yROclxpQqHDVupYp0ejZCKQE3lfQFBnCHCayiU8JasyBEkrLpkoZq4g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d4e3869eff56a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET iresandal.info/T0VtUGlgeg4jVC0dIxQLGi0IAgcrJg4WAQsmXGFeFwA7Yj4HLkskACt4VGddfXFYdhkmIVBhUWk2GTEdOjZQYU8mKws/VGkzUGFHf2tfflxpMFBhTzs1DDdUfmMdJB0jeFxnWHtzX2BYeXBUY1g
204 No Content 0 B URL GET HTTP/2 iresandal.info/T0VtUGlgeg4jVC0dIxQLGi0IAgcrJg4WAQsmXGFeFwA7Yj4HLkskACt4VGddfXFYdhkmIVBhUWk2GTEdOjZQYU8mKws/VGkzUGFHf2tfflxpMFBhTzs1DDdUfmMdJB0jeFxnWHtzX2BYeXBUY1g
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerGoogle Trust Services LLC
Subjectiresandal.info
FingerprintD9:9E:21:6F:70:F4:90:F2:B5:4A:CC:E5:AB:CD:07:D7:A8:09:59:3A
ValidityMon, 01 Apr 2024 07:01:50 GMT - Sun, 30 Jun 2024 07:01:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /T0VtUGlgeg4jVC0dIxQLGi0IAgcrJg4WAQsmXGFeFwA7Yj4HLkskACt4VGddfXFYdhkmIVBhUWk2GTEdOjZQYU8mKws/VGkzUGFHf2tfflxpMFBhTzs1DDdUfmMdJB0jeFxnWHtzX2BYeXBUY1g HTTP/1.1
Host: iresandal.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.sh/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Thu, 02 May 2024 03:22:46 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ke%2Bn30y4F3xj3GMW5sIPiYVnkzbe8mzCTs9oU2dktsvfhMBrJIC3sD66Vf1aLKQakUanjxURtlza1Zn7GeGySkX4mwLtKtf6gFtSwT9UIxR8DESlzf1UbTkoDfQhISt9CA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d4e386ef2d56a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET lyappreciat.info/WWVKNDQ4BylZCzhYKBJBKwl3EQYfQHhyUCxVOkFQaRYuWFkjA2RXWDYQLlJGNgs+Glo8EW8GchU0J2ZHDQkfXHcuLCVVXgArCXx6KgYmTFc8VwBfchtROHkHYSQLTXEhBwhXcTghckx3LixvBnY4Jhthfy4wOVBiFzMOcHJuNCJTBBQ9c2FnMCx6eHUXNytwdSone3IRayMpTXkYISR6XAMnC1d9DVBvBnIdJCFAeB0gGXJgLggEYX0DKXhTQhodE1p7ClEMZ2wuMS4ERDoEeFBNDScYEQYfPw1QbBUIPlpXPgIMfXcYUxtiAXxXCHhsKTYHB1wxP3tXQThXLk1yMUg6Rm4+Ky5jWRsJKwRyPAMgfVobEilcVxEkI2xabA4pWGY9AydmWg8JPVtkHSQId10cERAFbSgBeHpHDyAlA1URKGxeRzYLOglSKSIBTQNuXAhQDQ
200 OK 1.2 kB URL GET HTTP/2 lyappreciat.info/WWVKNDQ4BylZCzhYKBJBKwl3EQYfQHhyUCxVOkFQaRYuWFkjA2RXWDYQLlJGNgs+Glo8EW8GchU0J2ZHDQkfXHcuLCVVXgArCXx6KgYmTFc8VwBfchtROHkHYSQLTXEhBwhXcTghckx3LixvBnY4Jhthfy4wOVBiFzMOcHJuNCJTBBQ9c2FnMCx6eHUXNytwdSone3IRayMpTXkYISR6XAMnC1d9DVBvBnIdJCFAeB0gGXJgLggEYX0DKXhTQhodE1p7ClEMZ2wuMS4ERDoEeFBNDScYEQYfPw1QbBUIPlpXPgIMfXcYUxtiAXxXCHhsKTYHB1wxP3tXQThXLk1yMUg6Rm4+Ky5jWRsJKwRyPAMgfVobEilcVxEkI2xabA4pWGY9AydmWg8JPVtkHSQId10cERAFbSgBeHpHDyAlA1URKGxeRzYLOglSKSIBTQNuXAhQDQ
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerAmazon
Subjectlyappreciat.info
Fingerprint36:2B:79:61:76:AB:5F:D6:D1:81:18:F5:38:E8:BC:C8:08:02:8E:9B
ValidityMon, 01 Apr 2024 00:00:00 GMT - Wed, 30 Apr 2025 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (3032), with no line terminators
Hash d5be06e6627c0ba0c8524c51679f62a4
8bc1cdae38c426faa0a2a86f8138b0058f75f919
3a67c3ebe1d4a7c48bfc6247a002b5bb013453a7cbd9b1191662cbb41af10b0b
GET /WWVKNDQ4BylZCzhYKBJBKwl3EQYfQHhyUCxVOkFQaRYuWFkjA2RXWDYQLlJGNgs+Glo8EW8GchU0J2ZHDQkfXHcuLCVVXgArCXx6KgYmTFc8VwBfchtROHkHYSQLTXEhBwhXcTghckx3LixvBnY4Jhthfy4wOVBiFzMOcHJuNCJTBBQ9c2FnMCx6eHUXNytwdSone3IRayMpTXkYISR6XAMnC1d9DVBvBnIdJCFAeB0gGXJgLggEYX0DKXhTQhodE1p7ClEMZ2wuMS4ERDoEeFBNDScYEQYfPw1QbBUIPlpXPgIMfXcYUxtiAXxXCHhsKTYHB1wxP3tXQThXLk1yMUg6Rm4+Ky5jWRsJKwRyPAMgfVobEilcVxEkI2xabA4pWGY9AydmWg8JPVtkHSQId10cERAFbSgBeHpHDyAlA1URKGxeRzYLOglSKSIBTQNuXAhQDQ HTTP/1.1
Host: lyappreciat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.sh/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-length: 1185
date: Thu, 02 May 2024 03:22:46 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 c908cbeaf223c80632fd467b8ff1278a.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: ucB75kML-UNQbhAgPLjLhil8S6UG1IK-pssm6bL_BiJ4uvtZ_F9gLA==
X-Firefox-Spdy: h2
GET getrunkhomuto.info/aldNZnALNS4LTwtqL0AFGDtwQ0Iscn8gFB9nPRMUWiQpCh0QMWMFHAUiKQACBTk5SB4PI2hUNgMAGisIJRIEUDQsbigAI1ocGzcmXTYbLzQuDz1DQiwSfSgUIBAcLigGNCACCCgNBQ8XGxMLXzkMLiowIQcWNS4XIGMYVCEeEBszNgk5dTYlLA4hPDU8AhsPNgECJQIqID05AzI4Y38tIRI2DzUfUhYIDjwkFAw0IQFuJioxIxobNUAAFCFXJSNkNTQUHWY+ByUzEw4hHwICKicUCQU5ITEdMDgrMVsSHCEUGAJ9DTEOFhcwMjhmNSFAMxMOIjEcBSpLOl8yf18+KwULCBFbGRo+Iy8uCSQhIRUKEiQrFiUfESwaDC4oKCcPMBghHTdePTkFfBE4WzgFIB4gcn8gNg0gB0AaGTgjFk0bIT4+Ay02BA0
200 OK 1.2 kB URL GET HTTP/2 getrunkhomuto.info/aldNZnALNS4LTwtqL0AFGDtwQ0Iscn8gFB9nPRMUWiQpCh0QMWMFHAUiKQACBTk5SB4PI2hUNgMAGisIJRIEUDQsbigAI1ocGzcmXTYbLzQuDz1DQiwSfSgUIBAcLigGNCACCCgNBQ8XGxMLXzkMLiowIQcWNS4XIGMYVCEeEBszNgk5dTYlLA4hPDU8AhsPNgECJQIqID05AzI4Y38tIRI2DzUfUhYIDjwkFAw0IQFuJioxIxobNUAAFCFXJSNkNTQUHWY+ByUzEw4hHwICKicUCQU5ITEdMDgrMVsSHCEUGAJ9DTEOFhcwMjhmNSFAMxMOIjEcBSpLOl8yf18+KwULCBFbGRo+Iy8uCSQhIRUKEiQrFiUfESwaDC4oKCcPMBghHTdePTkFfBE4WzgFIB4gcn8gNg0gB0AaGTgjFk0bIT4+Ay02BA0
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerAmazon
Subjectgetrunkhomuto.info
Fingerprint07:6C:15:28:EC:56:65:DE:8C:55:1C:BF:A5:DB:7B:96:8F:38:56:0E
ValidityMon, 01 Apr 2024 00:00:00 GMT - Wed, 30 Apr 2025 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (3027), with no line terminators
Hash 5beadc2794cf3492fcacab4e01895e77
b654331dbe0d0bbdfbf252f54df1bf1098e11903
f7209f836f0bb5b6e12921466a8bc8e2e2a2f61d218b88fe131fea4287fb0602
GET /aldNZnALNS4LTwtqL0AFGDtwQ0Iscn8gFB9nPRMUWiQpCh0QMWMFHAUiKQACBTk5SB4PI2hUNgMAGisIJRIEUDQsbigAI1ocGzcmXTYbLzQuDz1DQiwSfSgUIBAcLigGNCACCCgNBQ8XGxMLXzkMLiowIQcWNS4XIGMYVCEeEBszNgk5dTYlLA4hPDU8AhsPNgECJQIqID05AzI4Y38tIRI2DzUfUhYIDjwkFAw0IQFuJioxIxobNUAAFCFXJSNkNTQUHWY+ByUzEw4hHwICKicUCQU5ITEdMDgrMVsSHCEUGAJ9DTEOFhcwMjhmNSFAMxMOIjEcBSpLOl8yf18+KwULCBFbGRo+Iy8uCSQhIRUKEiQrFiUfESwaDC4oKCcPMBghHTdePTkFfBE4WzgFIB4gcn8gNg0gB0AaGTgjFk0bIT4+Ay02BA0 HTTP/1.1
Host: getrunkhomuto.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.sh/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-length: 1182
date: Thu, 02 May 2024 03:22:46 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 67d9c6999f4bc9c9c60e1e5f24b316e8.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: 2sjhurBYLr9OsZ7bzHhLY2ZhwuVRgT-6pxE2RRV7DecNMXMoN2Js_w==
X-Firefox-Spdy: h2
GET getrunkhomuto.info/SXlKakIoGykHfShEKEw3OxV3T3APXHgsJjxJOh8meQouBi8zH2QJLiYMLgwwJhc+RCwsDW9YBDEaelMRHTx6OwsNDjsJJSoUBAQEeSsCHiUsMSI8EjA4OiFyfQsaOQ85IR4ddCgQKSsLDQ5yCQYmGAEDCw40Hh1zBzgpDgMjKzslEyILKFk6OzEzXnoCSgg8CSMOPAkHAwkHEyU/LSQecgYqMiULI0l4IABxEwdYLmxLDCQaOUEsLSoLH3kFci88ABsbGEwlOxpxXHgoCBo0DSRxLVx4KCQYDXkwAAdOGFgyIT0nAgAvAAtcIww4BQtxORMbWBh6HyRaFwITZy8sABUQUwQBTHM7LHAQLDJzChgnKHoCASVTDDAWIylwOR4JBBAPIB0gMwY8f09wC18gGS0nCXcjFzEXASgxLgEABA8v
200 OK 1.2 kB URL GET HTTP/2 getrunkhomuto.info/SXlKakIoGykHfShEKEw3OxV3T3APXHgsJjxJOh8meQouBi8zH2QJLiYMLgwwJhc+RCwsDW9YBDEaelMRHTx6OwsNDjsJJSoUBAQEeSsCHiUsMSI8EjA4OiFyfQsaOQ85IR4ddCgQKSsLDQ5yCQYmGAEDCw40Hh1zBzgpDgMjKzslEyILKFk6OzEzXnoCSgg8CSMOPAkHAwkHEyU/LSQecgYqMiULI0l4IABxEwdYLmxLDCQaOUEsLSoLH3kFci88ABsbGEwlOxpxXHgoCBo0DSRxLVx4KCQYDXkwAAdOGFgyIT0nAgAvAAtcIww4BQtxORMbWBh6HyRaFwITZy8sABUQUwQBTHM7LHAQLDJzChgnKHoCASVTDDAWIylwOR4JBBAPIB0gMwY8f09wC18gGS0nCXcjFzEXASgxLgEABA8v
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerAmazon
Subjectgetrunkhomuto.info
Fingerprint07:6C:15:28:EC:56:65:DE:8C:55:1C:BF:A5:DB:7B:96:8F:38:56:0E
ValidityMon, 01 Apr 2024 00:00:00 GMT - Wed, 30 Apr 2025 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (3015), with no line terminators
Hash 6c042341306b4f833b9d0498e9e64a54
94a5bf041d21a4e3f897bb453515ee4777fde9aa
48c30febab13680a5d3fb9a48cb03893043af72385db0b4295281c08a23dafec
GET /SXlKakIoGykHfShEKEw3OxV3T3APXHgsJjxJOh8meQouBi8zH2QJLiYMLgwwJhc+RCwsDW9YBDEaelMRHTx6OwsNDjsJJSoUBAQEeSsCHiUsMSI8EjA4OiFyfQsaOQ85IR4ddCgQKSsLDQ5yCQYmGAEDCw40Hh1zBzgpDgMjKzslEyILKFk6OzEzXnoCSgg8CSMOPAkHAwkHEyU/LSQecgYqMiULI0l4IABxEwdYLmxLDCQaOUEsLSoLH3kFci88ABsbGEwlOxpxXHgoCBo0DSRxLVx4KCQYDXkwAAdOGFgyIT0nAgAvAAtcIww4BQtxORMbWBh6HyRaFwITZy8sABUQUwQBTHM7LHAQLDJzChgnKHoCASVTDDAWIylwOR4JBBAPIB0gMwY8f09wC18gGS0nCXcjFzEXASgxLgEABA8v HTTP/1.1
Host: getrunkhomuto.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.sh/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-length: 1171
date: Thu, 02 May 2024 03:22:46 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 67d9c6999f4bc9c9c60e1e5f24b316e8.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: WLs-YmFw0wbUfMK-ZYVqyt6KbTFNZF8hmYhK3VhtCOAysZ_ajjbCcA==
X-Firefox-Spdy: h2
GET op285c.video-delivery.net/favicon.ico?i
200 OK 15 kB URL GET HTTP/1.1 op285c.video-delivery.net/favicon.ico?i
IP
Requested by moz-nullprincipal:{3fb17fe7-8f84-4a61-9bee-e43ec389eaa0}?https://dood.sh
Certificate IssuerSectigo Limited
Subject*.video-delivery.net
FingerprintB2:D2:20:85:E7:38:3D:67:F7:C4:52:00:66:6C:CD:FE:DD:6D:7E:74
ValidityMon, 07 Aug 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT
File type MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Hash 30d3656f43c817e38c3e7d70b2bfbdad
1aa43b43755e7cba5e145d0978517f7bedad7da6
a558a4796f60f07743027eec96b538b2e7758cca8c544ed796ff745837478555
GET /favicon.ico?i HTTP/1.1
Host: op285c.video-delivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 May 2024 03:22:46 GMT
Content-Type: image/vnd.microsoft.icon
Content-Length: 15406
Connection: keep-alive
Last-Modified: Sat, 29 Feb 2020 09:26:04 GMT
ETag: "3c2e-59fb38b06e300"
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
GET pinayum.org/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
200 OK 32 kB URL GET HTTP/3 pinayum.org/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerLet's Encrypt
Subjectpinayum.org
Fingerprint44:98:66:18:24:6B:99:C1:F9:EF:0C:3A:C0:D3:B3:06:5A:5A:D4:2C
ValidityThu, 07 Mar 2024 08:16:27 GMT - Wed, 05 Jun 2024 08:16:26 GMT
File type JavaScript source, ASCII text, with very long lines (65447)
Hash 826eb77e86b02ab7724fe3d0141ff87c
79cd3587d565afe290076a8d36c31c305a573d18
cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: pinayum.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 02 May 2024 03:22:45 GMT
content-type: application/x-javascript
cache-control: public, max-age=604800
expires: Wed, 08 May 2024 05:27:59 GMT
last-modified: Thu, 08 Feb 2024 03:20:51 GMT
etag: W/"15601-65c44893-9ef5ac2e495742d0;br"
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
age: 76138
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: a029af402ca4dd79e9e4071e02b28a08-imm-edge2
x-hcdn-cache-status: HIT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Wxg1QeSt%2FJim%2FV7bMq3fvMfabCJCj7CneY8Wad6Qlm9Lyc72Y31X8MuAuGon0pkVmyoAxiKWg16oU%2B3dbkpOTte8EQn%2FF1QSIejJKsuNYw0jyTOVkkU4lb%2FfoQ2AEg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d4e3807c87b51e-OSL
content-encoding: br
GET accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
302 Found 0 B URL GET HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint9A:72:A8:C3:56:5C:93:B4:72:C7:5B:1B:60:BB:0F:3E:1E:C4:1B:67
ValidityTue, 16 Apr 2024 04:20:36 GMT - Tue, 09 Jul 2024 04:20:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.sh/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:qZASGhUzF2waoZoKF3hLhWw1YcpIUg:FigHnkKriY_3r889; Expires=Sat, 02-May-2026 03:22:46 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 02 May 2024 03:22:46 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AaSxoQyf7OJx4RQjK_QIsZwpH2QJdkrS1TDI2cBvLdofigAbLDDSic5xHyW1cqFzb0c5rKYMUJLY8A
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-iGcaZRjbKxLVvia-_hR9Xw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: unsafe-none
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
302 Found 0 B URL GET HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint9A:72:A8:C3:56:5C:93:B4:72:C7:5B:1B:60:BB:0F:3E:1E:C4:1B:67
ValidityTue, 16 Apr 2024 04:20:36 GMT - Tue, 09 Jul 2024 04:20:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.sh/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:G_py8RjIEYAR88lyza39PFEWCVEOHg:WOIAR9q1yOzZDS2c; Expires=Sat, 02-May-2026 03:22:46 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 02 May 2024 03:22:46 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AaSxoQz6GXdH_gjxJDVChgjdfFBMIB9hlsliidAReyAXqEUdiC6Yqlj5ygHDsgUeC5ubFUypVzrPtA
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy: unsafe-none
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: script-src 'nonce-mT-hw2OLlqIFx0LJMHzWdQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
POST dood.sh/cdn-cgi/challenge-platform/h/g/jsd/r/87d4e37e3b4f569d
200 OK 0 B URL POST HTTP/3 dood.sh/cdn-cgi/challenge-platform/h/g/jsd/r/87d4e37e3b4f569d
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerGoogle Trust Services LLC
Subjectdood.sh
Fingerprint87:0C:E0:84:9B:C9:F0:5C:F4:39:DA:59:AF:01:24:59:3C:D6:36:DB
ValidityWed, 24 Apr 2024 00:27:36 GMT - Tue, 23 Jul 2024 00:27:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/challenge-platform/h/g/jsd/r/87d4e37e3b4f569d HTTP/1.1
Host: dood.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12151
Origin: https://dood.sh
DNT: 1
Connection: keep-alive
Referer: https://dood.sh/e/8p6jatncyuj9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 02 May 2024 03:22:46 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=TiNx36X2COEYBndgHz.2kVRj1.OcYTK6HGAkkO.jvjM-1714620166-1.0.1.1-OH2escWAMVT4SWZKTNvUKJ6s6Gv8uUDMFq2eRtFgYTxxHqSZYlzGqY0Gmj6ZRL5XiFq1SsTy2Dddx24.JOB7uA; path=/; expires=Fri, 02-May-25 03:22:46 GMT; domain=.dood.sh; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gG10u4TivpXBwQCG%2BPKauh1x4J9Zyy7PUEAM9pfMG6agn%2FIf5zGa2QTh1gI3E26AAx15uXpDVrBetrDsOOvOdf0cAv1vU5Jhtj2TIy%2F6k92%2FGvSXwjIU3sU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d4e388fcec5696-OSL
alt-svc: h3=":443"; ma=86400
GET du0pud0sdlmzf.cloudfront.net/LQmRsTlUhCwIoajYNCHNsclxce2JkFB4rM38AAyExbBcEaD8xCwI+aCQUKwUsdVNVDDF7Qhg0MX9USiI0LANRaDAsB1F/cyMADnNhZBAcIT5/DAktLDESFTwmNUIZL2gvCxYnOS4FSXwTd0pca2dyTBR/ZGdXLmtncggFICA6QV5+LXpSM3hhZ1cua2dyFh-prZgNdWmBla0FefjInBwchcHAiXn5kclRdfmRnVlwoPDABCiEtZ1Yqd2NsVEo7aHM
200 OK 599 B URL GET HTTP/2 du0pud0sdlmzf.cloudfront.net/LQmRsTlUhCwIoajYNCHNsclxce2JkFB4rM38AAyExbBcEaD8xCwI+aCQUKwUsdVNVDDF7Qhg0MX9USiI0LANRaDAsB1F/cyMADnNhZBAcIT5/DAktLDESFTwmNUIZL2gvCxYnOS4FSXwTd0pca2dyTBR/ZGdXLmtncggFICA6QV5+LXpSM3hhZ1cua2dyFh-prZgNdWmBla0FefjInBwchcHAiXn5kclRdfmRnVlwoPDABCiEtZ1Yqd2NsVEo7aHM
IP
Requested by https://lyappreciat.info/WWVKNDQ4BylZCzhYKBJBKwl3EQYfQHhyUCxVOkFQaRYuWFkjA2RXWDYQLlJGNgs+Glo8EW8GchU0J2ZHDQkfXHcuLCVVXgArCXx6KgYmTFc8VwBfchtROHkHYSQLTXEhBwhXcTghckx3LixvBnY4Jhthfy4wOVBiFzMOcHJuNCJTBBQ9c2FnMCx6eHUXNytwdSone3IRayMpTXkYISR6XAMnC1d9DVBvBnIdJCFAeB0gGXJgLggEYX0DKXhTQhodE1p7ClEMZ2wuMS4ERDoEeFBNDScYEQYfPw1QbBUIPlpXPgIMfXcYUxtiAXxXCHhsKTYHB1wxP3tXQThXLk1yMUg6Rm4+Ky5jWRsJKwRyPAMgfVobEilcVxEkI2xabA4pWGY9AydmWg8JPVtkHSQId10cERAFbSgBeHpHDyAlA1URKGxeRzYLOglSKSIBTQNuXAhQDQ
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File type ASCII text, with very long lines (867), with no line terminators
Hash 28a184e3982b119b6fc39959555a0d96
fdd47d5903b78f91a9fac0efa5ef8e3004e49121
c5689c31a279aec55647444a732f1efce7d85e89ba950c2814a854e4834b325f
GET /LQmRsTlUhCwIoajYNCHNsclxce2JkFB4rM38AAyExbBcEaD8xCwI+aCQUKwUsdVNVDDF7Qhg0MX9USiI0LANRaDAsB1F/cyMADnNhZBAcIT5/DAktLDESFTwmNUIZL2gvCxYnOS4FSXwTd0pca2dyTBR/ZGdXLmtncggFICA6QV5+LXpSM3hhZ1cua2dyFh-prZgNdWmBla0FefjInBwchcHAiXn5kclRdfmRnVlwoPDABCiEtZ1Yqd2NsVEo7aHM HTTP/1.1
Host: du0pud0sdlmzf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lyappreciat.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 599
date: Thu, 02 May 2024 03:22:46 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jN0W9xG0nMmFdd1NOGmH41C5sw5qf3IOvPX1hxCa9Zl2ER8gV_hwFA==
X-Firefox-Spdy: h2
GET accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AaSxoQz6GXdH_gjxJDVChgjdfFBMIB9hlsliidAReyAXqEUdiC6Yqlj5ygHDsgUeC5ubFUypVzrPtA
302 Found 428 B URL GET HTTP/2 accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AaSxoQz6GXdH_gjxJDVChgjdfFBMIB9hlsliidAReyAXqEUdiC6Yqlj5ygHDsgUeC5ubFUypVzrPtA
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint9A:72:A8:C3:56:5C:93:B4:72:C7:5B:1B:60:BB:0F:3E:1E:C4:1B:67
ValidityTue, 16 Apr 2024 04:20:36 GMT - Tue, 09 Jul 2024 04:20:35 GMT
File type HTML document, ASCII text, with very long lines (408)
Hash 3326714448d8117044269589aba7c5cf
2c5d6cac892ca871041a4d541bd3127f59184e67
2ef417425425b33202eae0981dc8e5cf2c65b13e0cdfa2f3a30cc6143dd14cac
GET /InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AaSxoQz6GXdH_gjxJDVChgjdfFBMIB9hlsliidAReyAXqEUdiC6Yqlj5ygHDsgUeC5ubFUypVzrPtA HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dood.sh/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:9QVW5NSwq0Wi1gb5LVB2fyxgJGNuUQ:46_GPPKbzXZNFNeZ;Path=/;Expires=Sat, 02-May-2026 03:22:46 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 02 May 2024 03:22:46 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQzfAqP7NFNS9dLtFe6QxIrbk8kzd0zlhXNnmwMh6pei9UwQWdnT0arV0f24p7rJYERiWmfe4Q&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1241236562%3A1714620166644768&theme=mn&ddm=0
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-HQ1p-Eae56jzKetf55Y1bw' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 428
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AaSxoQyf7OJx4RQjK_QIsZwpH2QJdkrS1TDI2cBvLdofigAbLDDSic5xHyW1cqFzb0c5rKYMUJLY8A
302 Found 427 B URL GET HTTP/2 accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AaSxoQyf7OJx4RQjK_QIsZwpH2QJdkrS1TDI2cBvLdofigAbLDDSic5xHyW1cqFzb0c5rKYMUJLY8A
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint9A:72:A8:C3:56:5C:93:B4:72:C7:5B:1B:60:BB:0F:3E:1E:C4:1B:67
ValidityTue, 16 Apr 2024 04:20:36 GMT - Tue, 09 Jul 2024 04:20:35 GMT
File type HTML document, ASCII text, with very long lines (403)
Hash c8cb251bfbefc87250cb1d423c1e4e82
d1aaa1714e51aa6ed8f6a6180cec4619e3c36ea1
c0b88014d3dc36bb07f4f135f812130c0bf022aef223e13e8378de83bf978507
GET /InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AaSxoQyf7OJx4RQjK_QIsZwpH2QJdkrS1TDI2cBvLdofigAbLDDSic5xHyW1cqFzb0c5rKYMUJLY8A HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dood.sh/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:_5QIv2_VKVSBc_HsOtz4On2tnUaOiA:iSW-1aQGsaLbWfOu;Path=/;Expires=Sat, 02-May-2026 03:22:46 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 02 May 2024 03:22:46 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQywhp2xI9DmJgi43hZ1OHyBgitsqHMw51S6qIHbW_sxoYOgG5T884kYn3ZOqFQo0fvwOorjyQ&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S2080743980%3A1714620166641309&theme=mn&ddm=0
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-WBrLgImvxWd-vHlCTsh4yQ' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 427
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET du0pud0sdlmzf.cloudfront.net/iWWMxOEI6DF9efS0KVQV7aVIDDXp/E0NdJGQHXlcmdxBZHigqDF9IfygVQmAxHgJ4U2QtGVUFcn8PUFYlZEVUViFkUhdZJjteBR42KQxaBSo8AEhLNCARQk9kLAIMVS0jCl1UI3xRdw1saUYDCGohUgAdcRtGAwguMA1EQGdrU0kAdAZVBR1xG0YDCDAvRg-J5e29NARFna1NWXSEyDBQKBGtTAAhyaFMAHXBpBVhKJz8MSR1wH1oHFnJ/FgwJ
200 OK 439 B URL GET HTTP/2 du0pud0sdlmzf.cloudfront.net/iWWMxOEI6DF9efS0KVQV7aVIDDXp/E0NdJGQHXlcmdxBZHigqDF9IfygVQmAxHgJ4U2QtGVUFcn8PUFYlZEVUViFkUhdZJjteBR42KQxaBSo8AEhLNCARQk9kLAIMVS0jCl1UI3xRdw1saUYDCGohUgAdcRtGAwguMA1EQGdrU0kAdAZVBR1xG0YDCDAvRg-J5e29NARFna1NWXSEyDBQKBGtTAAhyaFMAHXBpBVhKJz8MSR1wH1oHFnJ/FgwJ
IP
Requested by https://getrunkhomuto.info/aldNZnALNS4LTwtqL0AFGDtwQ0Iscn8gFB9nPRMUWiQpCh0QMWMFHAUiKQACBTk5SB4PI2hUNgMAGisIJRIEUDQsbigAI1ocGzcmXTYbLzQuDz1DQiwSfSgUIBAcLigGNCACCCgNBQ8XGxMLXzkMLiowIQcWNS4XIGMYVCEeEBszNgk5dTYlLA4hPDU8AhsPNgECJQIqID05AzI4Y38tIRI2DzUfUhYIDjwkFAw0IQFuJioxIxobNUAAFCFXJSNkNTQUHWY+ByUzEw4hHwICKicUCQU5ITEdMDgrMVsSHCEUGAJ9DTEOFhcwMjhmNSFAMxMOIjEcBSpLOl8yf18+KwULCBFbGRo+Iy8uCSQhIRUKEiQrFiUfESwaDC4oKCcPMBghHTdePTkFfBE4WzgFIB4gcn8gNg0gB0AaGTgjFk0bIT4+Ay02BA0
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File type ASCII text, with very long lines (569), with no line terminators
Hash fce953cd4cf3d5e0ad7cfbae77ebfe0a
a5e04bfeb3114c679ad6594a421b432a5b02921f
fe7dc42921c3b5fb2cafa37559385e2e1dcf4e8e5f684f18822b294337c15f44
GET /iWWMxOEI6DF9efS0KVQV7aVIDDXp/E0NdJGQHXlcmdxBZHigqDF9IfygVQmAxHgJ4U2QtGVUFcn8PUFYlZEVUViFkUhdZJjteBR42KQxaBSo8AEhLNCARQk9kLAIMVS0jCl1UI3xRdw1saUYDCGohUgAdcRtGAwguMA1EQGdrU0kAdAZVBR1xG0YDCDAvRg-J5e29NARFna1NWXSEyDBQKBGtTAAhyaFMAHXBpBVhKJz8MSR1wH1oHFnJ/FgwJ HTTP/1.1
Host: du0pud0sdlmzf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getrunkhomuto.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 439
date: Thu, 02 May 2024 03:22:46 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bWRvaS-zKr9xx5qqS_-8veHBl7I7JC9y0QVTDQL8npXOMzXyVU3B8g==
X-Firefox-Spdy: h2
GET du0pud0sdlmzf.cloudfront.net/xc09STE0QIDwqcgcmNnF0RHtgeHhVPyApK04rPSMpXTw6aicAIDw8cDoaKiIGMTw1NAcdAjRqOQkrb3xrHy48K3BVKjwvcEJpMygvTnt0OSxOIj02JB8jM2l/NXp8fGhBf3o0fEJqYQ5oQX8+JSMGN3d+fQt3ZBN7R2phDmhBfyA6aEAOa3pjQ2Z3fn0UKj-EnIlZ9FH59Qn9ifX1CamB8Kxo9NyoiC2pgCnRFYWJqOE5+
200 OK 259 B URL GET HTTP/2 du0pud0sdlmzf.cloudfront.net/xc09STE0QIDwqcgcmNnF0RHtgeHhVPyApK04rPSMpXTw6aicAIDw8cDoaKiIGMTw1NAcdAjRqOQkrb3xrHy48K3BVKjwvcEJpMygvTnt0OSxOIj02JB8jM2l/NXp8fGhBf3o0fEJqYQ5oQX8+JSMGN3d+fQt3ZBN7R2phDmhBfyA6aEAOa3pjQ2Z3fn0UKj-EnIlZ9FH59Qn9ifX1CamB8Kxo9NyoiC2pgCnRFYWJqOE5+
IP
Requested by https://getrunkhomuto.info/SXlKakIoGykHfShEKEw3OxV3T3APXHgsJjxJOh8meQouBi8zH2QJLiYMLgwwJhc+RCwsDW9YBDEaelMRHTx6OwsNDjsJJSoUBAQEeSsCHiUsMSI8EjA4OiFyfQsaOQ85IR4ddCgQKSsLDQ5yCQYmGAEDCw40Hh1zBzgpDgMjKzslEyILKFk6OzEzXnoCSgg8CSMOPAkHAwkHEyU/LSQecgYqMiULI0l4IABxEwdYLmxLDCQaOUEsLSoLH3kFci88ABsbGEwlOxpxXHgoCBo0DSRxLVx4KCQYDXkwAAdOGFgyIT0nAgAvAAtcIww4BQtxORMbWBh6HyRaFwITZy8sABUQUwQBTHM7LHAQLDJzChgnKHoCASVTDDAWIylwOR4JBBAPIB0gMwY8f09wC18gGS0nCXcjFzEXASgxLgEABA8v
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash ca2cca3e58bbb9d21e13ede4a005a482
3ba0dc8ee507d5e1fa31d2745176977184df31aa
86ce5a016b5b91242ef43ac6b0c1a93ef4f14e60a4a70ffe611683d4d11205f9
GET /xc09STE0QIDwqcgcmNnF0RHtgeHhVPyApK04rPSMpXTw6aicAIDw8cDoaKiIGMTw1NAcdAjRqOQkrb3xrHy48K3BVKjwvcEJpMygvTnt0OSxOIj02JB8jM2l/NXp8fGhBf3o0fEJqYQ5oQX8+JSMGN3d+fQt3ZBN7R2phDmhBfyA6aEAOa3pjQ2Z3fn0UKj-EnIlZ9FH59Qn9ifX1CamB8Kxo9NyoiC2pgCnRFYWJqOE5+ HTTP/1.1
Host: du0pud0sdlmzf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://getrunkhomuto.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 259
date: Thu, 02 May 2024 03:22:46 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rdvMWvFIHhdfnLtSCbKVSEgqgj1SXCuG7FEo5k7KcSJCZY9FXPKjVw==
X-Firefox-Spdy: h2
GET pinayum.org/wp-content/uploads/2024/02/Logo.png
200 OK 37 kB URL GET HTTP/3 pinayum.org/wp-content/uploads/2024/02/Logo.png
IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerLet's Encrypt
Subjectpinayum.org
Fingerprint44:98:66:18:24:6B:99:C1:F9:EF:0C:3A:C0:D3:B3:06:5A:5A:D4:2C
ValidityThu, 07 Mar 2024 08:16:27 GMT - Wed, 05 Jun 2024 08:16:26 GMT
File type RIFF (little-endian) data, Web/P image
Hash 8028729a056dcd0bc47ee02ffb55ea39
eb2da58e07b7c3f1bc6c5d81e117daf8d22ff0e5
9b16913716ba516899b978c8ff40f9b78c18031399c0bae7dbbc4cb115583d96
GET /wp-content/uploads/2024/02/Logo.png HTTP/1.1
Host: pinayum.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 02 May 2024 03:22:46 GMT
content-type: image/webp
content-length: 36962
cache-control: private
x-hcdn-image-optimizer: f:webp q:85 w:1600
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 059d3968ea05fb6458f60b44fefb6c85-imm-edge2
x-hcdn-cache-status: EXPIRED
x-hcdn-upstream-rt: 1.454
cf-cache-status: BYPASS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Vj6WHCURzYgEXskEkT4%2Fc8ZV7sPVJG1udtVGApIU0bwA34BNVB37F7KHRWEKhhbVg1mqKpUJ%2BP6ylUCODkFbXP5LzNxyMRfJDMhko83ZDfYvP3Ks7Oi89oV8sfP73A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d4e37e5b1db51e-OSL
GET iresandal.info/aXpwc1JGRRMAbyQRKgscWUo7EGIoNRQiIhArB0pmKzI+NRYHFVYHOw1HSUNqWU9HVSIAHk1CdBoOEQcnGkdDQ2JYXBkdNAZHQENiWFwGTmNHSURdYV9URFUnVEtWByIIHU1CdBkOBB9vWE1BR2RbSkFFZFFPQA
204 No Content 0 B URL GET HTTP/3 iresandal.info/aXpwc1JGRRMAbyQRKgscWUo7EGIoNRQiIhArB0pmKzI+NRYHFVYHOw1HSUNqWU9HVSIAHk1CdBoOEQcnGkdDQ2JYXBkdNAZHQENiWFwGTmNHSURdYV9URFUnVEtWByIIHU1CdBkOBB9vWE1BR2RbSkFFZFFPQA
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerGoogle Trust Services LLC
Subjectiresandal.info
FingerprintD9:9E:21:6F:70:F4:90:F2:B5:4A:CC:E5:AB:CD:07:D7:A8:09:59:3A
ValidityMon, 01 Apr 2024 07:01:50 GMT - Sun, 30 Jun 2024 07:01:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /aXpwc1JGRRMAbyQRKgscWUo7EGIoNRQiIhArB0pmKzI+NRYHFVYHOw1HSUNqWU9HVSIAHk1CdBoOEQcnGkdDQ2JYXBkdNAZHQENiWFwGTmNHSURdYV9URFUnVEtWByIIHU1CdBkOBB9vWE1BR2RbSkFFZFFPQA HTTP/1.1
Host: iresandal.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.sh/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Thu, 02 May 2024 03:22:46 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Jlc7OX7y%2F1OuKOn01kemCzLd%2FGQWFwjTB2Tc6HHPIRpqkOu0QDiTSy49Gio%2BN56ayjPu7iN3%2BDEkd84ykDFrz%2F5YWxPkHjhA2ts8ixBBKUfHTmnrMhfISlPQuw8OpoP%2FUg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d4e38aee9756be-OSL
alt-svc: h3=":443"; ma=86400
GET getrunkhomuto.info/multi?cs=ZWdLaFZVVn5dZlRQe1lgVFN9X2Y&abt=0&red=1&sm=76&k=&v=1.0.60.4&sts=0&prn=0&emb=1&tid=901258&rxy=1280_1024&u=1827284035172708&agec=1714620166&fs=1&mbkb=132.6259946949602&ref=https%3A%2F%2Fdood.sh%2Fe%2F8p6jatncyuj9&osr=pinayum.org&jst=8&enr=0&lcua=mozilla%2F5.0%20(x11%3B%20linux%20x86_64%3B%20rv%3A96.0)%20gecko%2F20100101%20firefox%2F96.0&tzd=0&uloc=&if=0&_95AS=1714620166902&crc=1
200 OK 1.7 kB URL GET HTTP/2 getrunkhomuto.info/multi?cs=ZWdLaFZVVn5dZlRQe1lgVFN9X2Y&abt=0&red=1&sm=76&k=&v=1.0.60.4&sts=0&prn=0&emb=1&tid=901258&rxy=1280_1024&u=1827284035172708&agec=1714620166&fs=1&mbkb=132.6259946949602&ref=https%3A%2F%2Fdood.sh%2Fe%2F8p6jatncyuj9&osr=pinayum.org&jst=8&enr=0&lcua=mozilla%2F5.0%20(x11%3B%20linux%20x86_64%3B%20rv%3A96.0)%20gecko%2F20100101%20firefox%2F96.0&tzd=0&uloc=&if=0&_95AS=1714620166902&crc=1
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerAmazon
Subjectgetrunkhomuto.info
Fingerprint07:6C:15:28:EC:56:65:DE:8C:55:1C:BF:A5:DB:7B:96:8F:38:56:0E
ValidityMon, 01 Apr 2024 00:00:00 GMT - Wed, 30 Apr 2025 23:59:59 GMT
File type ASCII text, with very long lines (3547), with no line terminators
Hash 6cdbd46d69ecdb446d83bd40b044407f
72c113e7ac7b4523e4a68ea4cbfa2d1a5fcd0395
8c1f638e7ec465d62ed8be5e6c1452d7ec37ef7e60dedce11e28f2958997e09e
GET /multi?cs=ZWdLaFZVVn5dZlRQe1lgVFN9X2Y&abt=0&red=1&sm=76&k=&v=1.0.60.4&sts=0&prn=0&emb=1&tid=901258&rxy=1280_1024&u=1827284035172708&agec=1714620166&fs=1&mbkb=132.6259946949602&ref=https%3A%2F%2Fdood.sh%2Fe%2F8p6jatncyuj9&osr=pinayum.org&jst=8&enr=0&lcua=mozilla%2F5.0%20(x11%3B%20linux%20x86_64%3B%20rv%3A96.0)%20gecko%2F20100101%20firefox%2F96.0&tzd=0&uloc=&if=0&_95AS=1714620166902&crc=1 HTTP/1.1
Host: getrunkhomuto.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dood.sh
DNT: 1
Connection: keep-alive
Referer: https://dood.sh/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/plain
content-length: 1718
date: Thu, 02 May 2024 03:22:47 GMT
server: openresty/1.17.8.2
access-control-allow-credentials: true
access-control-allow-origin: https://dood.sh
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: csu=852faaae-d664-4cc0-9ea3-5058ee07c745
csu=1827284035172708
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 67d9c6999f4bc9c9c60e1e5f24b316e8.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: Nd5g79BOhN5m0AzQDQgF1rJxMKyUg1CMS7Me_2TvwsZGMiZU89nsLQ==
X-Firefox-Spdy: h2
GET pinayum.org/wp-content/uploads/2024/02/favicon-no-bg-150x150.png
200 OK 5.7 kB URL GET HTTP/3 pinayum.org/wp-content/uploads/2024/02/favicon-no-bg-150x150.png
IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerLet's Encrypt
Subjectpinayum.org
Fingerprint44:98:66:18:24:6B:99:C1:F9:EF:0C:3A:C0:D3:B3:06:5A:5A:D4:2C
ValidityThu, 07 Mar 2024 08:16:27 GMT - Wed, 05 Jun 2024 08:16:26 GMT
File type RIFF (little-endian) data, Web/P image
Hash ca37cef1351c0986608d32844e8cab80
77b524dcb93b3dc1d13245444423e2e22037f7fc
7b46d00ba02702ec50446dcefd0a8210d0d2a2acd96ca8e6694d02ba58dedeb3
GET /wp-content/uploads/2024/02/favicon-no-bg-150x150.png HTTP/1.1
Host: pinayum.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Cookie: bnState_1999130={"impressions":2,"delayStarted":0}
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 02 May 2024 03:22:47 GMT
content-type: image/webp
content-length: 5706
cache-control: private
x-hcdn-image-optimizer: f:webp q:85 w:1600
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 3600a8952b52ed2f7ba7d3b94ab358b6-imm-edge2
x-hcdn-cache-status: EXPIRED
x-hcdn-upstream-rt: 0.959
cf-cache-status: BYPASS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3%2FCl%2F733CCpMxze%2BIIBFznEQNmIPAAy7BUd7b8nd4TOhnaGP7XB9EkzXN9XjuEXE8vI3eBiG6s24h%2BDghHRoFIAZbvi6BmxGPU4yCaxlaw5ZTIPYDsYyiyEdRtwsCA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d4e3871fedb51e-OSL
GET pinayum.org/wp-content/uploads/2024/02/favicon-no-bg-300x300.png
200 OK 11 kB URL GET HTTP/3 pinayum.org/wp-content/uploads/2024/02/favicon-no-bg-300x300.png
IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerLet's Encrypt
Subjectpinayum.org
Fingerprint44:98:66:18:24:6B:99:C1:F9:EF:0C:3A:C0:D3:B3:06:5A:5A:D4:2C
ValidityThu, 07 Mar 2024 08:16:27 GMT - Wed, 05 Jun 2024 08:16:26 GMT
File type RIFF (little-endian) data, Web/P image
Hash 5bba4e57f1c6bcae49445e2f57addf40
6e2b303cc2e93ebb54b1ea92c3c9f286e2531e4e
c44d729ef28879444962cc8a1f8e1616fb63f22c41fbb5dd1746452e48571d1b
GET /wp-content/uploads/2024/02/favicon-no-bg-300x300.png HTTP/1.1
Host: pinayum.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Cookie: bnState_1999130={"impressions":2,"delayStarted":0}
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 02 May 2024 03:22:47 GMT
content-type: image/webp
content-length: 11098
cache-control: private
x-hcdn-image-optimizer: f:webp q:85 w:1600
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 76c68a28d5d0a47487bc44d19b98db5f-imm-edge1
x-hcdn-cache-status: EXPIRED
x-hcdn-upstream-rt: 1.199
cf-cache-status: BYPASS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VFfyqsBA7sOwSPbaihoveXyQpUbEo52gwAQLvV%2F2iAtOx1uIQWQg0ZI80oA1GbjyArHdi6IOtjSE6MgA1aT75i1jI25LKzdtR3VN8VvF1mvQrdqRd9KM0hrJLSYXKA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d4e3871fe7b51e-OSL
GET pinayum.org/wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js?ver=1.0.0
200 OK 426 B URL GET HTTP/3 pinayum.org/wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js?ver=1.0.0
IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerLet's Encrypt
Subjectpinayum.org
Fingerprint44:98:66:18:24:6B:99:C1:F9:EF:0C:3A:C0:D3:B3:06:5A:5A:D4:2C
ValidityThu, 07 Mar 2024 08:16:27 GMT - Wed, 05 Jun 2024 08:16:26 GMT
File type JavaScript source, ASCII text, with very long lines (428), with no line terminators
Hash e01bac902517921ed76abe5a3ec230df
c824331eb416223813e6abfe753568dd321b2ced
b821227c719f6f8c59596e23e16e8c6abb38132ce9708cb9ee48635594d85ca8
GET /wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js?ver=1.0.0 HTTP/1.1
Host: pinayum.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 02 May 2024 03:22:45 GMT
content-type: application/x-javascript
age: 76138
cache-control: public, max-age=604800
cf-bgj: minify
cf-polished: origSize=683
alt-svc: h3=":443"; ma=86400
content-security-policy: upgrade-insecure-requests
etag: W/"2ab-65c44e91-f7cb6c752740ca1d;br"
expires: Wed, 08 May 2024 05:22:31 GMT
last-modified: Thu, 08 Feb 2024 03:46:25 GMT
platform: hostinger
x-hcdn-cache-status: HIT
x-hcdn-request-id: 1acba5bc805b36996e3ec900ce225567-imm-edge1
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6Oe7XKtp3l4794GwGxi7i9zbTwRxguSs%2BZ2X%2F12Z5ktU4%2BDDQy7HxaUMe4WCDqJkzRYzM3CgSHl2BZF3jTsIyLvEP5v8P2D2CNEyd1YQmsco%2FJtRQ3xalOGPm3Cb2A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d4e3803c3fb51e-OSL
content-encoding: br
GET pinayum.org/wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18
200 OK 20 kB URL GET HTTP/3 pinayum.org/wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18
IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerLet's Encrypt
Subjectpinayum.org
Fingerprint44:98:66:18:24:6B:99:C1:F9:EF:0C:3A:C0:D3:B3:06:5A:5A:D4:2C
ValidityThu, 07 Mar 2024 08:16:27 GMT - Wed, 05 Jun 2024 08:16:26 GMT
File type JavaScript source, ASCII text, with very long lines (20018)
Hash 4cd5ea35543390c5fc4e9def651ab721
d360aa74dff157fcefda69336ecf420f04940f98
9167cb37ed21405ef9556646b83789a2099c15398f5cea867470df1e81752e17
GET /wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18 HTTP/1.1
Host: pinayum.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 02 May 2024 03:22:45 GMT
content-type: application/x-javascript
cache-control: public, max-age=604800
expires: Wed, 08 May 2024 05:27:59 GMT
last-modified: Thu, 08 Feb 2024 03:46:25 GMT
etag: W/"4fce-65c44e91-a75aa1bc7d99b110;br"
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
age: 76138
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 921e1230261173b57411cda837a09e0e-imm-edge1
x-hcdn-cache-status: HIT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BtKVuF46USdB48EtHn3yKuBboHoz%2BhxdLtw0ZvqGFKNf%2FkkjXSOjsR8WcXhgaw8bIAgVvu%2F%2FWLuKqRat5OFKwgqcaFF4Q734pZSq8DVbeLPclvYzn4bDHe%2BGS9T6PQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d4e3803c47b51e-OSL
content-encoding: br
GET 6v41p4bsq.com/get/1999130?zoneid=1999130&jp=_cl27spbhd7d3jrtsph4pn1&nojs=0&abvar=0&febuild=1.0.233&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=7712193718338560&eclog=0&im=1&freq=0&uf=0
200 OK 4.1 kB URL GET HTTP/2 6v41p4bsq.com/get/1999130?zoneid=1999130&jp=_cl27spbhd7d3jrtsph4pn1&nojs=0&abvar=0&febuild=1.0.233&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=7712193718338560&eclog=0&im=1&freq=0&uf=0
IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerBuypass AS-983163327
Subject
Fingerprint61:0C:D2:DF:A5:99:8D:C6:B8:C1:FC:9D:F2:27:20:E0:21:BE:50:73
ValidityTue, 09 Jan 2024 12:50:38 GMT - Sat, 06 Jul 2024 21:59:00 GMT
File type ASCII text, with very long lines (4196), with no line terminators
Hash 93d0d2bc8cd4519078b0e78757335d1a
9ea46539d548d7144268d9d7eca1abcd23f70757
ce9fb1c1c43f756221628df1bb39ef1c5cf4b206548d13424840daa12c7dab57
GET /get/1999130?zoneid=1999130&jp=_cl27spbhd7d3jrtsph4pn1&nojs=0&abvar=0&febuild=1.0.233&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=7712193718338560&eclog=0&im=1&freq=0&uf=0 HTTP/1.1
Host: 6v41p4bsq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pinayum.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 03:22:45 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: CHCK=1; Path=/; Expires=Thu, 05 Jun 2025 03:22:45 GMT; Secure; SameSite=None
UID=2405012222c7664867a2904492a96c7534ca; Path=/; Expires=Thu, 05 Jun 2025 03:22:45 GMT; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
GET pogothere.xyz/
200 OK 27 B IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerGoogle Trust Services LLC
Subjectpogothere.xyz
Fingerprint34:D3:33:F8:49:E2:1E:3E:44:A8:5D:74:68:9C:B8:A0:D5:F8:DD:0B
ValidityWed, 27 Mar 2024 02:15:30 GMT - Tue, 25 Jun 2024 02:15:29 GMT
File type ASCII text, with no line terminators
Hash f6866f9430fe8af9afb2f832b4c87b62
19f73fd4968118ffa078f255bbd1f28270dc6a3c
07382cd8994a31d40dbdc10dee787decd72bbd5c54f044eb9caf0899c034e638
GET / HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dood.sh/
Origin: https://dood.sh
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 02 May 2024 03:22:46 GMT
content-type: text/plain
set-cookie: csu=1827284035172708@1@1714620166; Max-Age=31104000; Secure; SameSite=None
access-control-allow-origin: https://dood.sh
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ca8KIPzAXgA9P7CwUAzW6t84TZQ3RECtHTwB26%2Bt%2FLNxIRlwq6WzKPvySOkjfjLIOzYmEaAzZBMv1Pa1s2uQmxnj4QXlRY7GJQVLGx2aRH8JdOc8J5S80YLMPhSQa5V2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d4e3886a2f1bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET pinayum.org/wp-includes/js/comment-reply.min.js?ver=6.5.2
200 OK 3.0 kB URL GET HTTP/3 pinayum.org/wp-includes/js/comment-reply.min.js?ver=6.5.2
IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerLet's Encrypt
Subjectpinayum.org
Fingerprint44:98:66:18:24:6B:99:C1:F9:EF:0C:3A:C0:D3:B3:06:5A:5A:D4:2C
ValidityThu, 07 Mar 2024 08:16:27 GMT - Wed, 05 Jun 2024 08:16:26 GMT
File type ASCII text, with very long lines (3056), with no line terminators
Hash dc7f90d513295c29acc441fe114a2cab
ca9e5069d9afc4aa13ab2e152313dfb476e842ef
f87915c58d8c25473c726646b58d2fe0ba9a136987571e6c810aba3c67b4f74c
GET /wp-includes/js/comment-reply.min.js?ver=6.5.2 HTTP/1.1
Host: pinayum.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 02 May 2024 03:22:45 GMT
content-type: application/x-javascript
cache-control: public, max-age=604800
expires: Wed, 08 May 2024 14:05:18 GMT
last-modified: Thu, 08 Feb 2024 03:20:51 GMT
etag: W/"ba5-65c44893-fcd9bfdd6eb70d85;br"
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: efd29801e814bc009e02ff75d8483e62-imm-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.707
cf-cache-status: HIT
age: 47847
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kjmfD6r9n7buU9pgH33q3WcYTc2nXksTzDypkD4FmW7GuYPeaeYuEVN1kwUpsKqL3rCSqhB2SIAoSZaKG%2BAlCAK5gpZ3g4OlxB7%2Fn5VNaYGv4zMGa4eE6qqKGvJecw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d4e3803c3cb51e-OSL
content-encoding: br
GET pogothere.xyz/asd100.bin
200 OK 102 kB IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerGoogle Trust Services LLC
Subjectpogothere.xyz
Fingerprint34:D3:33:F8:49:E2:1E:3E:44:A8:5D:74:68:9C:B8:A0:D5:F8:DD:0B
ValidityWed, 27 Mar 2024 02:15:30 GMT - Tue, 25 Jun 2024 02:15:29 GMT
Size 102 kB (102400 bytes)
Hash 4c6426ac7ef186464ecbb0d81cbfcb1e
5a6918eebd9d635e8f632e3ef34e3792b1b5ec13
f627ca4c2c322f15db26152df306bd4f983f0146409b81a4341b9b340c365a16
GET /asd100.bin HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dood.sh/
Origin: https://dood.sh
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 02 May 2024 03:22:46 GMT
content-type: binary/octet-stream
access-control-allow-origin: https://dood.sh
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cache-control: max-age=14400
cf-cache-status: HIT
age: 496
last-modified: Thu, 02 May 2024 03:14:30 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ms43AgmxOA7moE7r0KVg7784TalZsi5QdCxGjT1X2qnQA0rrLvbiTZFR8wVFfaghix90VKTSfQztCn5CmnwfEZD2713idEjAid2Dlo9DQoE3XOcpP3%2Feq1YDtqB%2FCh0D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d4e3886a2a1bfa-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET iresandal.info/popunder.gif
200 OK 35 B URL GET HTTP/3 iresandal.info/popunder.gif
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerGoogle Trust Services LLC
Subjectiresandal.info
FingerprintD9:9E:21:6F:70:F4:90:F2:B5:4A:CC:E5:AB:CD:07:D7:A8:09:59:3A
ValidityMon, 01 Apr 2024 07:01:50 GMT - Sun, 30 Jun 2024 07:01:49 GMT
File type GIF image data, version 89a, 1 x 1
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /popunder.gif HTTP/1.1
Host: iresandal.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.sh/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 02 May 2024 03:22:46 GMT
content-type: image/gif
access-control-allow-origin: *
pragma: public
cache-control: public, max-age=604800, immutable
cf-cache-status: HIT
age: 112250
last-modified: Tue, 30 Apr 2024 20:11:56 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zGNE2pLQwipaQ8NLp5YxqYaZl9bDPIrro6l6qrF57h%2BcTZswubNSQdq6e1%2BpO6KfJjz%2FFjIXTLF8yZ3Y4BZPhmYWWSXjafGxsZzKE%2FIKS0Y56rFIank5qih5p0Fa7OIhVg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d4e38afe9d56be-OSL
alt-svc: h3=":443"; ma=86400
GET pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
200 OK 53 kB URL User Request GET HTTP/2 pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
IP
Certificate IssuerLet's Encrypt
Subjectpinayum.org
Fingerprint44:98:66:18:24:6B:99:C1:F9:EF:0C:3A:C0:D3:B3:06:5A:5A:D4:2C
ValidityThu, 07 Mar 2024 08:16:27 GMT - Wed, 05 Jun 2024 08:16:26 GMT
File type HTML document, ASCII text, with very long lines (9462)
Hash d05d6e514aacc31c65a17a62df16e4ac
f6d8bc4a9a8b009456939c14e6009e8c02ad78bb
e8c60242d3a7dc7d3abe59c1ff949e027edf1c281b7146d735219c80dc6e5d74
GET /nilamotak-ang-bawat-katas-ni-insan/ HTTP/1.1
Host: pinayum.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 02 May 2024 03:22:44 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.1.27
x-pingback: https://pinayum.org/xmlrpc.php
link: <https://pinayum.org/wp-json/>; rel="https://api.w.org/", <https://pinayum.org/wp-json/wp/v2/posts/3123>; rel="alternate"; type="application/json", <https://pinayum.org/?p=3123>; rel=shortlink
x-litespeed-cache: hit
platform: hostinger
content-security-policy: upgrade-insecure-requests
age: 129226
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: d73202d270e79a714b23b71a677e4017-imm-edge1
x-hcdn-cache-status: HIT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tBP4%2Bsk3DywCDNS2bvT8OBBBHlBdE42IjGSc9qkuQcFiow1JIa7IkRFlGkLmmlXsaRj%2BGrb0aGk6OSRVeo%2FdN0vE1kVEFMx0PANN8gS5BSoiJS0kAmY%2FnU%2FyPXcKXw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d4e3789c5f712b-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET pinayum.org/wp-content/themes/retrotube/assets/js/jquery.bxslider.min.js?ver=4.2.15
200 OK 24 kB URL GET HTTP/3 pinayum.org/wp-content/themes/retrotube/assets/js/jquery.bxslider.min.js?ver=4.2.15
IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerLet's Encrypt
Subjectpinayum.org
Fingerprint44:98:66:18:24:6B:99:C1:F9:EF:0C:3A:C0:D3:B3:06:5A:5A:D4:2C
ValidityThu, 07 Mar 2024 08:16:27 GMT - Wed, 05 Jun 2024 08:16:26 GMT
File type JavaScript source, ASCII text, with very long lines (24063)
Hash c675495748ef0df6858b93dd9e623c46
e1be723e4e25d37282821c50b7e12796d3df5f8d
9a32744fa4707d6ea1ad2b696c644c4f45d327509989b4625b8a980e4a45e271
GET /wp-content/themes/retrotube/assets/js/jquery.bxslider.min.js?ver=4.2.15 HTTP/1.1
Host: pinayum.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 02 May 2024 03:22:45 GMT
content-type: application/x-javascript
cache-control: public, max-age=604800
expires: Wed, 08 May 2024 05:22:32 GMT
last-modified: Thu, 08 Feb 2024 03:46:25 GMT
etag: W/"5ebc-65c44e91-dc724c1e96f5c196;br"
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
age: 76138
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 0983e327df55dc3e36b18180270f710f-imm-edge2
x-hcdn-cache-status: HIT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3xZ5hiKVBIj0PgTj9t37B8uIt8IioEBPA3DQ14Soy6Eebs5nNdG6ylJqTejSsYcsmi%2F5zPmTdE2hLU%2FLUTl86q3mgmsjwpYhg95ViN6OjPo%2Bp3naUxYQaB%2FUuZLVrg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d4e3804c4eb51e-OSL
content-encoding: br
GET static.doodcdn.co/js/embed3.js
200 OK 113 kB URL GET HTTP/2 static.doodcdn.co/js/embed3.js
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerCloudflare, Inc.
Subjectdoodcdn.co
Fingerprint8C:32:D4:AB:AF:53:AF:34:D3:6F:F9:E0:66:DC:21:B2:03:C6:34:F3
ValidityFri, 12 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
Size 113 kB (112790 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/embed3.js HTTP/1.1
Host: static.doodcdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.sh/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 02 May 2024 03:22:45 GMT
content-type: application/javascript
content-length: 112790
access-control-allow-origin: *
cache-control: public, max-age=2592000, no-transform
cf-bgj: minify
cf-polished: origSize=112944
etag: "65bf48c8-1b930"
expires: Fri, 31 May 2024 18:35:50 GMT
last-modified: Sun, 04 Feb 2024 08:20:24 GMT
cf-cache-status: HIT
age: 31472
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oJN0%2Bo70IozP5k6ZkjJ7KWow9ycYhKumqcBdV41FYJFdAtL2te4zGgYJh55LJJQh0PgdD1zIFgejMAp0jdI6evau%2BvvJu4liB%2B3OCglC02abw8dwgLUENTaZhawCRb65nPX3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d4e381fb05b529-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET pinayum.org/wp-content/themes/retrotube/assets/js/lazyload.js?ver=1.0.0
200 OK 5.8 kB URL GET HTTP/3 pinayum.org/wp-content/themes/retrotube/assets/js/lazyload.js?ver=1.0.0
IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerLet's Encrypt
Subjectpinayum.org
Fingerprint44:98:66:18:24:6B:99:C1:F9:EF:0C:3A:C0:D3:B3:06:5A:5A:D4:2C
ValidityThu, 07 Mar 2024 08:16:27 GMT - Wed, 05 Jun 2024 08:16:26 GMT
File type JavaScript source, ASCII text, with very long lines (5897), with no line terminators
Hash df6d1e6c2c8f32d0d77c43c6498df5c4
24376f92d546b43949b30261656f2aa5e15657b5
5bb298cb36c3785b2a1d28ca6db6c30403eb7690c440dd4f3c25f6cbfeb3101b
GET /wp-content/themes/retrotube/assets/js/lazyload.js?ver=1.0.0 HTTP/1.1
Host: pinayum.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 02 May 2024 03:22:45 GMT
content-type: application/x-javascript
age: 76138
cache-control: public, max-age=604800
cf-bgj: minify
cf-polished: origSize=5755
alt-svc: h3=":443"; ma=86400
content-security-policy: upgrade-insecure-requests
etag: W/"167b-65c44e91-9a6e7db825e7a174;br"
expires: Wed, 08 May 2024 05:22:31 GMT
last-modified: Thu, 08 Feb 2024 03:46:25 GMT
platform: hostinger
x-hcdn-cache-status: HIT
x-hcdn-request-id: 264265bd0357c699928c0dc619bf6751-imm-edge2
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=a0LOX9SONjZKf%2BA8htOYP3p86llLnMEn4CXvHE1f8yI%2FIH6zbGWfbQmI74zvWIzDdE8TA6fOz968os2YUESLnl4DOyvS8fvtQGIDyPbwMCTFlSlxhxIYGpYyYpihXA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d4e3803c46b51e-OSL
content-encoding: br
GET cdn.tsyndicate.com/sdk/v1/p.js
200 OK 9.6 kB URL GET HTTP/2 cdn.tsyndicate.com/sdk/v1/p.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerLet's Encrypt
Subjectcdn.tsyndicate.com
Fingerprint27:B4:A1:69:D6:DF:AF:13:62:9C:06:AB:7A:E0:2F:B6:9B:08:43:75
ValidityTue, 09 Apr 2024 03:01:17 GMT - Mon, 08 Jul 2024 03:01:16 GMT
File type JavaScript source, ASCII text, with very long lines (9914), with no line terminators
Hash 80d5994a62b95bdb71b48a8cdc49f25d
98b2696b786639404cb785f0269188ddce349e5b
2b4d201b3cf2d8472389f8035a077671117c07c2b799872f3b346b6a227d4045
GET /sdk/v1/p.js HTTP/1.1
Host: cdn.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.sh/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 02 May 2024 03:22:45 GMT
content-type: application/javascript; charset=utf-8
server: nginx
last-modified: Fri, 15 Mar 2024 12:35:02 GMT
etag: W/"65f44076-256b"
x-robots-tag: noindex, nofollow
content-encoding: gzip
cache-control: max-age=172800
expires: Sat, 04 May 2024 03:22:45 GMT
vary: Accept-Encoding
x-proxy-cache: HIT
X-Firefox-Spdy: h2
GET 6v41p4bsq.com/get/1999130?zoneid=1999130&jp=_clkid78rzm38fayufyr5ht&nojs=0&abvar=0&febuild=1.0.233&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=956794277267456&eclog=0&im=1&freq=0&uf=0
200 OK 4.1 kB URL GET HTTP/2 6v41p4bsq.com/get/1999130?zoneid=1999130&jp=_clkid78rzm38fayufyr5ht&nojs=0&abvar=0&febuild=1.0.233&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=956794277267456&eclog=0&im=1&freq=0&uf=0
IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerBuypass AS-983163327
Subject
Fingerprint61:0C:D2:DF:A5:99:8D:C6:B8:C1:FC:9D:F2:27:20:E0:21:BE:50:73
ValidityTue, 09 Jan 2024 12:50:38 GMT - Sat, 06 Jul 2024 21:59:00 GMT
File type ASCII text, with very long lines (4196), with no line terminators
Hash dbc16d320071e0496d3acb4dee856fbf
95c620e3fd028b7e2ab6e89fcf027660136d8de2
20157998bde6002a209269843ed81dd680119ef151ff72ccea37937122b3e9c3
GET /get/1999130?zoneid=1999130&jp=_clkid78rzm38fayufyr5ht&nojs=0&abvar=0&febuild=1.0.233&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=956794277267456&eclog=0&im=1&freq=0&uf=0 HTTP/1.1
Host: 6v41p4bsq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pinayum.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 03:22:45 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: CHCK=1; Path=/; Expires=Thu, 05 Jun 2025 03:22:45 GMT; Secure; SameSite=None
UID=240501222279724c002c0b4427becfd328a0; Path=/; Expires=Thu, 05 Jun 2025 03:22:45 GMT; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
GET ku42hjr2e.com/get/1941940?zoneid=1941940&jp=_cltq21m9n795krya97wpv&nojs=0&abvar=0&febuild=1.0.233&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1232&y=693&md=0&afid=6867768788280832&eclog=0&im=1&uf=0
200 OK 2.8 kB URL GET HTTP/2 ku42hjr2e.com/get/1941940?zoneid=1941940&jp=_cltq21m9n795krya97wpv&nojs=0&abvar=0&febuild=1.0.233&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1232&y=693&md=0&afid=6867768788280832&eclog=0&im=1&uf=0
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerBuypass AS-983163327
Subject
Fingerprint15:EC:3A:52:11:EC:ED:35:8E:60:38:E6:CC:79:A7:3E:A3:5B:B6:62
ValidityTue, 09 Jan 2024 12:43:23 GMT - Sat, 06 Jul 2024 21:59:00 GMT
File type ASCII text, with very long lines (3142), with no line terminators
Hash 5cb8aa7a2b7054d17aafd999a68ac2d3
7dd65352bfc4eb98bd4da36de6a788a3412b710b
1d2bc3230ff3d76220ee785827440f5a53cc339740a31c6a5e58aace4569505f
GET /get/1941940?zoneid=1941940&jp=_cltq21m9n795krya97wpv&nojs=0&abvar=0&febuild=1.0.233&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1232&y=693&md=0&afid=6867768788280832&eclog=0&im=1&uf=0 HTTP/1.1
Host: ku42hjr2e.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.sh/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 03:22:46 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: UID=2405012222d859524444744a629ae22d0067; Path=/; Expires=Thu, 05 Jun 2025 03:22:46 GMT; Secure; SameSite=None
CHCK=1; Path=/; Expires=Thu, 05 Jun 2025 03:22:46 GMT; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
GET 84gs08xe1.com/get/1999132?zoneid=1999132&jp=_cl9nevl3y5i1pg7u9pb8p9&nojs=0&abvar=0&febuild=1.0.233&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=8838093625164288&eclog=0&im=1&uf=0
200 OK 37 B URL GET HTTP/2 84gs08xe1.com/get/1999132?zoneid=1999132&jp=_cl9nevl3y5i1pg7u9pb8p9&nojs=0&abvar=0&febuild=1.0.233&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=8838093625164288&eclog=0&im=1&uf=0
IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerBuypass AS-983163327
Subject
Fingerprint2E:BB:12:7D:D0:64:37:24:6A:22:94:BC:E9:DD:26:B3:DA:01:C9:2C
ValiditySat, 27 Apr 2024 13:01:10 GMT - Wed, 23 Oct 2024 21:59:00 GMT
File type ASCII text, with no line terminators
Hash 26c0446473cdbedd7eb18169ae75e0fd
c2a8a31848b22f49c044d0e8f2b4a48e856e08b8
c94588c2c490281057748a6bc21191dae810fb22ce8cc638b5e3fc7d390eb165
GET /get/1999132?zoneid=1999132&jp=_cl9nevl3y5i1pg7u9pb8p9&nojs=0&abvar=0&febuild=1.0.233&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=8838093625164288&eclog=0&im=1&uf=0 HTTP/1.1
Host: 84gs08xe1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pinayum.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 03:22:46 GMT
content-type: text/javascript
vary: Accept-Encoding
x-route-id: config
set-cookie: CHCK=1; Path=/; Expires=Thu, 05 Jun 2025 03:22:46 GMT; Secure; SameSite=None
UID=2405012222d7211aa7820642ebadab355c55; Path=/; Expires=Thu, 05 Jun 2025 03:22:46 GMT; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
GET pinayum.org/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2
200 OK 19 kB URL GET HTTP/3 pinayum.org/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2
IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerLet's Encrypt
Subjectpinayum.org
Fingerprint44:98:66:18:24:6B:99:C1:F9:EF:0C:3A:C0:D3:B3:06:5A:5A:D4:2C
ValidityThu, 07 Mar 2024 08:16:27 GMT - Wed, 05 Jun 2024 08:16:26 GMT
File type JavaScript source, ASCII text, with very long lines (15752)
Hash b976b651932bfd25b9ddb5b7693d88a7
7fcb7cb5c11227f9213b1e08a07d0212209e1432
4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 HTTP/1.1
Host: pinayum.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Cookie: bnState_1999130={"impressions":2,"delayStarted":0}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 02 May 2024 03:22:47 GMT
content-type: application/x-javascript
cache-control: public, max-age=604800
expires: Wed, 08 May 2024 06:13:52 GMT
last-modified: Tue, 02 Apr 2024 21:45:12 GMT
etag: W/"4926-660c7c68-a71725d5bd863b5a;br"
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 1e5092b629b5867dd230d949ab1bc57d-imm-edge2
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.689
cf-cache-status: HIT
age: 76135
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Vc0ZT0Uew%2FGyjejMWp2hCQvIOQ5VQ1csUjFpYywiar1yKqZ6rOOQmKeSQ69hvw1ItXq0yLpAGyPz8LZh3iI8D%2BkN%2BCV%2FzAPc0TXifRQskMrsU3SztwY495W1ZkC6Kg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d4e38bea7bb51e-OSL
content-encoding: br
GET dood.sh/pass_md5/138820408-91-90-1714620164-920acda6a6bcfc4fb527e49138984641/ygy67lu4jhttf7fz66ce0qli
200 OK 106 B URL GET HTTP/3 dood.sh/pass_md5/138820408-91-90-1714620164-920acda6a6bcfc4fb527e49138984641/ygy67lu4jhttf7fz66ce0qli
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerGoogle Trust Services LLC
Subjectdood.sh
Fingerprint87:0C:E0:84:9B:C9:F0:5C:F4:39:DA:59:AF:01:24:59:3C:D6:36:DB
ValidityWed, 24 Apr 2024 00:27:36 GMT - Tue, 23 Jul 2024 00:27:35 GMT
File type ASCII text, with no line terminators
Hash ed65d3110068c8675f22e97278eda9a4
a02f48a04a0b8744f42a08359251008fe9bcc3cb
ea3c6b28c2dafdcb76651a8fe253a0d12463231f1294d29d6df5f064a72e8eaf
GET /pass_md5/138820408-91-90-1714620164-920acda6a6bcfc4fb527e49138984641/ygy67lu4jhttf7fz66ce0qli HTTP/1.1
Host: dood.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://dood.sh/e/8p6jatncyuj9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 02 May 2024 03:22:45 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rhstnV%2FD%2FO%2BTG9juNPcNCtQ0T0fjZvFLSOJgqUJbbQtCuNu0NfZH%2BtRijjzimFhoyKEG4Y7c%2FppbHfeZ5QeFik9dYmi3vQYob9fWnq9e2uM6siItPDW5A%2Fs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d4e384dade5696-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET dood.sh/cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js
200 OK 7.8 kB URL GET HTTP/3 dood.sh/cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerGoogle Trust Services LLC
Subjectdood.sh
Fingerprint87:0C:E0:84:9B:C9:F0:5C:F4:39:DA:59:AF:01:24:59:3C:D6:36:DB
ValidityWed, 24 Apr 2024 00:27:36 GMT - Tue, 23 Jul 2024 00:27:35 GMT
File type JavaScript source, ASCII text, with very long lines (7757), with no line terminators
Hash ff2ef2da92dd276b6c8c50354cc52de1
b94464c100bd54a3944f1c6d34de3f74106baea4
0dedbd6c9a9d12e784a2a72f01cd3329fc86f3f2bed65c425fbf4c5a78f6f94e
GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js HTTP/1.1
Host: dood.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 02 May 2024 03:22:46 GMT
content-type: application/javascript; charset=UTF-8
vary: accept-encoding
content-encoding: br
cache-control: max-age=14400, public
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=msEUgOtzrmZ8%2FCdrRI2XvkU4PMihnawRNvRfNbJZLy0QnWgp%2BvQaQzx4BfGECvTc8R3UMpYZIO%2Ffop38hRC1EkBYi11Cy1bobm15%2BY8K6qki0ZxdcPDBWSM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d4e3875c105696-OSL
alt-svc: h3=":443"; ma=86400
GET pogothere.xyz/
200 OK 26 B IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerGoogle Trust Services LLC
Subjectpogothere.xyz
Fingerprint34:D3:33:F8:49:E2:1E:3E:44:A8:5D:74:68:9C:B8:A0:D5:F8:DD:0B
ValidityWed, 27 Mar 2024 02:15:30 GMT - Tue, 25 Jun 2024 02:15:29 GMT
File type ASCII text, with no line terminators
Hash 99e2616615f468d71c16b2bc6a3f1321
16f883c401594bda5295b0b381712b7f831a1a8b
ef9fa62823d333227a42d701ca8b1799ce0659419e7a29a09904584d03e91095
GET / HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dood.sh/
Origin: https://dood.sh
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 02 May 2024 03:22:46 GMT
content-type: text/plain
set-cookie: csu=925775777539267@1@1714620166; Max-Age=31104000; Secure; SameSite=None
access-control-allow-origin: https://dood.sh
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=haSb%2FuB4uIiwqF1Cn9vP%2BAr1XGbozJ3lZA7AQWdSOn6%2BhQf4oyl1Ashn%2F7JQGROwlXPYUAoWtUZzLoJrZr5W2McgyOawRH1pknSRiTEMX6YIvGhJxyT2Y5g6qgsQJxYe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d4e3887a361bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET i.doodcdn.co/css/embed.css
200 OK 80 kB URL GET HTTP/2 i.doodcdn.co/css/embed.css
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerCloudflare, Inc.
Subjectdoodcdn.co
Fingerprint8C:32:D4:AB:AF:53:AF:34:D3:6F:F9:E0:66:DC:21:B2:03:C6:34:F3
ValidityFri, 12 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /css/embed.css HTTP/1.1
Host: i.doodcdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.sh/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 02 May 2024 03:22:45 GMT
content-type: text/css
access-control-allow-origin: *
cache-control: public, max-age=2592000, no-transform
cf-bgj: minify
cf-polished: origSize=79890
etag: W/"61d3187c-13812"
expires: Thu, 30 May 2024 16:19:22 GMT
last-modified: Mon, 03 Jan 2022 15:38:36 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 39905
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NEIY4QI1s2riLbXOetB5GsFFiKPc15Fbq1Utjqoc7xztcyeVGiASxXfHlnC09Iugt7frfIz7UBa94U9d6D9FM9xKXBhPZv21Ov6LTz2DwLQi1ypEMFoT2SB9A0tUsQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d4e381dc90b523-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET pinayum.org/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
200 OK 1.2 kB URL GET HTTP/3 pinayum.org/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerLet's Encrypt
Subjectpinayum.org
Fingerprint44:98:66:18:24:6B:99:C1:F9:EF:0C:3A:C0:D3:B3:06:5A:5A:D4:2C
ValidityThu, 07 Mar 2024 08:16:27 GMT - Wed, 05 Jun 2024 08:16:26 GMT
File type HTML document, ASCII text, with very long lines (1271), with no line terminators
Hash 40d981045a7516cdadd00e8dccc9c58d
8b8d9a48c6b9d2fba596034ef5db3dd0f2f781c3
71c7d5fc630ff38080f71945be1e8b0c43140d8c25338056b752495e18739c0c
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: pinayum.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 02 May 2024 03:22:44 GMT
content-type: application/javascript
last-modified: Tue, 30 Apr 2024 15:20:25 GMT
etag: W/"66310c39-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BunlfGfcrA9rEK8Yf3L4GkOhBkZZ2JQ6HccnM8tY7bJgptAtnAkW3ivb4rWP5nLbo1vt1T6K6aq%2Fs3hiR6D%2BA3T7MhhmE8d2i9A08PPEPNM%2FWDz3al%2FDCfu5Dq4DHg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d4e37deadfb51e-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sat, 04 May 2024 03:22:44 GMT
cache-control: max-age=172800, public
content-encoding: gzip
GET cdnjs.cloudflare.com/ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js
200 OK 1.3 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (1355), with no line terminators
Hash 071e147dd13a3f658b986c3c1f19e871
54830bf6a660ff11d8591aadeb1109a24e744a33
0981720261636a0ed2447dc8c2f91e3ce8aa6bb5d88342532e71b6725fad5adc
GET /ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.sh/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 02 May 2024 03:22:45 GMT
content-type: application/javascript; charset=utf-8
content-length: 591
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec1-514"
last-modified: Mon, 04 May 2020 16:11:45 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 24742
expires: Tue, 22 Apr 2025 03:22:45 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fc62K0L3vTTElNPdpjWnwFnXNoxzKOrwfMRPGXuFsEOOisdj8%2BKj0Xt5sNJ5hgAhGjWziZU1o7tUWcjBOobSCAVJaUzDqAm9MSdW4GCOZ2c8kMbQFAPknsHc4jXMYv%2BUQtJZsumU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87d4e3807a6c56a2-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET i.doodcdn.co/get_slides/166/95qu3m3d014n8dw2.jpg
200 OK 3.2 kB URL GET HTTP/3 i.doodcdn.co/get_slides/166/95qu3m3d014n8dw2.jpg
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerCloudflare, Inc.
Subjectdoodcdn.co
Fingerprint8C:32:D4:AB:AF:53:AF:34:D3:6F:F9:E0:66:DC:21:B2:03:C6:34:F3
ValidityFri, 12 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File type ASCII text, with very long lines (3268), with no line terminators
Hash f14cd6ea034f06055e5a0aade03e4cc5
545d9272e3d3621884b070340249684c2f687fac
85f51a749df6473cb588f9241f6f1db79806e502f875f8694f3ee17a6035b53a
GET /get_slides/166/95qu3m3d014n8dw2.jpg HTTP/1.1
Host: i.doodcdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dood.sh
DNT: 1
Connection: keep-alive
Referer: https://dood.sh/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 02 May 2024 03:22:46 GMT
content-type: text/vtt
access-control-allow-origin: *
last-modified: Thu, 02 May 2024 03:22:46 GMT
cache-control: max-age=86400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KOHxlg0vHCuov4TtaTk398LcRiZXdzCyNoRZhBUTpxU%2B1jh2DXJ5CHLcWn3be6I8oF0RhY02th9VhyDu7NEmOgfXH4BFRkjsXFVhsT4cR9VXYqKp1FkEGIaUmbHuEg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d4e3869dd4b505-OSL
alt-svc: h3=":443"; ma=86400
GET du0pud0sdlmzf.cloudfront.net/?dupud=908057
200 OK 298 kB URL GET HTTP/2 du0pud0sdlmzf.cloudfront.net/?dupud=908057
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
Size 298 kB (297613 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?dupud=908057 HTTP/1.1
Host: du0pud0sdlmzf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.sh/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 96794
date: Thu, 02 May 2024 03:22:45 GMT
access-control-allow-origin: *
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Miss from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Yqp0tuWL0hrbm4H1eM4W6RsdNJrodCacObHwKU-4znr3ZsY4-oAzCg==
X-Firefox-Spdy: h2
GET pinayum.org/wp-content/themes/retrotube/assets/js/main.js?ver=1.7.2.1707363985
200 OK 29 kB URL GET HTTP/3 pinayum.org/wp-content/themes/retrotube/assets/js/main.js?ver=1.7.2.1707363985
IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerLet's Encrypt
Subjectpinayum.org
Fingerprint44:98:66:18:24:6B:99:C1:F9:EF:0C:3A:C0:D3:B3:06:5A:5A:D4:2C
ValidityThu, 07 Mar 2024 08:16:27 GMT - Wed, 05 Jun 2024 08:16:26 GMT
File type JavaScript source, ASCII text, with very long lines (2119)
Hash 92195bb6603dcd31bd4fa83f12e66a60
a2af363db3d6d4ebb64bf898c86cacba45a8c301
23883d49c163ad2a6977dd3a94a9050f7453e35d17e9e1ab2310fcbc26c62206
GET /wp-content/themes/retrotube/assets/js/main.js?ver=1.7.2.1707363985 HTTP/1.1
Host: pinayum.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 02 May 2024 03:22:45 GMT
content-type: application/x-javascript
cache-control: public, max-age=604800
cf-bgj: minify
cf-polished: origSize=39275
alt-svc: h3=":443"; ma=86400
content-security-policy: upgrade-insecure-requests
etag: W/"996b-65c44e91-bf886f9c8c7923c1;br"
expires: Wed, 08 May 2024 06:13:48 GMT
last-modified: Thu, 08 Feb 2024 03:46:25 GMT
platform: hostinger
x-hcdn-cache-status: MISS
x-hcdn-request-id: 8f644bd5b657a854b0df7521f1a15569-imm-edge1
x-hcdn-upstream-rt: 0.720
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 76137
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JDVhl8kiJNa3YntTP3ofc%2BjX6ANoUQ0GvIqZEurXx%2FrvcLlTLgyLywlX3Olzdtc4ZqMQuhtTJNG3jn%2BECQrKSo9YHmvhmU4RhYSwwT7nE0uyGX8ETG70P6Pyktc69Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d4e3803c41b51e-OSL
content-encoding: br
GET i.doodcdn.co/theme_2/img/loader.svg
200 OK 694 B URL GET HTTP/3 i.doodcdn.co/theme_2/img/loader.svg
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerCloudflare, Inc.
Subjectdoodcdn.co
Fingerprint8C:32:D4:AB:AF:53:AF:34:D3:6F:F9:E0:66:DC:21:B2:03:C6:34:F3
ValidityFri, 12 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File type exported SGML document, ASCII text, with very long lines (750), with no line terminators
Hash e0c38124a46835a055de826afbf33d9b
255567da0faa3de6c4bcef1780e9990ba7c9c0ff
e186e235e7552b286f217c94c747abdd5a8df8279c2334a61202817f937ea960
GET /theme_2/img/loader.svg HTTP/1.1
Host: i.doodcdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://i.doodcdn.co/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 02 May 2024 03:22:46 GMT
content-type: image/svg+xml
last-modified: Mon, 03 Jan 2022 15:43:40 GMT
cache-control: max-age=2592000
expires: Thu, 30 May 2024 17:27:20 GMT
access-control-allow-origin: *
cf-cache-status: HIT
age: 35741
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=S91D7AE7YpBSN2GarHUFTPU0kQd6MXiAfyc75vr7lvvIGu39GmbTTLXd%2Bu6sMbA70UTvUMwt8PJxAhF76Lv%2FjRd7uR%2BPgu5UGTeDtsiUAjD8hZ5%2FVb64VruU5mD2cg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d4e386fb80712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET pogothere.xyz/asd100.bin
200 OK 102 kB IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerGoogle Trust Services LLC
Subjectpogothere.xyz
Fingerprint34:D3:33:F8:49:E2:1E:3E:44:A8:5D:74:68:9C:B8:A0:D5:F8:DD:0B
ValidityWed, 27 Mar 2024 02:15:30 GMT - Tue, 25 Jun 2024 02:15:29 GMT
Size 102 kB (102400 bytes)
Hash 4c6426ac7ef186464ecbb0d81cbfcb1e
5a6918eebd9d635e8f632e3ef34e3792b1b5ec13
f627ca4c2c322f15db26152df306bd4f983f0146409b81a4341b9b340c365a16
GET /asd100.bin HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dood.sh/
Origin: https://dood.sh
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 02 May 2024 03:22:46 GMT
content-type: binary/octet-stream
access-control-allow-origin: https://dood.sh
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cache-control: max-age=14400
cf-cache-status: HIT
age: 496
last-modified: Thu, 02 May 2024 03:14:30 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hBtrn3fS2V3kfjHqxrkMBoS2sKUczVr6N%2Bjd2ERsGbk657ZClG6o93EhQwJ8ONCP5oekp0O6aYsJvYus8JOLFf43hFzwlK6Oxz2%2BLoCi2AjJKFIAvpB8r0e3ZPnLSkSZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d4e3886a2e1bfa-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQzfAqP7NFNS9dLtFe6QxIrbk8kzd0zlhXNnmwMh6pei9UwQWdnT0arV0f24p7rJYERiWmfe4Q&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1241236562%3A1714620166644768&theme=mn&ddm=0
403 Forbidden 0 B URL GET HTTP/2 accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQzfAqP7NFNS9dLtFe6QxIrbk8kzd0zlhXNnmwMh6pei9UwQWdnT0arV0f24p7rJYERiWmfe4Q&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1241236562%3A1714620166644768&theme=mn&ddm=0
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint9A:72:A8:C3:56:5C:93:B4:72:C7:5B:1B:60:BB:0F:3E:1E:C4:1B:67
ValidityTue, 16 Apr 2024 04:20:36 GMT - Tue, 09 Jul 2024 04:20:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQzfAqP7NFNS9dLtFe6QxIrbk8kzd0zlhXNnmwMh6pei9UwQWdnT0arV0f24p7rJYERiWmfe4Q&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1241236562%3A1714620166644768&theme=mn&ddm=0 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dood.sh/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 02 May 2024 03:22:46 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-ndoEBSk8GUB0qBB8E8hKMg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQywhp2xI9DmJgi43hZ1OHyBgitsqHMw51S6qIHbW_sxoYOgG5T884kYn3ZOqFQo0fvwOorjyQ&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S2080743980%3A1714620166641309&theme=mn&ddm=0
403 Forbidden 0 B URL GET HTTP/2 accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQywhp2xI9DmJgi43hZ1OHyBgitsqHMw51S6qIHbW_sxoYOgG5T884kYn3ZOqFQo0fvwOorjyQ&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S2080743980%3A1714620166641309&theme=mn&ddm=0
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint9A:72:A8:C3:56:5C:93:B4:72:C7:5B:1B:60:BB:0F:3E:1E:C4:1B:67
ValidityTue, 16 Apr 2024 04:20:36 GMT - Tue, 09 Jul 2024 04:20:35 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQywhp2xI9DmJgi43hZ1OHyBgitsqHMw51S6qIHbW_sxoYOgG5T884kYn3ZOqFQo0fvwOorjyQ&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S2080743980%3A1714620166641309&theme=mn&ddm=0 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dood.sh/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 02 May 2024 03:22:46 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
content-security-policy: script-src 'nonce-2z4zbuWfcGpdPtcr_dw1ww' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET pinayum.org/wp-includes/css/dist/block-library/style.min.css?ver=6.5.2
200 OK 113 kB URL GET HTTP/3 pinayum.org/wp-includes/css/dist/block-library/style.min.css?ver=6.5.2
IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerLet's Encrypt
Subjectpinayum.org
Fingerprint44:98:66:18:24:6B:99:C1:F9:EF:0C:3A:C0:D3:B3:06:5A:5A:D4:2C
ValidityThu, 07 Mar 2024 08:16:27 GMT - Wed, 05 Jun 2024 08:16:26 GMT
Size 113 kB (113381 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.5.2 HTTP/1.1
Host: pinayum.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 02 May 2024 03:22:44 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 08 May 2024 05:27:59 GMT
last-modified: Tue, 02 Apr 2024 21:45:12 GMT
etag: W/"1bae5-660c7c68-8949e407f06eaad5;br"
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
age: 76138
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: d46a7ebd4aa334e6829c13d3a611ddf6-imm-edge1
x-hcdn-cache-status: HIT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P4zw7LkZXuI77I%2B95S6f4we1NhMDLacseVgIbLGIw0EqW0S4ZulqnK3rpYREXHKnRewMzPDt7OQcAmiYGFEIznjSXLuPA4XGBbCGFB5ffpNomVlsk4wDS0oyiBM%2FCQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d4e37dead7b51e-OSL
content-encoding: br
GET ku42hjr2e.com/aas/r45d/vki/1941940/01a7fa3f.js
200 OK 106 kB URL GET HTTP/2 ku42hjr2e.com/aas/r45d/vki/1941940/01a7fa3f.js
IP
Requested by https://dood.sh/e/8p6jatncyuj9
Certificate IssuerBuypass AS-983163327
Subject
Fingerprint15:EC:3A:52:11:EC:ED:35:8E:60:38:E6:CC:79:A7:3E:A3:5B:B6:62
ValidityTue, 09 Jan 2024 12:43:23 GMT - Sat, 06 Jul 2024 21:59:00 GMT
File type JavaScript source, ASCII text, with very long lines (65106)
Size 106 kB (106460 bytes)
Hash 53eec56b3d55ecfa8c6d159c53dc1552
6b5e67e80c929593a73500f4f0af033ebc262b84
51506dfe21f04ce7efc83b89d85b2ed800c4d694723716ec7bbcba6030f079ff
GET /aas/r45d/vki/1941940/01a7fa3f.js HTTP/1.1
Host: ku42hjr2e.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dood.sh/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 03:22:45 GMT
content-type: application/javascript
last-modified: Thu, 25 Apr 2024 17:06:20 GMT
vary: Accept-Encoding
etag: W/"662a8d8c-1a022"
x-js-ab2: current
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2
GET 84gs08xe1.com/aas/r45d/vki/1999132/tghr.js
200 OK 106 kB URL GET HTTP/2 84gs08xe1.com/aas/r45d/vki/1999132/tghr.js
IP
Requested by https://pinayum.org/nilamotak-ang-bawat-katas-ni-insan/
Certificate IssuerBuypass AS-983163327
Subject
Fingerprint2E:BB:12:7D:D0:64:37:24:6A:22:94:BC:E9:DD:26:B3:DA:01:C9:2C
ValiditySat, 27 Apr 2024 13:01:10 GMT - Wed, 23 Oct 2024 21:59:00 GMT
File type JavaScript source, ASCII text, with very long lines (65106)
Size 106 kB (106460 bytes)
Hash 3534894dc3fbe3cfd9006700a2b6fdbe
3206d31f60e1a24c46a9253a5aa75ad3a99dba12
6d13a48f3b6a65db23cd02c85e052bbd7df6f0101226875c57bfa8e0f318cdac
GET /aas/r45d/vki/1999132/tghr.js HTTP/1.1
Host: 84gs08xe1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pinayum.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 03:22:45 GMT
content-type: application/javascript
last-modified: Thu, 25 Apr 2024 17:06:20 GMT
vary: Accept-Encoding
etag: W/"662a8d8c-1a022"
x-js-ab2: current
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2
172.67.186.240
188.114.96.1
212.117.190.201
141.94.135.32
104.17.25.14
0.0.0.0