POST jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 94 B URL POST jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
Requested by https://www.youtube.com/embed/fEVQ_8DUpm4
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7A:29:E6:A8:BE:59:2C:AE:82:2D:CA:8E:15:89:41:BE:EC:D2:0D:EA
ValidityMon, 21 Apr 2025 08:41:49 GMT - Mon, 14 Jul 2025 08:41:48 GMT
Hash aa82358523dd63ef96d873b1963a79a2
88a33f000faa6632dc56efbab5d295bdb6f88607
a1a22bbc8726b9223d98465111319e60c74557816cf0d0c991a919852f30be01
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1103
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 11 May 2025 21:03:48 GMT
server: ESF
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.gstatic.com/cv/js/sender/v1/cast_sender.js
200 OK 4.3 kB URL GET www.gstatic.com/cv/js/sender/v1/cast_sender.js
IP
Requested by https://www.youtube.com/embed/fEVQ_8DUpm4
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint15:8B:D4:EA:7E:CB:34:1B:6F:2E:20:9E:39:44:7A:D6:D7:30:26:AB
ValidityMon, 21 Apr 2025 08:41:49 GMT - Mon, 14 Jul 2025 08:41:48 GMT
File type JavaScript source, ASCII text, with very long lines (1143)
Hash b427175fa1078775eb792756e7b6d1e7
4c55c0233d3d9002b3449c025f97821f8bb8900d
ee147e859ad0f09aa50367974e38ab53e7c7054c4a51d400a7f45b0eb251454f
GET /cv/js/sender/v1/cast_sender.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/cloudview
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="cloudview"
report-to: {"group":"cloudview","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/cloudview"}]}
content-length: 2007
date: Sun, 11 May 2025 21:03:48 GMT
expires: Sun, 11 May 2025 21:03:48 GMT
cache-control: private, max-age=3000
last-modified: Tue, 16 Feb 2021 23:57:06 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET thebalan-er.com/favicon.ico
200 OK 24 kB URL GET thebalan-er.com/favicon.ico
IP
Certificate IssuerGoogle Trust Services
Subjectthebalan-er.com
FingerprintC3:1E:10:BD:DF:1D:87:F4:12:BD:70:E6:09:3E:3E:42:26:C3:79:55
ValidityMon, 14 Apr 2025 20:11:20 GMT - Sun, 13 Jul 2025 21:06:47 GMT
File type MS Windows icon resource - 1 icon, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel
Hash cce8b5a42495dfb443a8e8ab913757a4
d3b2d250b339a47701cc5499c75f61eebce4e0d9
8fdbaa6ceb25bc1a8d68562e3513f42c15ee27e5f694a081d5b548e880958140
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /favicon.ico HTTP/1.1
Host: thebalan-er.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://thebalan-er.com/
Cookie: PHPSESSID=3c5mnl605h5r533bjpe68jut4j; _subid=3p5qdu923rdc9; 6b1cd=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjMyNFwiOjE3NDY5OTc0MjV9LFwiY2FtcGFpZ25zXCI6e1wiNzRcIjoxNzQ2OTk3NDI1fSxcInRpbWVcIjoxNzQ2OTk3NDI1fSJ9.4iPIZo8ZJ0Li8seIgXHNRvDGtIg0cMd90sob7r_HSLM
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 11 May 2025 21:03:46 GMT
content-type: image/x-icon
server: cloudflare
last-modified: Mon, 14 Apr 2025 20:40:22 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
cache-control: max-age=14400
cf-cache-status: HIT
age: 1
priority: u=6,i=?0
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=cLusR3dZUcu8FSY%2BEEgUoSyiMtF%2BXD33Gn1z%2Bi7b5oZwArxR3OsZZKysM8%2BJOKcdmrVHo4m7DYuj8M4TRR%2B%2BTPLSDKYk7NVdOlppwvKb41S%2B%2FBkmGrbhdBoMaQJnPrVt%2FXQ%3D"}]}
etag: W/"67fd72b6-5f40"
content-encoding: br
cf-ray: 93e49ff9989556b1-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=weekly&loading=async&language=ru®ion=it&callback=onApiLoad
200 OK 12 kB URL GET maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=weekly&loading=async&language=ru®ion=it&callback=onApiLoad
IP
Requested by https://www.google.com/maps/embed?pb=!1m14!1m12!1m3!1d7280.498916531502!2d12.274654411077492!3d45.27572475576178!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!5e0!3m2!1sru!2sit!4v1718121686840!5m2!1sru!2sit
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7A:29:E6:A8:BE:59:2C:AE:82:2D:CA:8E:15:89:41:BE:EC:D2:0D:EA
ValidityMon, 21 Apr 2025 08:41:49 GMT - Mon, 14 Jul 2025 08:41:48 GMT
File type JavaScript source, ASCII text, with very long lines (11084)
Hash d44da94c0a2ce0ec021ff208cd1dbb79
ec0db17ddec7658c57f7958c04bef025b95807cf
f5746954e524a84dd9ffc95c1ccf1b48bc4ef339e26263d477b1b54263deb0e3
GET /maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=weekly&loading=async&language=ru®ion=it&callback=onApiLoad HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
timing-allow-origin: *
cache-control: public, max-age=1800, stale-while-revalidate=10800
etag: 5e38910e
cross-origin-resource-policy: cross-origin
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 11 May 2025 21:03:46 GMT
server: scaffolding on HTTPServer2
content-length: 2523
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET maps.googleapis.com/maps-api-v3/api/js/60/12/intl/ru_ALL/main.js
200 OK 247 kB URL GET maps.googleapis.com/maps-api-v3/api/js/60/12/intl/ru_ALL/main.js
IP
Requested by https://www.google.com/maps/embed?pb=!1m14!1m12!1m3!1d7280.498916531502!2d12.274654411077492!3d45.27572475576178!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!5e0!3m2!1sru!2sit!4v1718121686840!5m2!1sru!2sit
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7A:29:E6:A8:BE:59:2C:AE:82:2D:CA:8E:15:89:41:BE:EC:D2:0D:EA
ValidityMon, 21 Apr 2025 08:41:49 GMT - Mon, 14 Jul 2025 08:41:48 GMT
File type JavaScript source, ASCII text, with very long lines (854)
Size 247 kB (247145 bytes)
Hash 6bd95e7ad7087fd06c9881044dcc3c7d
7e4dcd630083b3e2f00adc14eb4d60ac473e3408
97ee13d89b4ab8d5a648d75efbee22d6cbd661daddc067903930f3d036481ba4
GET /maps-api-v3/api/js/60/12/intl/ru_ALL/main.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
timing-allow-origin: *
content-length: 71574
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 May 2025 19:16:24 GMT
expires: Thu, 07 May 2026 19:16:24 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 May 2025 17:43:41 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 352042
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET maps.googleapis.com/maps-api-v3/api/js/60/12/intl/ru_ALL/geometry.js
200 OK 2.9 kB URL GET maps.googleapis.com/maps-api-v3/api/js/60/12/intl/ru_ALL/geometry.js
IP
Requested by https://www.google.com/maps/embed?pb=!1m14!1m12!1m3!1d7280.498916531502!2d12.274654411077492!3d45.27572475576178!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!5e0!3m2!1sru!2sit!4v1718121686840!5m2!1sru!2sit
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7A:29:E6:A8:BE:59:2C:AE:82:2D:CA:8E:15:89:41:BE:EC:D2:0D:EA
ValidityMon, 21 Apr 2025 08:41:49 GMT - Mon, 14 Jul 2025 08:41:48 GMT
File type ASCII text, with very long lines (1087)
Hash c87564b658c31cc956afa337e254fa36
8c63aef1a10da5451c71b78a1ee595f728c59fc8
ed5dd118905b832c042335027ca2c0a3689943d87b453dfebe572811411a7ee2
GET /maps-api-v3/api/js/60/12/intl/ru_ALL/geometry.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
timing-allow-origin: *
content-length: 1291
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 May 2025 10:12:36 GMT
expires: Sat, 09 May 2026 10:12:36 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 May 2025 17:43:41 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 211870
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET maps.googleapis.com/maps-api-v3/api/js/60/12/intl/ru_ALL/map.js
200 OK 87 kB URL GET maps.googleapis.com/maps-api-v3/api/js/60/12/intl/ru_ALL/map.js
IP
Requested by https://www.google.com/maps/embed?pb=!1m14!1m12!1m3!1d7280.498916531502!2d12.274654411077492!3d45.27572475576178!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!5e0!3m2!1sru!2sit!4v1718121686840!5m2!1sru!2sit
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7A:29:E6:A8:BE:59:2C:AE:82:2D:CA:8E:15:89:41:BE:EC:D2:0D:EA
ValidityMon, 21 Apr 2025 08:41:49 GMT - Mon, 14 Jul 2025 08:41:48 GMT
File type JavaScript source, ASCII text, with very long lines (3328)
Hash 6bba4e82c857db70c3b594791b6a6ba3
a1a1f744de8ac14e594a4dec8f13f4c1f636747c
5514cc93a4286a18c5820f4dc9bb7a44c49b709705f4b2eb211ad3cf329dfb93
GET /maps-api-v3/api/js/60/12/intl/ru_ALL/map.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
timing-allow-origin: *
content-length: 26985
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 May 2025 00:56:28 GMT
expires: Sat, 09 May 2026 00:56:28 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 May 2025 17:43:41 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 245239
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
POST jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 100 kB URL POST jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
Requested by https://www.youtube.com/embed/fEVQ_8DUpm4
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7A:29:E6:A8:BE:59:2C:AE:82:2D:CA:8E:15:89:41:BE:EC:D2:0D:EA
ValidityMon, 21 Apr 2025 08:41:49 GMT - Mon, 14 Jul 2025 08:41:48 GMT
Hash 29285b1c977f0ec4870aba3b36d58183
a9e93d701b5d4409f23e30efe637c66f86313df9
36e8747080860d8a4af2fdf43736bec3530399ae5705b4297815e8032434292f
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 11 May 2025 21:03:47 GMT
server: ESF
content-length: 45554
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
200 OK 17 kB IP
Certificate IssuerGoogle Trust Services
Subjectthebalan-er.com
FingerprintC3:1E:10:BD:DF:1D:87:F4:12:BD:70:E6:09:3E:3E:42:26:C3:79:55
ValidityMon, 14 Apr 2025 20:11:20 GMT - Sun, 13 Jul 2025 21:06:47 GMT
File type HTML document, ASCII text, with very long lines (615)
Hash 0874fbcad8ea30bb93be4604dc0e10e7
912baa3e35cd6b5afbb7af7bf97810af6ee686de
28ce2366398b96c432714ce2143cda2ff2db1feb91eeeb5898e8372f784dd0c1
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: thebalan-er.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 11 May 2025 21:03:45 GMT
content-type: text/html; charset=UTF-8
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=06PzUba8Xyxa6J1vx6fzTSFC5Tod5c6M6%2BmTRBHtyzWXKxvHnLmv7eCA%2BMSOjMxr19rDjHS5dUmtqfem3FedhqXnG64g8zsuWKq755%2FQDjv5iHfYXTJRV9f3K9%2BU%2FnWpeQA%3D"}]}
cf-cache-status: DYNAMIC
content-encoding: br
set-cookie: PHPSESSID=3c5mnl605h5r533bjpe68jut4j; Path=/
_subid=3p5qdu923rdc9; Path=/; Domain=thebalan-er.com; Max-Age=86400; Expires=Mon, 12 May 2025 21:03:45 GMT
6b1cd=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjMyNFwiOjE3NDY5OTc0MjV9LFwiY2FtcGFpZ25zXCI6e1wiNzRcIjoxNzQ2OTk3NDI1fSxcInRpbWVcIjoxNzQ2OTk3NDI1fSJ9.4iPIZo8ZJ0Li8seIgXHNRvDGtIg0cMd90sob7r_HSLM; Path=/; Domain=thebalan-er.com; Max-Age=86400; Expires=Mon, 12 May 2025 21:03:45 GMT
cf-ray: 93e49ff2af407131-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET thebalan-er.com/favicon.ico
200 OK 24 kB URL GET thebalan-er.com/favicon.ico
IP
Certificate IssuerGoogle Trust Services
Subjectthebalan-er.com
FingerprintC3:1E:10:BD:DF:1D:87:F4:12:BD:70:E6:09:3E:3E:42:26:C3:79:55
ValidityMon, 14 Apr 2025 20:11:20 GMT - Sun, 13 Jul 2025 21:06:47 GMT
File type MS Windows icon resource - 1 icon, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel
Hash cce8b5a42495dfb443a8e8ab913757a4
d3b2d250b339a47701cc5499c75f61eebce4e0d9
8fdbaa6ceb25bc1a8d68562e3513f42c15ee27e5f694a081d5b548e880958140
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /favicon.ico HTTP/1.1
Host: thebalan-er.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://thebalan-er.com/
Cookie: PHPSESSID=3c5mnl605h5r533bjpe68jut4j; _subid=3p5qdu923rdc9; 6b1cd=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjMyNFwiOjE3NDY5OTc0MjV9LFwiY2FtcGFpZ25zXCI6e1wiNzRcIjoxNzQ2OTk3NDI1fSxcInRpbWVcIjoxNzQ2OTk3NDI1fSJ9.4iPIZo8ZJ0Li8seIgXHNRvDGtIg0cMd90sob7r_HSLM
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 11 May 2025 21:03:45 GMT
content-type: image/x-icon
server: cloudflare
last-modified: Mon, 14 Apr 2025 20:40:22 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
cache-control: max-age=14400
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=UDTilLTxbNwA6TpLXjAwt5kSX5AML55mTkMSsG9keG2%2FSIJB8UggsNBg5fmy7fjrFvaWTja22ErWQA6APSpAQN9UV2%2BZhJJ9jwa2s5fchWsMHGZxweTapgBJMGscuPLdvos%3D"}]}
etag: W/"67fd72b6-5f40"
content-encoding: br
cf-ray: 93e49ff71cbb56b1-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET thebalan-er.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
200 OK 1.2 kB URL GET thebalan-er.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
Certificate IssuerGoogle Trust Services
Subjectthebalan-er.com
FingerprintC3:1E:10:BD:DF:1D:87:F4:12:BD:70:E6:09:3E:3E:42:26:C3:79:55
ValidityMon, 14 Apr 2025 20:11:20 GMT - Sun, 13 Jul 2025 21:06:47 GMT
File type JavaScript source, ASCII text, with very long lines (1238)
Hash 9e8f56e8e1806253ba01a95cfc3d392c
a8af90d7482e1e99d03de6bf88fed2315c5dd728
2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: thebalan-er.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://thebalan-er.com/
Cookie: PHPSESSID=3c5mnl605h5r533bjpe68jut4j; _subid=3p5qdu923rdc9; 6b1cd=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjMyNFwiOjE3NDY5OTc0MjV9LFwiY2FtcGFpZ25zXCI6e1wiNzRcIjoxNzQ2OTk3NDI1fSxcInRpbWVcIjoxNzQ2OTk3NDI1fSJ9.4iPIZo8ZJ0Li8seIgXHNRvDGtIg0cMd90sob7r_HSLM
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 11 May 2025 21:03:45 GMT
content-type: application/javascript
expires: Sun, 11 May 2025 21:51:45 GMT
cache-control: public
vary: accept-encoding
x-frame-options: DENY
x-content-type-options: nosniff
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=PjljsmM2DOgir2uNtBUqDni0e%2F5Fv4ImCRyc5e%2B7ibeuxhQJvtAWzyeJiuooU4Za9k%2BvMcv3qQeh64E1IGF3JMzaQhv4qY22k28fQ15ZD375dOCqLyTONylO%2FAFI7c4NM9U%3D"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
content-encoding: br
server: cloudflare
cf-ray: 93e49ff71cbd56b1-OSL
GET fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL GET fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
Requested by https://www.youtube.com/embed/fEVQ_8DUpm4
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint15:8B:D4:EA:7E:CB:34:1B:6F:2E:20:9E:39:44:7A:D6:D7:30:26:AB
ValidityMon, 21 Apr 2025 08:41:49 GMT - Mon, 14 Jul 2025 08:41:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 May 2025 17:58:58 GMT
expires: Fri, 08 May 2026 17:58:58 GMT
cache-control: public, max-age=31536000
age: 270288
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET maps.googleapis.com/maps-api-v3/api/js/60/12/intl/ru_ALL/util.js
200 OK 328 kB URL GET maps.googleapis.com/maps-api-v3/api/js/60/12/intl/ru_ALL/util.js
IP
Requested by https://www.google.com/maps/embed?pb=!1m14!1m12!1m3!1d7280.498916531502!2d12.274654411077492!3d45.27572475576178!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!5e0!3m2!1sru!2sit!4v1718121686840!5m2!1sru!2sit
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7A:29:E6:A8:BE:59:2C:AE:82:2D:CA:8E:15:89:41:BE:EC:D2:0D:EA
ValidityMon, 21 Apr 2025 08:41:49 GMT - Mon, 14 Jul 2025 08:41:48 GMT
File type JavaScript source, ASCII text, with very long lines (560)
Size 328 kB (328337 bytes)
Hash 7bc506e7210651f3eaf4da17184e63f9
0218919d8f150e5cb495979cdbc36bc1dcf451f0
56890cb047323972730880e54c1a46b442062248fca06724daa7a506457f7ff4
GET /maps-api-v3/api/js/60/12/intl/ru_ALL/util.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
timing-allow-origin: *
content-length: 74516
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 May 2025 19:16:14 GMT
expires: Thu, 07 May 2026 19:16:14 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 May 2025 17:43:41 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 352053
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET i.ytimg.com/vi_webp/fEVQ_8DUpm4/maxresdefault.webp
200 OK 82 kB URL GET i.ytimg.com/vi_webp/fEVQ_8DUpm4/maxresdefault.webp
IP
Requested by https://www.youtube.com/embed/fEVQ_8DUpm4
Certificate IssuerGoogle Trust Services
Subjectedgestatic.com
Fingerprint85:1E:F2:69:7B:3A:E9:6C:31:3C:A1:95:86:9A:D3:FB:C3:09:0F:E8
ValidityMon, 21 Apr 2025 08:40:41 GMT - Mon, 14 Jul 2025 08:40:40 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp
Hash 3fc017b6c509e7b7c42fceae1185c543
557cfd56dc11666d257b6cdfe9a4bd014f122b91
24f73690eb14890e0f92deb88fb57ca29866c39272a497c2fb5e5e977f234cc7
GET /vi_webp/fEVQ_8DUpm4/maxresdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 81532
date: Sun, 11 May 2025 21:03:47 GMT
expires: Sun, 11 May 2025 23:03:47 GMT
cache-control: public, max-age=7200
etag: "1560366890"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.youtube.com/s/player/ab11fe69/player_ias.vflset/en_US/embed.js
200 OK 34 kB URL GET www.youtube.com/s/player/ab11fe69/player_ias.vflset/en_US/embed.js
IP
Requested by https://www.youtube.com/embed/fEVQ_8DUpm4
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint2F:BC:E9:F2:13:41:F1:3E:34:53:D6:F4:E9:17:8E:40:10:82:D1:3E
ValidityMon, 21 Apr 2025 08:40:42 GMT - Mon, 14 Jul 2025 08:40:41 GMT
File type JavaScript source, ASCII text, with very long lines (3391)
Hash e0812d9bd10830bd9de99c73e8bcd081
1c6c46a0509e31030f4fee7ad22f2907d82ddd61
dfe6077a114893c1a76be83eaf9b80b5fbb025676c68b5d8839772ccb1129f63
GET /s/player/ab11fe69/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/fEVQ_8DUpm4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 9537
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 May 2025 10:54:48 GMT
expires: Sat, 09 May 2026 10:54:48 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 May 2025 04:14:24 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 209338
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET maps.googleapis.com/maps-api-v3/api/js/60/12/intl/ru_ALL/common.js
200 OK 122 kB URL GET maps.googleapis.com/maps-api-v3/api/js/60/12/intl/ru_ALL/common.js
IP
Requested by https://www.google.com/maps/embed?pb=!1m14!1m12!1m3!1d7280.498916531502!2d12.274654411077492!3d45.27572475576178!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!5e0!3m2!1sru!2sit!4v1718121686840!5m2!1sru!2sit
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7A:29:E6:A8:BE:59:2C:AE:82:2D:CA:8E:15:89:41:BE:EC:D2:0D:EA
ValidityMon, 21 Apr 2025 08:41:49 GMT - Mon, 14 Jul 2025 08:41:48 GMT
File type JavaScript source, ASCII text, with very long lines (1877)
Size 122 kB (122509 bytes)
Hash 1389a56d0fc1d1c3faa580f6c594484c
1dbb3ba109b1f8e6b4bdc43c5a9b65ab86606620
bf02aadde98d527b8a3320af664490837e3bdaac616e4bac7bba75d32ecc6817
GET /maps-api-v3/api/js/60/12/intl/ru_ALL/common.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
timing-allow-origin: *
content-length: 36057
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 May 2025 13:46:53 GMT
expires: Sat, 09 May 2026 13:46:53 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 May 2025 17:43:41 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 199014
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.youtube.com/s/player/ab11fe69/player_ias.vflset/en_US/remote.js
200 OK 124 kB URL GET www.youtube.com/s/player/ab11fe69/player_ias.vflset/en_US/remote.js
IP
Requested by https://www.youtube.com/embed/fEVQ_8DUpm4
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint2F:BC:E9:F2:13:41:F1:3E:34:53:D6:F4:E9:17:8E:40:10:82:D1:3E
ValidityMon, 21 Apr 2025 08:40:42 GMT - Mon, 14 Jul 2025 08:40:41 GMT
File type JavaScript source, ASCII text, with very long lines (543)
Size 124 kB (124204 bytes)
Hash eddc9f7e6cfdaba8d3d5ffa3aedac7bb
bacd0e96ed030ace426cdcc53f2992f7c75505a6
7310e03a26c4953dc23521b3e9ecafed0e9e1440cb6fc2dc815fae08befb04b6
GET /s/player/ab11fe69/player_ias.vflset/en_US/remote.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/fEVQ_8DUpm4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 35976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 May 2025 19:17:04 GMT
expires: Fri, 08 May 2026 19:17:04 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 May 2025 04:14:24 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 265603
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.youtube.com/s/player/ab11fe69/www-player.css
200 OK 452 kB URL GET www.youtube.com/s/player/ab11fe69/www-player.css
IP
Requested by https://www.youtube.com/embed/fEVQ_8DUpm4
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint2F:BC:E9:F2:13:41:F1:3E:34:53:D6:F4:E9:17:8E:40:10:82:D1:3E
ValidityMon, 21 Apr 2025 08:40:42 GMT - Mon, 14 Jul 2025 08:40:41 GMT
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size 452 kB (452029 bytes)
Hash 4dff6571ba627eca824e7f41d1ab2c75
3279f5b4524c4abb7e475201083a21da2ea62dbb
c8045d11124f7a241ff6f7c70de53787b4b069100f876a7d7d3fe0a195039359
GET /s/player/ab11fe69/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/fEVQ_8DUpm4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 54590
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 10 May 2025 20:31:42 GMT
expires: Sun, 10 May 2026 20:31:42 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 May 2025 04:14:24 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 88324
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL GET fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://www.youtube.com/embed/fEVQ_8DUpm4
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint15:8B:D4:EA:7E:CB:34:1B:6F:2E:20:9E:39:44:7A:D6:D7:30:26:AB
ValidityMon, 21 Apr 2025 08:41:49 GMT - Mon, 14 Jul 2025 08:41:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 May 2025 12:58:05 GMT
expires: Tue, 05 May 2026 12:58:05 GMT
cache-control: public, max-age=31536000
age: 547541
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
200 OK 3 B URL GET maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP
Requested by https://www.google.com/maps/embed?pb=!1m14!1m12!1m3!1d7280.498916531502!2d12.274654411077492!3d45.27572475576178!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!5e0!3m2!1sru!2sit!4v1718121686840!5m2!1sru!2sit
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7A:29:E6:A8:BE:59:2C:AE:82:2D:CA:8E:15:89:41:BE:EC:D2:0D:EA
ValidityMon, 21 Apr 2025 08:41:49 GMT - Mon, 14 Jul 2025 08:41:48 GMT
Hash 8a80554c91d9fca8acb82f023de02f11
5f36b2ea290645ee34d943220a14b54ee5ea5be5
ca3d163bab055381827226140568f3bef7eaac187cebd76878e0b63e9e442356
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 11 May 2025 21:03:47 GMT
server: scaffolding on HTTPServer2
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.google.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET maps.googleapis.com/maps-api-v3/api/js/60/12/intl/ru_ALL/overlay.js
200 OK 3.5 kB URL GET maps.googleapis.com/maps-api-v3/api/js/60/12/intl/ru_ALL/overlay.js
IP
Requested by https://www.google.com/maps/embed?pb=!1m14!1m12!1m3!1d7280.498916531502!2d12.274654411077492!3d45.27572475576178!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!5e0!3m2!1sru!2sit!4v1718121686840!5m2!1sru!2sit
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7A:29:E6:A8:BE:59:2C:AE:82:2D:CA:8E:15:89:41:BE:EC:D2:0D:EA
ValidityMon, 21 Apr 2025 08:41:49 GMT - Mon, 14 Jul 2025 08:41:48 GMT
File type ASCII text, with very long lines (608)
Hash baf359e85df53ed80d0b1fcded78d052
1e2375089f8d6a94f50cb519b54e48523acb9a69
5f3c5c21306d93f3377b2c64e70b89a7d614fe444740cefbadaa6c67d5634067
GET /maps-api-v3/api/js/60/12/intl/ru_ALL/overlay.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
timing-allow-origin: *
content-length: 1265
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 May 2025 22:56:18 GMT
expires: Fri, 08 May 2026 22:56:18 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 May 2025 17:43:41 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 252449
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.google.com/maps/embed?pb=!1m14!1m12!1m3!1d7280.498916531502!2d12.274654411077492!3d45.27572475576178!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!5e0!3m2!1sru!2sit!4v1718121686840!5m2!1sru!2sit
200 OK 1.4 kB URL GET www.google.com/maps/embed?pb=!1m14!1m12!1m3!1d7280.498916531502!2d12.274654411077492!3d45.27572475576178!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!5e0!3m2!1sru!2sit!4v1718121686840!5m2!1sru!2sit
IP
Certificate IssuerGoogle Trust Services
Subjectwww.google.com
FingerprintC0:9B:21:A5:10:36:7E:DC:25:8D:0B:AB:4B:D9:D7:AD:92:06:96:49
ValidityMon, 21 Apr 2025 08:42:35 GMT - Mon, 14 Jul 2025 08:42:34 GMT
File type HTML document, ASCII text, with very long lines (399)
Hash 9eca6ff11e2c3d13b641ff130209586f
618a7ea8dcfcd282acf0a659806a14bd37d0c964
edffd346c7893a7434d030bcbc589b5733d809299bcb72b49794c6123b36c87d
GET /maps/embed?pb=!1m14!1m12!1m3!1d7280.498916531502!2d12.274654411077492!3d45.27572475576178!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!5e0!3m2!1sru!2sit!4v1718121686840!5m2!1sru!2sit HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://thebalan-er.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-y7DKAaKm-zhE8wsebbwieQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
cache-control: no-cache, must-revalidate
expires: Fri, 01 Jan 1990 00:00:00 GMT
x-robots-tag: noindex,nofollow
pragma: no-cache
content-type: text/html; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 11 May 2025 21:03:45 GMT
server: scaffolding on HTTPServer2
content-length: 671
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.youtube.com/s/player/ab11fe69/player_ias.vflset/en_US/base.js
200 OK 2.5 MB URL GET www.youtube.com/s/player/ab11fe69/player_ias.vflset/en_US/base.js
IP
Requested by https://www.youtube.com/embed/fEVQ_8DUpm4
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint2F:BC:E9:F2:13:41:F1:3E:34:53:D6:F4:E9:17:8E:40:10:82:D1:3E
ValidityMon, 21 Apr 2025 08:40:42 GMT - Mon, 14 Jul 2025 08:40:41 GMT
File type JavaScript source, ASCII text, with very long lines (928)
Size 2.5 MB (2533382 bytes)
Hash 0698613d71f3faa60c112e766056ed0f
6152b1f5a8196cc06c3d1abfdd6d60431511b3de
453cd3af8cb1a3406952fca52de53f15d07b43009d92d7098be674b341041027
GET /s/player/ab11fe69/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/fEVQ_8DUpm4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 656904
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 10 May 2025 18:12:19 GMT
expires: Sun, 10 May 2026 18:12:19 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 May 2025 04:14:24 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 96687
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET maps.gstatic.com/maps-api-v3/embed/js/60/12/intl/ru_ALL/init_embed.js
200 OK 247 kB URL GET maps.gstatic.com/maps-api-v3/embed/js/60/12/intl/ru_ALL/init_embed.js
IP
Requested by https://www.google.com/maps/embed?pb=!1m14!1m12!1m3!1d7280.498916531502!2d12.274654411077492!3d45.27572475576178!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!5e0!3m2!1sru!2sit!4v1718121686840!5m2!1sru!2sit
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint15:8B:D4:EA:7E:CB:34:1B:6F:2E:20:9E:39:44:7A:D6:D7:30:26:AB
ValidityMon, 21 Apr 2025 08:41:49 GMT - Mon, 14 Jul 2025 08:41:48 GMT
File type JavaScript source, ASCII text, with very long lines (3267)
Size 247 kB (246847 bytes)
Hash f63d5170427093c21b82952455455663
6e9afc0afea6d5faad99d4b7f3f05f7d01094982
4067917fb93aba91134d8d513e36864f1841a7be3572339acc6ae34173c042ad
GET /maps-api-v3/embed/js/60/12/intl/ru_ALL/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
timing-allow-origin: *
content-length: 64728
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 May 2025 19:25:49 GMT
expires: Thu, 07 May 2026 19:25:49 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 May 2025 17:43:10 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 351477
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET maps.googleapis.com/maps/api/js/StaticMapService.GetMapImage?1m2&1i4480024&2i3008259&2e1&3u15&4m2&1u600&2u450&5m6&1e0&5sru&6sit&10b1&12b1&14i47083502&8e1&client=google-maps-embed&token=61845
200 OK 144 B URL GET maps.googleapis.com/maps/api/js/StaticMapService.GetMapImage?1m2&1i4480024&2i3008259&2e1&3u15&4m2&1u600&2u450&5m6&1e0&5sru&6sit&10b1&12b1&14i47083502&8e1&client=google-maps-embed&token=61845
IP
Requested by https://www.google.com/maps/embed?pb=!1m14!1m12!1m3!1d7280.498916531502!2d12.274654411077492!3d45.27572475576178!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!5e0!3m2!1sru!2sit!4v1718121686840!5m2!1sru!2sit
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7A:29:E6:A8:BE:59:2C:AE:82:2D:CA:8E:15:89:41:BE:EC:D2:0D:EA
ValidityMon, 21 Apr 2025 08:41:49 GMT - Mon, 14 Jul 2025 08:41:48 GMT
File type PNG image data, 600 x 450, 1-bit colormap, non-interlaced
Hash 24a171bc09b7244d797dc3d3f023e1c0
e6e9da8d918edc44c6125e267b68a461a8d49760
8cbade21329d2cf936d4fdc324c3571cff394d16009b3fe62f7a51611985cd58
GET /maps/api/js/StaticMapService.GetMapImage?1m2&1i4480024&2i3008259&2e1&3u15&4m2&1u600&2u450&5m6&1e0&5sru&6sit&10b1&12b1&14i47083502&8e1&client=google-maps-embed&token=61845 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: image/png
date: Sun, 11 May 2025 21:03:47 GMT
expires: Mon, 12 May 2025 21:03:47 GMT
cache-control: public, max-age=86400
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/msaispmnec:787:0
cross-origin-opener-policy-report-only: same-origin; report-to=msaispmnec:787:0
report-to: {"group":"msaispmnec:787:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/msaispmnec:787:0"}],}
server: scaffolding on HTTPServer2
content-length: 144
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=18
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
OPTIONS jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 0 B URL OPTIONS jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
Requested by https://www.youtube.com/embed/fEVQ_8DUpm4
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7A:29:E6:A8:BE:59:2C:AE:82:2D:CA:8E:15:89:41:BE:EC:D2:0D:EA
ValidityMon, 21 Apr 2025 08:41:49 GMT - Mon, 14 Jul 2025 08:41:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sun, 11 May 2025 21:03:47 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.youtube.com/generate_204?aRtC3w
204 No Content 0 B URL GET www.youtube.com/generate_204?aRtC3w
IP
Requested by https://www.youtube.com/embed/fEVQ_8DUpm4
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint2F:BC:E9:F2:13:41:F1:3E:34:53:D6:F4:E9:17:8E:40:10:82:D1:3E
ValidityMon, 21 Apr 2025 08:40:42 GMT - Mon, 14 Jul 2025 08:40:41 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?aRtC3w HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/fEVQ_8DUpm4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Sun, 11 May 2025 21:03:48 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
OPTIONS jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 0 B URL OPTIONS jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
Requested by https://www.youtube.com/embed/fEVQ_8DUpm4
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7A:29:E6:A8:BE:59:2C:AE:82:2D:CA:8E:15:89:41:BE:EC:D2:0D:EA
ValidityMon, 21 Apr 2025 08:41:49 GMT - Mon, 14 Jul 2025 08:41:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sun, 11 May 2025 21:03:48 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
POST www.youtube.com/youtubei/v1/log_event?alt=json
200 OK 28 B URL POST www.youtube.com/youtubei/v1/log_event?alt=json
IP
Requested by https://www.youtube.com/embed/fEVQ_8DUpm4
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint2F:BC:E9:F2:13:41:F1:3E:34:53:D6:F4:E9:17:8E:40:10:82:D1:3E
ValidityMon, 21 Apr 2025 08:40:42 GMT - Mon, 14 Jul 2025 08:40:41 GMT
Hash 5e1fa6fd9abd549a576f3f24b1d3c8d4
d5335d7f7d33be6a0b663f03b2df4df2521c4a87
d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1746997430546
Content-Type: application/json
X-Goog-Visitor-Id: CgstRS00Nkd2eXV3ayixoYTBBjInCgJOTxIhEh0SGwsMDg8QERITFBUWFxgZGhscHR4fICEiIyQlJiBs
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20250506.21.00
X-YouTube-Device: cbr=Chrome&cbrver=138.0.0.0&ceng=WebKit&cengver=537.36&cos=Windows&cosver=10.0&cplatform=DESKTOP
X-YouTube-Page-CL: 755620433
X-YouTube-Page-Label: youtube.player.web_20250506_21_RC00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1746997426446&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1024%2C576&vis=1&wgl=true&ca_type=image
Content-Length: 12219
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/fEVQ_8DUpm4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Sun, 11 May 2025 21:03:50 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.youtube.com/embed/fEVQ_8DUpm4
200 OK 114 kB URL GET www.youtube.com/embed/fEVQ_8DUpm4
IP
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint2F:BC:E9:F2:13:41:F1:3E:34:53:D6:F4:E9:17:8E:40:10:82:D1:3E
ValidityMon, 21 Apr 2025 08:40:42 GMT - Mon, 14 Jul 2025 08:40:41 GMT
File type HTML document, ASCII text, with very long lines (57984)
Size 114 kB (114209 bytes)
Hash e65c59f3371f6e162a0f0966f9d4fe98
5ca59643026eb2884fd2439e45d3afb9039e9719
30c086641531c809f7f91d90b3c6e52e8deceee6897c25ae219096527483d545
GET /embed/fEVQ_8DUpm4 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://thebalan-er.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 11 May 2025 21:03:45 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
content-security-policy: require-trusted-types-for 'script'
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
vary: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
origin-trial: ApTXX1w2dkJZuuxlV9csQYg+9ZVXekg+mOu8mS9vb7/V2oeMLKqGC8blgR6ech+eqbhGAgLKPthyai7z89MdTAgAAACLeyJvcmlnaW4iOiJodHRwczovL3d3dy55b3V0dWJlLmNvbTo0NDMiLCJmZWF0dXJlIjoiRG9jdW1lbnRQb2xpY3lJbmNsdWRlSlNDYWxsU3RhY2tzSW5DcmFzaFJlcG9ydHMiLCJleHBpcnkiOjE3NDk1MTM2MDAsImlzU3ViZG9tYWluIjp0cnVlfQ==, AmhMBR6zCLzDDxpW+HfpP67BqwIknWnyMOXOQGfzYswFmJe+fgaI6XZgAzcxOrzNtP7hEDsOo1jdjFnVr2IdxQ4AAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=j5FZkQONyAU; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none; Partitioned
__Secure-ROLLOUT_TOKEN=CNLE8fLRjd-SdRDKw_jHqJyNAxjKw_jHqJyNAw%3D%3D; Domain=youtube.com; Expires=Fri, 07-Nov-2025 21:03:45 GMT; Path=/; Secure; HttpOnly; SameSite=none; Partitioned
VISITOR_INFO1_LIVE=-E-46Gvyuwk; Domain=.youtube.com; Expires=Fri, 07-Nov-2025 21:03:45 GMT; Path=/; Secure; HttpOnly; SameSite=none; Partitioned
VISITOR_PRIVACY_METADATA=CgJOTxIhEh0SGwsMDg8QERITFBUWFxgZGhscHR4fICEiIyQlJiBs; Domain=.youtube.com; Expires=Fri, 07-Nov-2025 21:03:45 GMT; Path=/; Secure; HttpOnly; SameSite=none; Partitioned
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET thebalan-er.com/style.css
200 OK 2.6 kB URL GET thebalan-er.com/style.css
IP
Certificate IssuerGoogle Trust Services
Subjectthebalan-er.com
FingerprintC3:1E:10:BD:DF:1D:87:F4:12:BD:70:E6:09:3E:3E:42:26:C3:79:55
ValidityMon, 14 Apr 2025 20:11:20 GMT - Sun, 13 Jul 2025 21:06:47 GMT
Hash 79ea0a8bdbcb1b9e4971226080fc3fe4
b6a88cc1b55e403e345ce90251636021800867e7
74d1aa870c8e34ad3e7d258ee1356d6c2eda372ac8852ddcbdb9624e65e1ef09
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /style.css HTTP/1.1
Host: thebalan-er.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://thebalan-er.com/
Cookie: PHPSESSID=3c5mnl605h5r533bjpe68jut4j; _subid=3p5qdu923rdc9; 6b1cd=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjMyNFwiOjE3NDY5OTc0MjV9LFwiY2FtcGFpZ25zXCI6e1wiNzRcIjoxNzQ2OTk3NDI1fSxcInRpbWVcIjoxNzQ2OTk3NDI1fSJ9.4iPIZo8ZJ0Li8seIgXHNRvDGtIg0cMd90sob7r_HSLM
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 11 May 2025 21:03:45 GMT
content-type: text/css
server: cloudflare
last-modified: Mon, 14 Apr 2025 20:40:21 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
cache-control: max-age=14400
cf-cache-status: MISS
priority: u=2,i=?0
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=jExzIQSu4Fp8jdOWJtNgSJ8fwVbBidYN6T03cSSC1v0Ii6rilZoOYzEgOdR0mhQtyV25iR7ooD3yVkVRCnnwkpJNzhNiaTv%2Bay1o6TrGHp2mmIIGDelPry3d3C2sXKyEfcw%3D"}]}
etag: W/"67fd72b5-a0d"
content-encoding: br
cf-ray: 93e49ff71cb856b1-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET maps.googleapis.com/maps-api-v3/api/js/60/12/intl/ru_ALL/search.js
200 OK 2.6 kB URL GET maps.googleapis.com/maps-api-v3/api/js/60/12/intl/ru_ALL/search.js
IP
Requested by https://www.google.com/maps/embed?pb=!1m14!1m12!1m3!1d7280.498916531502!2d12.274654411077492!3d45.27572475576178!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!5e0!3m2!1sru!2sit!4v1718121686840!5m2!1sru!2sit
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7A:29:E6:A8:BE:59:2C:AE:82:2D:CA:8E:15:89:41:BE:EC:D2:0D:EA
ValidityMon, 21 Apr 2025 08:41:49 GMT - Mon, 14 Jul 2025 08:41:48 GMT
File type ASCII text, with very long lines (851)
Hash e79661e32f66becb2f93e3e142468262
56db3577f6c93921826edbf8a1bcb97003db4d38
0854259186bcaae6d39b8716d8e641c3690b6d0d272a438d6474d2893fa67d6c
GET /maps-api-v3/api/js/60/12/intl/ru_ALL/search.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
timing-allow-origin: *
content-length: 1120
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 May 2025 19:16:53 GMT
expires: Thu, 07 May 2026 19:16:53 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 May 2025 17:43:41 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 352013
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET yt3.ggpht.com/GVmh1GSjuGlek5PaPsicSX2ctzQJ6BPNp92d0FHB2XjyZVaQEoxWIJQGinDsc_yDoHQ4Gla9vdY=s68-c-k-c0x00ffffff-no-rj
200 OK 2.8 kB URL GET yt3.ggpht.com/GVmh1GSjuGlek5PaPsicSX2ctzQJ6BPNp92d0FHB2XjyZVaQEoxWIJQGinDsc_yDoHQ4Gla9vdY=s68-c-k-c0x00ffffff-no-rj
IP
Requested by https://www.youtube.com/embed/fEVQ_8DUpm4
Certificate IssuerGoogle Trust Services
Subject*.googleusercontent.com
Fingerprint88:06:54:F9:FF:71:9C:F6:50:7F:58:EA:5C:98:77:FF:88:95:B5:94
ValidityMon, 21 Apr 2025 08:41:44 GMT - Mon, 14 Jul 2025 08:41:43 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3
Hash 2508ef6406d3b32979663820732c67c7
c1d42b33de2fbd2d49da0e31de64222d8ad129f7
09bc0faa8ae08e931e77a6c169ae214cf71e654f53d10e461922ae708a6e0945
GET /GVmh1GSjuGlek5PaPsicSX2ctzQJ6BPNp92d0FHB2XjyZVaQEoxWIJQGinDsc_yDoHQ4Gla9vdY=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
x-content-type-options: nosniff
server: fife
content-length: 2804
x-xss-protection: 0
date: Sun, 11 May 2025 18:35:38 GMT
expires: Mon, 12 May 2025 18:35:38 GMT
cache-control: public, max-age=86400, no-transform
age: 8890
etag: "v1"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.youtube.com/s/player/ab11fe69/www-embed-player.vflset/www-embed-player.js
200 OK 353 kB URL GET www.youtube.com/s/player/ab11fe69/www-embed-player.vflset/www-embed-player.js
IP
Requested by https://www.youtube.com/embed/fEVQ_8DUpm4
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint2F:BC:E9:F2:13:41:F1:3E:34:53:D6:F4:E9:17:8E:40:10:82:D1:3E
ValidityMon, 21 Apr 2025 08:40:42 GMT - Mon, 14 Jul 2025 08:40:41 GMT
File type JavaScript source, ASCII text, with very long lines (1179)
Size 353 kB (353031 bytes)
Hash 30b2d7bb96461cf4ce7ff6699789102a
eaf5878caa24d46b910786f50c47ecf80585739a
86494b9ed2f3391184713576eecc41552cd52974eb20fc4b5f672d140f7a6e7b
GET /s/player/ab11fe69/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/fEVQ_8DUpm4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 104772
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 11 May 2025 13:14:04 GMT
expires: Mon, 11 May 2026 13:14:04 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 May 2025 04:14:24 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 28182
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.google.com/js/th/C7ca_iEteRiA1IJ44IkEPBSOTBt5k8gdXoH4tV9dwsc.js
200 OK 58 kB URL GET www.google.com/js/th/C7ca_iEteRiA1IJ44IkEPBSOTBt5k8gdXoH4tV9dwsc.js
IP
Requested by https://www.youtube.com/embed/fEVQ_8DUpm4
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint2F:BC:E9:F2:13:41:F1:3E:34:53:D6:F4:E9:17:8E:40:10:82:D1:3E
ValidityMon, 21 Apr 2025 08:40:42 GMT - Mon, 14 Jul 2025 08:40:41 GMT
File type JavaScript source, ASCII text, with very long lines (57168)
Hash b8119d36d5ea35323367687945716edf
2cfbb5098bc9f23d6503bb705c9b520286bf7734
0bb71afe212d791880d48278e089043c148e4c1b7993c81d5e81f8b55f5dc2c7
GET /js/th/C7ca_iEteRiA1IJ44IkEPBSOTBt5k8gdXoH4tV9dwsc.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 22113
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 May 2025 10:45:47 GMT
expires: Fri, 08 May 2026 10:45:47 GMT
cache-control: public, max-age=31536000
age: 296280
last-modified: Thu, 24 Apr 2025 15:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
104.21.67.38
142.250.74.99