| GET cdn.jsdelivr.net/npm/babel-regenerator-runtime@6.5.0/runtime.js |  151.101.129.229 | 200 OK | 6.6 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/babel-regenerator-runtime@6.5.0/runtime.js IP151.101.129.229:443
Requested byhttps://lootdest.org/s?S5xnzfE7 CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint6C:45:F5:9E:D3:37:60:0B:9C:A8:28:29:A4:E6:41:33:BB:2E:76:5C ValidityTue, 30 Jul 2024 15:36:05 GMT - Sun, 31 Aug 2025 15:36:04 GMT
File typeJavaScript source, ASCII text Hash4f6d0ac2c43a81b1890d6442a2a72494 5cec1237fc2cd482064efb78c55096560ffd4419 b9258540f48bff83be38e2952dfa01f6bb5c6ccbc13baccf3e26995299f59d07
GET /npm/babel-regenerator-runtime@6.5.0/runtime.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lootdest.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 6.5.0
x-jsd-version-type: version
etag: W/"53cd-XOwSN/ws1IIGTvt4xVCWVg/9RBk"
content-encoding: br
accept-ranges: bytes
date: Tue, 28 Jan 2025 03:21:01 GMT
age: 4749972
x-served-by: cache-fra-eddf8230078-FRA, cache-hel1410031-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 6589
X-Firefox-Spdy: h2
|
|
| GET fonts.gstatic.com/s/play/v19/6aez4K2oVqwIvtU2Hw.woff2 | 142.250.74.163 | 200 OK | 18 kB |
URL GET HTTP/2fonts.gstatic.com/s/play/v19/6aez4K2oVqwIvtU2Hw.woff2 IP142.250.74.163:443
Requested byhttps://lootdest.org/s?S5xnzfE7 CertificateIssuerGoogle Trust Services Subject*.gstatic.com FingerprintD7:B9:19:BD:66:26:5B:B9:E6:FB:43:87:53:20:86:F1:38:BE:D8:1D ValidityMon, 06 Jan 2025 08:37:10 GMT - Mon, 31 Mar 2025 08:37:09 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 18088, version 1.0 Hashf4aa2d622725f1af4e132e2bbaeb47ae 20594962b8a024c0cec8d3b3fe8614bea75d5388 d0964aee1973c5818130723f3bf5b8e0b51bf775a5074949c91d815d91f2924f
GET /s/play/v19/6aez4K2oVqwIvtU2Hw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lootdest.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18088
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Jan 2025 10:24:03 GMT
expires: Fri, 23 Jan 2026 10:24:03 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 24 Aug 2023 20:26:25 GMT
content-type: font/woff2
age: 406618
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| GET fonts.gstatic.com/s/play/v19/6ae84K2oVqwItm4TCpAy2g.woff2 | 142.250.74.163 | 200 OK | 18 kB |
URL GET HTTP/2fonts.gstatic.com/s/play/v19/6ae84K2oVqwItm4TCpAy2g.woff2 IP142.250.74.163:443
Requested byhttps://lootdest.org/s?S5xnzfE7 CertificateIssuerGoogle Trust Services Subject*.gstatic.com FingerprintD7:B9:19:BD:66:26:5B:B9:E6:FB:43:87:53:20:86:F1:38:BE:D8:1D ValidityMon, 06 Jan 2025 08:37:10 GMT - Mon, 31 Mar 2025 08:37:09 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 18100, version 1.0 Hash2af0645d8798834a774f014332120c5d c1f9a794c35d75cd3196ec52e457467d33b2405b 42d25e75823f99564c199e3dc486ff8562ce77625ea50ee07385df687296f69f
GET /s/play/v19/6ae84K2oVqwItm4TCpAy2g.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lootdest.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18100
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Jan 2025 10:08:56 GMT
expires: Fri, 23 Jan 2026 10:08:56 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 24 Aug 2023 19:54:08 GMT
content-type: font/woff2
age: 407525
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| GET unpkg.com/detect-gpu@5.0.66/dist/detect-gpu.umd.js |  104.17.248.203 | 200 OK | 5.5 kB |
URL GET HTTP/2unpkg.com/detect-gpu@5.0.66/dist/detect-gpu.umd.js IP104.17.248.203:443
Requested byhttps://lootdest.org/s?S5xnzfE7 CertificateIssuerGoogle Trust Services Subjectunpkg.com FingerprintE4:F4:EA:7C:7F:E7:57:82:8B:55:44:32:FA:B8:5A:DB:88:CE:1D:D5 ValidityMon, 20 Jan 2025 17:18:45 GMT - Sun, 20 Apr 2025 18:18:43 GMT
File typeJavaScript source, ASCII text, with very long lines (9623) Hash7e8660711a26a5d719b85c7dc95f9d55 5c202b3823b3a0cfe72d561f302a3e64d562b57c ffb02110d2f458d864eef2f48044dfa84a666b1eda83ca6a187d6f97fdb91972
GET /detect-gpu@5.0.66/dist/detect-gpu.umd.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lootdest.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Jan 2025 03:21:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
content-encoding: br
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: "25c3-XCArOCOzoM/nLVYfMCo+ZNVitXw"
via: 1.1 fly.io
fly-request-id: 01JJG2GGV7JG7TVKDGC2CFDG8N-arn
cf-cache-status: HIT
age: 180681
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 908dd99a1ddb56bd-OSL
X-Firefox-Spdy: h2
|
|
| GET d3sdfpysdncs72.cloudfront.net/?tid=1025367¶ms_only=1 | 54.230.241.36 | 200 OK | 437 B |
URL GET HTTP/2d3sdfpysdncs72.cloudfront.net/?tid=1025367¶ms_only=1 IP54.230.241.36:443
Requested byhttps://lootdest.org/s?S5xnzfE7 CertificateIssuerAmazon Subject*.cloudfront.net Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62 ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
File typeASCII text, with very long lines (721), with no line terminators Hashc437772828351b97e235acf556fca6ab 73616a21b7645e6d03ac466d8aedd969c4d9b9d7 2273802dd4e3bf9d508c113aca69caa6ca65b13a83a23f0c1664489d6e617be1
GET /?tid=1025367¶ms_only=1 HTTP/1.1
Host: d3sdfpysdncs72.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lootdest.org/
Origin: https://lootdest.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 437
date: Tue, 28 Jan 2025 03:21:02 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://lootdest.org
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Miss from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: K4DJYJCP8Wi2CGjhdqc8TY4kogKgQzDumYsDWYkb6vUALgFI14SwEQ==
X-Firefox-Spdy: h2
|
|
| GET pagead2.googlesyndication.com/pagead/js/adsbygoogle.js | 142.250.74.130 | 200 OK | 53 kB |
URL GET HTTP/2pagead2.googlesyndication.com/pagead/js/adsbygoogle.js IP142.250.74.130:443
Requested byhttps://lootdest.org/s?S5xnzfE7 CertificateIssuerGoogle Trust Services Subject*.g.doubleclick.net FingerprintB6:03:99:48:BB:7C:64:2A:01:8F:DB:93:22:E9:6B:6E:15:D5:EF:9D ValidityMon, 06 Jan 2025 08:36:08 GMT - Mon, 31 Mar 2025 08:36:07 GMT
File typeJavaScript source, ASCII text, with very long lines (4055) Hashd7b7513c2a59fb3dca9dd1b10fc0af99 40b2cc402c389d0b9174166e0d5b95f88612df1c 30d22547e944bb35afffa7d38502242d44a75b60907b624a1eff94c903b4c89b
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lootdest.org/
Origin: https://lootdest.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
link: <https://googleads.g.doubleclick.net>; rel="preconnect"; crossorigin
vary: Accept-Encoding
date: Tue, 28 Jan 2025 03:21:02 GMT
expires: Tue, 28 Jan 2025 03:21:02 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 7300955148329519099
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 53413
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| POST nerventualken.com/tc | 188.114.96.1 | 200 OK | 0 B |
IP188.114.96.1:443
Requested byhttps://lootdest.org/s?S5xnzfE7 CertificateIssuerGoogle Trust Services Subjectnerventualken.com Fingerprint36:62:97:08:1C:E1:33:6F:DC:75:02:C6:80:89:90:E2:4B:86:55:63 ValiditySun, 26 Jan 2025 20:27:28 GMT - Sat, 26 Apr 2025 21:24:53 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /tc HTTP/1.1
Host: nerventualken.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://lootdest.org/
Origin: https://lootdest.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Jan 2025 03:21:02 GMT
content-type: application/json
content-length: 0
set-cookie: ci=787267729473676; Max-Age=86400; Secure; SameSite=None
access-control-allow-origin: https://lootdest.org
access-control-allow-headers: Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-methods: POST, GET, OPTIONS, HEAD
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2JBA8zwAOGs4hRYWf4Y7Cs%2BOSEBy7vVo4MimfyAU5vQHT%2FghUHSTCHO6w7nXg7qXhC0FZq53hNdsthSIiJmuPidTJr3Gh9JJdRBtQQlbjA7fhbcR28o81Vtu70LdWUfHyMsNew%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 908dd99e2f430b61-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1493&min_rtt=373&rtt_var=1444&sent=8&recv=11&lost=0&retrans=1&sent_bytes=3325&recv_bytes=1269&delivery_rate=2339256&cwnd=255&unsent_bytes=0&cid=31a24194dd37de26&ts=259&x=0"
X-Firefox-Spdy: h2
|
|
| GET fingerprinting36542.s3.us-east-1.amazonaws.com/fingerprint.js | 16.15.216.219 | 200 OK | 38 kB |
URL GET HTTP/1.1fingerprinting36542.s3.us-east-1.amazonaws.com/fingerprint.js IP16.15.216.219:443
Requested byhttps://lootdest.org/s?S5xnzfE7 CertificateIssuerAmazon Subjects3.amazonaws.com FingerprintA8:B7:0A:0A:76:F1:C8:90:EF:EA:E7:A8:8D:3D:31:36:31:27:2B:DF ValiditySat, 18 Jan 2025 00:00:00 GMT - Tue, 06 Jan 2026 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (38136), with no line terminators Hash9ac06ba71cc5803c7515b3e8c3a2854d 03ba918aad85dda720c6f46267eb4fba9103aac3 6cf24eed847d975853348f50d95b192ac37a4c49e96d8888af6dd2e15631a1fd
GET /fingerprint.js HTTP/1.1
Host: fingerprinting36542.s3.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lootdest.org
DNT: 1
Connection: keep-alive
Referer: https://lootdest.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: rxHjKRJ5HTHCV8F4gjSsohCZts1m8Kwjxl+bS5CmMR3fFWupf805YLALSEzplva7xgeYzxfup2wr5reLFz1ZOmCPsUx65PqbL36OujS1Bi0=
x-amz-request-id: 5N3Z0TMQNHCH9X9B
Date: Tue, 28 Jan 2025 03:21:03 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, PUT, POST, DELETE
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Mon, 09 Dec 2024 12:08:59 GMT
ETag: "9ac06ba71cc5803c7515b3e8c3a2854d"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/javascript
Content-Length: 38143
Server: AmazonS3
|
|
| GET fonts.googleapis.com/css2?family=Play:wght@400;700&display=swap | 142.250.74.138 | 200 OK | 7.0 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Play:wght@400;700&display=swap IP142.250.74.138:443
Requested byhttps://lootdest.org/s?S5xnzfE7 CertificateIssuerGoogle Trust Services Subjectupload.video.google.com Fingerprint60:72:A8:75:0D:97:04:67:31:64:42:C6:E8:8B:7B:1D:2B:F5:04:E9 ValidityMon, 06 Jan 2025 08:37:11 GMT - Mon, 31 Mar 2025 08:37:10 GMT
File typegzip compressed data, max compression Hash364ce6368f8fd79a0669cc1bb4dc6f9c 901567347ac62d1431fd9203850ca30f9fcade98 8c0b95f19aa0904331649aee45fa35004b709bd526260b5ecd8c821a744ade88
GET /css2?family=Play:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lootdest.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 28 Jan 2025 03:21:01 GMT
date: Tue, 28 Jan 2025 03:21:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| GET d1wzdj81h1hubn.cloudfront.net/icons/apps.png | 54.230.241.19 | 200 OK | 3.1 kB |
URL GET HTTP/2d1wzdj81h1hubn.cloudfront.net/icons/apps.png IP54.230.241.19:443
Requested byhttps://lootdest.org/s?S5xnzfE7 CertificateIssuerAmazon Subject*.cloudfront.net Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62 ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hashfe92fe3dee69ba5c6dc9ab4b1785c556 444c3bcb27bde9c050a4bd51bf35d511951a3077 2c07bad8f7225591d84faba9c558c4bff26e5acdac36f91f47a73796be04dbd0
GET /icons/apps.png HTTP/1.1
Host: d1wzdj81h1hubn.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lootdest.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 3115
last-modified: Tue, 07 Feb 2023 09:32:37 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Mon, 27 Jan 2025 13:05:50 GMT
etag: "fe92fe3dee69ba5c6dc9ab4b1785c556"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CkuYwqA6JkCA9KH53jMCyy_SHo4uwSbDDU_pSBzI0yaVCfTHdUy1bQ==
age: 62776
X-Firefox-Spdy: h2
|
|
| GET d1wzdj81h1hubn.cloudfront.net/85efcb828196eae5.png | 54.230.241.19 | 200 OK | 1.0 MB |
URL GET HTTP/2d1wzdj81h1hubn.cloudfront.net/85efcb828196eae5.png IP54.230.241.19:443
Requested byhttps://lootdest.org/s?S5xnzfE7 CertificateIssuerAmazon Subject*.cloudfront.net Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62 ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
File typePNG image data, 1536 x 1152, 8-bit/color RGBA, non-interlaced Size1.0 MB (1018161 bytes) Hash3043a54f2758ba14eb9768fc3ed4b13f e6083546353a5a6d76b9aa7e4b2867f6d6ea309e c533812a912738122a59a797821660898d7eacab5f29992f458a5700850dd783
GET /85efcb828196eae5.png HTTP/1.1
Host: d1wzdj81h1hubn.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lootdest.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 1018161
last-modified: Tue, 13 Feb 2024 09:46:14 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-timestamp: 2024-02-13T04:16:23.465732
accept-ranges: bytes
server: AmazonS3
date: Mon, 27 Jan 2025 14:16:38 GMT
etag: "3043a54f2758ba14eb9768fc3ed4b13f"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HCv0_VInjUXK52NtXRe3XDxwJ2IO_DHWrbB0YUQJtytIvYFrZQ46Zg==
age: 47068
X-Firefox-Spdy: h2
|
|
| GET www.youtube.com/s/player/37364e28/player_ias.vflset/en_US/embed.js | 216.58.207.238 | 200 OK | 9.5 kB |
URL GET HTTP/3www.youtube.com/s/player/37364e28/player_ias.vflset/en_US/embed.js IP216.58.207.238:443
Requested byhttps://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw CertificateIssuerGoogle Trust Services Subject*.google.com Fingerprint61:C4:B4:B6:BF:CA:AA:6D:F5:C1:9C:48:0E:3F:3E:F9:D9:C0:1C:7E ValidityMon, 06 Jan 2025 08:36:08 GMT - Mon, 31 Mar 2025 08:36:07 GMT
File typeJavaScript source, ASCII text, with very long lines (3391) Hash0bc4961cd91f3fb6ac86130139c703f1 813d04e7c437126a467f1a9befbd91322f954209 039e40c8d040c05df5b228dfd6833f378824fe913c01c1b258729105c330544f
GET /s/player/37364e28/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 9534
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Jan 2025 10:03:57 GMT
expires: Fri, 23 Jan 2026 10:03:57 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 22 Jan 2025 05:17:30 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 407828
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| GET www.youtube.com/s/player/37364e28/www-player.css | 216.58.207.238 | 200 OK | 51 kB |
URL GET HTTP/3www.youtube.com/s/player/37364e28/www-player.css IP216.58.207.238:443
Requested byhttps://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw CertificateIssuerGoogle Trust Services Subject*.google.com Fingerprint61:C4:B4:B6:BF:CA:AA:6D:F5:C1:9C:48:0E:3F:3E:F9:D9:C0:1C:7E ValidityMon, 06 Jan 2025 08:36:08 GMT - Mon, 31 Mar 2025 08:36:07 GMT
File typeUnicode text, UTF-8 text, with very long lines (65534), with no line terminators Hashc98d902918c25d5d9b3670839b5788be 597e33e90913f4864ddda8d05ce4c3e3481b28a7 e7b976d49070622ef24aff9f713ca07d58067d28047b5892178043a904e290ae
GET /s/player/37364e28/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 51053
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Jan 2025 10:01:03 GMT
expires: Fri, 23 Jan 2026 10:01:03 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 22 Jan 2025 05:17:30 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 408002
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| GET www.youtube.com/s/player/37364e28/www-embed-player.vflset/www-embed-player.js | 216.58.207.238 | 200 OK | 104 kB |
URL GET HTTP/3www.youtube.com/s/player/37364e28/www-embed-player.vflset/www-embed-player.js IP216.58.207.238:443
Requested byhttps://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw CertificateIssuerGoogle Trust Services Subject*.google.com Fingerprint61:C4:B4:B6:BF:CA:AA:6D:F5:C1:9C:48:0E:3F:3E:F9:D9:C0:1C:7E ValidityMon, 06 Jan 2025 08:36:08 GMT - Mon, 31 Mar 2025 08:36:07 GMT
File typeJavaScript source, ASCII text, with very long lines (1159) Size104 kB (103791 bytes) Hash280b74c1174da6ede1a0a4d6c68736cf f366258d9919f867390839a97db58549a4e391d6 0cc09e02afd760c4c713fb6866896f5b989c41a4670117397e250e22450f5d65
GET /s/player/37364e28/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 103791
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Jan 2025 10:06:40 GMT
expires: Fri, 23 Jan 2026 10:06:40 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 22 Jan 2025 05:17:30 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 407665
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| GET fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.163 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.163:443
Requested byhttps://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw CertificateIssuerGoogle Trust Services Subject*.gstatic.com FingerprintD7:B9:19:BD:66:26:5B:B9:E6:FB:43:87:53:20:86:F1:38:BE:D8:1D ValidityMon, 06 Jan 2025 08:37:10 GMT - Mon, 31 Mar 2025 08:37:09 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Jan 2025 10:07:38 GMT
expires: Fri, 23 Jan 2026 10:07:38 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 407607
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| GET fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 142.250.74.163 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP142.250.74.163:443
Requested byhttps://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw CertificateIssuerGoogle Trust Services Subject*.gstatic.com FingerprintD7:B9:19:BD:66:26:5B:B9:E6:FB:43:87:53:20:86:F1:38:BE:D8:1D ValidityMon, 06 Jan 2025 08:37:10 GMT - Mon, 31 Mar 2025 08:37:09 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Jan 2025 10:03:49 GMT
expires: Fri, 23 Jan 2026 10:03:49 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 407836
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| GET www.youtube.com/s/player/37364e28/player_ias.vflset/en_US/base.js | 216.58.207.238 | 200 OK | 657 kB |
URL GET HTTP/3www.youtube.com/s/player/37364e28/player_ias.vflset/en_US/base.js IP216.58.207.238:443
Requested byhttps://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw CertificateIssuerGoogle Trust Services Subject*.google.com Fingerprint61:C4:B4:B6:BF:CA:AA:6D:F5:C1:9C:48:0E:3F:3E:F9:D9:C0:1C:7E ValidityMon, 06 Jan 2025 08:36:08 GMT - Mon, 31 Mar 2025 08:36:07 GMT
File typeJavaScript source, ASCII text, with very long lines (568) Size657 kB (656819 bytes) Hash13ef508985f85761610131b510142267 5f181d912fa6cbef3f8acb6e7a7e6e9e5cb87bac f79a2411b5a3f00b11ce7a286dcb8165f26b715eb98813f44d803a20ba9a6dcf
GET /s/player/37364e28/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 656819
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Jan 2025 10:16:24 GMT
expires: Fri, 23 Jan 2026 10:16:24 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 22 Jan 2025 05:17:30 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 407081
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| POST jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.106 | 200 OK | 0 B |
URL POST HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.106:443
Requested byhttps://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw CertificateIssuerGoogle Trust Services Subjectupload.video.google.com Fingerprint60:72:A8:75:0D:97:04:67:31:64:42:C6:E8:8B:7B:1D:2B:F5:04:E9 ValidityMon, 06 Jan 2025 08:37:11 GMT - Mon, 31 Mar 2025 08:37:10 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 28 Jan 2025 03:21:06 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| POST jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.106 | 200 OK | 43 kB |
URL POST HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.106:443
Requested byhttps://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw CertificateIssuerGoogle Trust Services Subjectupload.video.google.com Fingerprint60:72:A8:75:0D:97:04:67:31:64:42:C6:E8:8B:7B:1D:2B:F5:04:E9 ValidityMon, 06 Jan 2025 08:37:11 GMT - Mon, 31 Mar 2025 08:37:10 GMT
Hash70fc1bce8ba966cdcbbfd8e6cd6d2dff 4d9bb881990133f859a3d049a17bbf44d4c8cd1d 4c31854b502901663362b0d4c78961bb60b2458d0a8e107ad18a5ad103384bf0
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 28 Jan 2025 03:21:06 GMT
server: ESF
content-length: 43142
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| GET i.ytimg.com/vi_webp/FUFcD0N1Opk/default.webp | 142.250.74.86 | 200 OK | 3.5 kB |
URL GET HTTP/2i.ytimg.com/vi_webp/FUFcD0N1Opk/default.webp IP142.250.74.86:443
Requested byhttps://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw CertificateIssuerGoogle Trust Services Subjectedgestatic.com Fingerprint55:33:E3:06:F2:36:D6:2C:33:6E:30:60:6A:3C:B3:04:36:6F:AB:F0 ValidityMon, 06 Jan 2025 08:36:07 GMT - Mon, 31 Mar 2025 08:36:06 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 120x90, Scaling: [none]x[none], YUV color, decoders should clamp Hashf49ff55f23e666647312d3b882330b8b b66b788c8f1da7b0e371b97127bf4bde0cb9b8af 6c625b26e18be3a7baa2556e1c0b9193005e2aaa40b3e3195e7bb2f3dc019a21
GET /vi_webp/FUFcD0N1Opk/default.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 3452
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Jan 2025 03:21:06 GMT
expires: Tue, 28 Jan 2025 03:26:06 GMT
cache-control: public, max-age=300
etag: "1737971204"
content-type: image/webp
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| GET unpkg.com/@lottiefiles/lottie-player@latest/dist/lottie-player.js | 104.17.248.203 | 302 Found | 35 kB |
URL GET HTTP/2unpkg.com/@lottiefiles/lottie-player@latest/dist/lottie-player.js IP104.17.248.203:443
Requested byhttps://lootdest.org/s?S5xnzfE7 CertificateIssuerGoogle Trust Services Subjectunpkg.com FingerprintE4:F4:EA:7C:7F:E7:57:82:8B:55:44:32:FA:B8:5A:DB:88:CE:1D:D5 ValidityMon, 20 Jan 2025 17:18:45 GMT - Sun, 20 Apr 2025 18:18:43 GMT
File typeASCII text, with no line terminators Hashd03cb5ba4fbb91dbef27fd161b8a7061 bc3d5e1a2672e5ab2783732739416d14b013755b 8858bdb522665ac44a2f4e4221ed78b06c01cf2ee19724d7e033b21c45157332
GET /@lottiefiles/lottie-player@latest/dist/lottie-player.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lootdest.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Tue, 28 Jan 2025 03:21:05 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /@lottiefiles/lottie-player@2.0.12/dist/lottie-player.js
vary: Accept, Accept-Encoding
content-encoding: br
via: 1.1 fly.io
fly-request-id: 01JJNEEQ7B3CHCMPHRRCP4X52Y-arn
cf-cache-status: HIT
age: 389
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 908dd9b11ca656bd-OSL
X-Firefox-Spdy: h2
|
|
| GET www.google.com/js/th/3RGKgc-G66oW8Y8T6bbaL4Xidv4xDu-5k7aOxlXHJqE.js | 142.250.74.100 | 200 OK | 21 kB |
URL GET HTTP/2www.google.com/js/th/3RGKgc-G66oW8Y8T6bbaL4Xidv4xDu-5k7aOxlXHJqE.js IP142.250.74.100:443
Requested byhttps://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw CertificateIssuerGoogle Trust Services Subjectwww.google.com Fingerprint53:F5:E3:47:F6:DC:80:83:14:A1:CE:39:7B:A1:98:61:74:03:86:E2 ValidityMon, 06 Jan 2025 08:37:56 GMT - Mon, 31 Mar 2025 08:37:55 GMT
File typeJavaScript source, ASCII text, with very long lines (53587) Hash6c23dc3860930cee31c1d118e0b5830e 5b5736b08914eef82f1b798877fa1ad968bb5b3a dd118a81cf86ebaa16f18f13e9b6da2f85e276fe310eefb993b68ec655c726a1
GET /js/th/3RGKgc-G66oW8Y8T6bbaL4Xidv4xDu-5k7aOxlXHJqE.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 20929
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Jan 2025 10:03:37 GMT
expires: Fri, 23 Jan 2026 10:03:37 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 06 Jan 2025 14:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 407850
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| GET yt3.ggpht.com/aY68Is8BDv3XkfV4_6pSX8ZYhIE-sxWM_JB35KTZdzx_6fu7qCKA-Y-xKTpVMn9PlS5IIaEJzw=s68-c-k-c0x00ffffff-no-rj | 142.250.74.97 | 200 OK | 3.8 kB |
URL GET HTTP/2yt3.ggpht.com/aY68Is8BDv3XkfV4_6pSX8ZYhIE-sxWM_JB35KTZdzx_6fu7qCKA-Y-xKTpVMn9PlS5IIaEJzw=s68-c-k-c0x00ffffff-no-rj IP142.250.74.97:443
Requested byhttps://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw CertificateIssuerGoogle Trust Services Subject*.googleusercontent.com FingerprintD2:15:13:77:74:22:58:D3:06:17:16:14:8F:CF:FF:DF:94:2F:1E:20 ValidityMon, 06 Jan 2025 08:37:05 GMT - Mon, 31 Mar 2025 08:37:04 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3 Hash8a48828621d2737f3209055a7130ccba 6ffb8ec18765df0c6f7c3ccdb470eb8d5b6f4159 0d949f18e8a02fd85b72a64951f09fd5d5ce5efc21188d0f35b7740f0b731b31
GET /aY68Is8BDv3XkfV4_6pSX8ZYhIE-sxWM_JB35KTZdzx_6fu7qCKA-Y-xKTpVMn9PlS5IIaEJzw=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
x-content-type-options: nosniff
server: fife
content-length: 3781
x-xss-protection: 0
date: Mon, 27 Jan 2025 23:40:14 GMT
expires: Tue, 28 Jan 2025 23:40:14 GMT
cache-control: public, max-age=86400, no-transform
age: 13253
etag: "v1"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| POST play.google.com/log?format=json&hasfast=true&authuser=0 | 216.58.207.238 | 200 OK | 0 B |
URL POST HTTP/3play.google.com/log?format=json&hasfast=true&authuser=0 IP216.58.207.238:443
Requested byhttps://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw CertificateIssuerGoogle Trust Services Subject*.google.com Fingerprint61:C4:B4:B6:BF:CA:AA:6D:F5:C1:9C:48:0E:3F:3E:F9:D9:C0:1C:7E ValidityMon, 06 Jan 2025 08:36:08 GMT - Mon, 31 Mar 2025 08:36:07 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://www.youtube.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Tue, 28 Jan 2025 03:21:07 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| POST play.google.com/log?format=json&hasfast=true&authuser=0 | 216.58.207.238 | 200 OK | 0 B |
URL POST HTTP/3play.google.com/log?format=json&hasfast=true&authuser=0 IP216.58.207.238:443
Requested byhttps://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw CertificateIssuerGoogle Trust Services Subject*.google.com Fingerprint61:C4:B4:B6:BF:CA:AA:6D:F5:C1:9C:48:0E:3F:3E:F9:D9:C0:1C:7E ValidityMon, 06 Jan 2025 08:36:08 GMT - Mon, 31 Mar 2025 08:36:07 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://www.youtube.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Tue, 28 Jan 2025 03:21:07 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| POST jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.106 | 200 OK | 0 B |
URL POST HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.106:443
Requested byhttps://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw CertificateIssuerGoogle Trust Services Subjectupload.video.google.com Fingerprint60:72:A8:75:0D:97:04:67:31:64:42:C6:E8:8B:7B:1D:2B:F5:04:E9 ValidityMon, 06 Jan 2025 08:37:11 GMT - Mon, 31 Mar 2025 08:37:10 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 28 Jan 2025 03:21:07 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| POST play.google.com/log?format=json&hasfast=true&authuser=0 | 216.58.207.238 | 200 OK | 131 B |
URL POST HTTP/3play.google.com/log?format=json&hasfast=true&authuser=0 IP216.58.207.238:443
Requested byhttps://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw CertificateIssuerGoogle Trust Services Subject*.google.com Fingerprint61:C4:B4:B6:BF:CA:AA:6D:F5:C1:9C:48:0E:3F:3E:F9:D9:C0:1C:7E ValidityMon, 06 Jan 2025 08:36:08 GMT - Mon, 31 Mar 2025 08:36:07 GMT
Hashca0b7e866005f6774d284b9f438ebfd2 53644f5ee3640189bdb223473ba6a2d46606c556 502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 904
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://www.youtube.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Tue, 28 Jan 2025 03:21:07 GMT
server: Playlog
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| POST play.google.com/log?format=json&hasfast=true&authuser=0 | 216.58.207.238 | 200 OK | 131 B |
URL POST HTTP/3play.google.com/log?format=json&hasfast=true&authuser=0 IP216.58.207.238:443
Requested byhttps://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw CertificateIssuerGoogle Trust Services Subject*.google.com Fingerprint61:C4:B4:B6:BF:CA:AA:6D:F5:C1:9C:48:0E:3F:3E:F9:D9:C0:1C:7E ValidityMon, 06 Jan 2025 08:36:08 GMT - Mon, 31 Mar 2025 08:36:07 GMT
Hashca0b7e866005f6774d284b9f438ebfd2 53644f5ee3640189bdb223473ba6a2d46606c556 502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 680
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://www.youtube.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Tue, 28 Jan 2025 03:21:07 GMT
server: Playlog
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| POST jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.106 | 200 OK | 110 B |
URL POST HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.106:443
Requested byhttps://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw CertificateIssuerGoogle Trust Services Subjectupload.video.google.com Fingerprint60:72:A8:75:0D:97:04:67:31:64:42:C6:E8:8B:7B:1D:2B:F5:04:E9 ValidityMon, 06 Jan 2025 08:37:11 GMT - Mon, 31 Mar 2025 08:37:10 GMT
Hashc42bb8bd934c6f558d4396b06692e27a 62304ab1204a5796a28e59cefb5b62a79f0e8350 8cfb2919a1de19deb98295abc4817389657907dce314c5d198f650b251b2382c
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 851
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 28 Jan 2025 03:21:07 GMT
server: ESF
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| GET www.youtube.com/generate_204?bHi7Uw | 216.58.207.238 | 204 No Content | 0 B |
URL GET HTTP/3www.youtube.com/generate_204?bHi7Uw IP216.58.207.238:443
Requested byhttps://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw CertificateIssuerGoogle Trust Services Subject*.google.com Fingerprint61:C4:B4:B6:BF:CA:AA:6D:F5:C1:9C:48:0E:3F:3E:F9:D9:C0:1C:7E ValidityMon, 06 Jan 2025 08:36:08 GMT - Mon, 31 Mar 2025 08:36:07 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?bHi7Uw HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Tue, 28 Jan 2025 03:21:07 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| POST play.google.com/log?format=json&hasfast=true&authuser=0 | 216.58.207.238 | 200 OK | 0 B |
URL POST HTTP/3play.google.com/log?format=json&hasfast=true&authuser=0 IP216.58.207.238:443
Requested byhttps://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw CertificateIssuerGoogle Trust Services Subject*.google.com Fingerprint61:C4:B4:B6:BF:CA:AA:6D:F5:C1:9C:48:0E:3F:3E:F9:D9:C0:1C:7E ValidityMon, 06 Jan 2025 08:36:08 GMT - Mon, 31 Mar 2025 08:36:07 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://www.youtube.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Tue, 28 Jan 2025 03:21:07 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| POST play.google.com/log?format=json&hasfast=true&authuser=0 | 216.58.207.238 | 200 OK | 131 B |
URL POST HTTP/3play.google.com/log?format=json&hasfast=true&authuser=0 IP216.58.207.238:443
Requested byhttps://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw CertificateIssuerGoogle Trust Services Subject*.google.com Fingerprint61:C4:B4:B6:BF:CA:AA:6D:F5:C1:9C:48:0E:3F:3E:F9:D9:C0:1C:7E ValidityMon, 06 Jan 2025 08:36:08 GMT - Mon, 31 Mar 2025 08:36:07 GMT
Hashca0b7e866005f6774d284b9f438ebfd2 53644f5ee3640189bdb223473ba6a2d46606c556 502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 422
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://www.youtube.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Tue, 28 Jan 2025 03:21:07 GMT
server: Playlog
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| POST www.youtube.com/youtubei/v1/log_event?alt=json | 216.58.207.238 | 200 OK | 31 B |
URL POST HTTP/3www.youtube.com/youtubei/v1/log_event?alt=json IP216.58.207.238:443
Requested byhttps://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw CertificateIssuerGoogle Trust Services Subject*.google.com Fingerprint61:C4:B4:B6:BF:CA:AA:6D:F5:C1:9C:48:0E:3F:3E:F9:D9:C0:1C:7E ValidityMon, 06 Jan 2025 08:36:08 GMT - Mon, 31 Mar 2025 08:36:07 GMT
Hash5e1fa6fd9abd549a576f3f24b1d3c8d4 d5335d7f7d33be6a0b663f03b2df4df2521c4a87 d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1738034468848
Content-Type: application/json
X-Goog-Visitor-Id: CgtlaENXZC0xVzNGQSihmuG8BjIiCgJOTxIcEhgSFhMLFBUWFwwYGRobHB0eHw4PIBAREiEgQQ%3D%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20250121.00.00
X-YouTube-Device: cbr=Firefox&cbrver=96.0&ceng=Gecko&cengver=96.0&cos=X11&cplatform=DESKTOP
X-YouTube-Page-CL: 718165282
X-YouTube-Page-Label: youtube.player.web_20250121_00_RC00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1738034465996&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C300%2C168&vis=1&wgl=true&ca_type=image
Content-Length: 12690
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Tue, 28 Jan 2025 03:21:08 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| POST www.youtube.com/youtubei/v1/log_event?alt=json | 216.58.207.238 | 200 OK | 31 B |
URL POST HTTP/3www.youtube.com/youtubei/v1/log_event?alt=json IP216.58.207.238:443
Requested byhttps://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw CertificateIssuerGoogle Trust Services Subject*.google.com Fingerprint61:C4:B4:B6:BF:CA:AA:6D:F5:C1:9C:48:0E:3F:3E:F9:D9:C0:1C:7E ValidityMon, 06 Jan 2025 08:36:08 GMT - Mon, 31 Mar 2025 08:36:07 GMT
Hash5e1fa6fd9abd549a576f3f24b1d3c8d4 d5335d7f7d33be6a0b663f03b2df4df2521c4a87 d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1738034486519
Content-Type: application/json
X-Goog-Visitor-Id: CgtlaENXZC0xVzNGQSihmuG8BjIiCgJOTxIcEhgSFhMLFBUWFwwYGRobHB0eHw4PIBAREiEgQQ%3D%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20250121.00.00
X-YouTube-Device: cbr=Firefox&cbrver=96.0&ceng=Gecko&cengver=96.0&cos=X11&cplatform=DESKTOP
X-YouTube-Page-CL: 718165282
X-YouTube-Page-Label: youtube.player.web_20250121_00_RC00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1738034465996&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C300%2C168&vis=1&wgl=true&ca_type=image
Content-Length: 1233
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Tue, 28 Jan 2025 03:21:26 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| GET unpkg.com/detect-gpu@latest/dist/detect-gpu.umd.js | 104.17.248.203 | 302 Found | 9.7 kB |
URL GET HTTP/2unpkg.com/detect-gpu@latest/dist/detect-gpu.umd.js IP104.17.248.203:443
Requested byhttps://lootdest.org/s?S5xnzfE7 CertificateIssuerGoogle Trust Services Subjectunpkg.com FingerprintE4:F4:EA:7C:7F:E7:57:82:8B:55:44:32:FA:B8:5A:DB:88:CE:1D:D5 ValidityMon, 20 Jan 2025 17:18:45 GMT - Sun, 20 Apr 2025 18:18:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /detect-gpu@latest/dist/detect-gpu.umd.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lootdest.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 28 Jan 2025 03:21:01 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /detect-gpu@5.0.66/dist/detect-gpu.umd.js
vary: Accept, Accept-Encoding
content-encoding: br
via: 1.1 fly.io
fly-request-id: 01JJNETEY1RCRYA5ETTCKVG7PK-arn
cf-cache-status: EXPIRED
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 908dd9990d9356bd-OSL
X-Firefox-Spdy: h2
|
|
| GET www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw | 216.58.207.238 | 200 OK | 100 kB |
URL GET HTTP/2www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw IP216.58.207.238:443
Requested byhttps://lootdest.org/s?S5xnzfE7 CertificateIssuerGoogle Trust Services Subject*.google.com Fingerprint61:C4:B4:B6:BF:CA:AA:6D:F5:C1:9C:48:0E:3F:3E:F9:D9:C0:1C:7E ValidityMon, 06 Jan 2025 08:36:08 GMT - Mon, 31 Mar 2025 08:36:07 GMT
Size100 kB (100353 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lootdest.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 28 Jan 2025 03:21:05 GMT
strict-transport-security: max-age=31536000
content-security-policy: require-trusted-types-for 'script'
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
origin-trial: AmhMBR6zCLzDDxpW+HfpP67BqwIknWnyMOXOQGfzYswFmJe+fgaI6XZgAzcxOrzNtP7hEDsOo1jdjFnVr2IdxQ4AAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=L7OjTYluJUQ; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
__Secure-ROLLOUT_TOKEN=CO7q8O_zrYCJ-AEQ94i197qXiwMY94i197qXiwM%3D; Domain=youtube.com; Expires=Sun, 27-Jul-2025 03:21:05 GMT; Path=/; Secure; HttpOnly; SameSite=none; Partitioned
VISITOR_INFO1_LIVE=ehCWd-1W3FA; Domain=.youtube.com; Expires=Sun, 27-Jul-2025 03:21:05 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxIcEhgSFhMLFBUWFwwYGRobHB0eHw4PIBAREiEgQQ%3D%3D; Domain=.youtube.com; Expires=Sun, 27-Jul-2025 03:21:05 GMT; Path=/; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| GET www.youtube.com/s/player/37364e28/player_ias.vflset/en_US/remote.js | 216.58.207.238 | 200 OK | 123 kB |
URL GET HTTP/3www.youtube.com/s/player/37364e28/player_ias.vflset/en_US/remote.js IP216.58.207.238:443
Requested byhttps://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw CertificateIssuerGoogle Trust Services Subject*.google.com Fingerprint61:C4:B4:B6:BF:CA:AA:6D:F5:C1:9C:48:0E:3F:3E:F9:D9:C0:1C:7E ValidityMon, 06 Jan 2025 08:36:08 GMT - Mon, 31 Mar 2025 08:36:07 GMT
File typeJavaScript source, ASCII text, with very long lines (543) Size123 kB (122596 bytes) Hash11d2c1878a565b482f0eb54f9e74a651 f841e30b87f928a1325ba0e34fcf51cb915c983c faeb380507f56cfa39f9d1c255e91126fb6c3f743d2d011c8811d2c44f28aaa0
GET /s/player/37364e28/player_ias.vflset/en_US/remote.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/FUFcD0N1Opk?si=rK4KJwoZeHx0JMxw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 35316
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Jan 2025 10:08:34 GMT
expires: Fri, 23 Jan 2026 10:08:34 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 22 Jan 2025 05:17:30 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 407552
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| GET lootdest.org/7.js | 104.21.7.82 | 200 OK | 83 kB |
IP104.21.7.82:443
Requested byhttps://lootdest.org/s?S5xnzfE7 CertificateIssuerGoogle Trust Services Subjectlootdest.org Fingerprint6B:97:EC:68:D6:DB:26:FE:DD:DE:38:C5:30:23:36:4B:BB:E0:0E:C1 ValidityThu, 02 Jan 2025 17:41:58 GMT - Wed, 02 Apr 2025 18:40:43 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash3c502d9f735a64f99df4b0c2b9fdebfb 53813e6bbe4d62a0ee6518aea858b522b911db99 a63c10d8ef0488bec34b7e60431203054988b750004eaa39c7c0ece7602b9bf2
| Analyzer | Verdict | Alert |
|---|
| Public Nextron YARA rules | malware | Unique code from Jetriz, Swid & Jeniva of the Tetris framework |
GET /7.js HTTP/1.1
Host: lootdest.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lootdest.org/s?S5xnzfE7
Cookie: uid=tknzaGYyFRNiRViHMvdfvRjKXI7pPRn5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 28 Jan 2025 03:21:01 GMT
content-type: application/javascript
last-modified: Mon, 27 Jan 2025 22:00:00 GMT
etag: W/"679801e0-14448"
cache-control: max-age=14400
cf-cache-status: EXPIRED
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yYQu2945ghs7AKkD%2FuIA9G0Lytm5uJRVCp52EP5GalNADNVnmBc1hJvqfQslKYLo%2BRtT%2BSNjjgw%2FOIeK19Xy9TlrDLv02iNo1IuF5TD3IllczMYHhYMp0fzu1%2F5EiKg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 908dd998dc2c569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=9402&min_rtt=3508&rtt_var=5525&sent=12&recv=8&lost=0&retrans=0&sent_bytes=4097&recv_bytes=1191&delivery_rate=169314&cwnd=12000&unsent_bytes=0&cid=f5519e559f6a090a&ts=551&x=1", cfExtPri, cfHdrFlush;dur=0
|
|
| GET lootdest.org/favicon.ico | 104.21.7.82 | 404 Not Found | 159 B |
IP104.21.7.82:443
Requested byhttps://lootdest.org/s?S5xnzfE7 CertificateIssuerGoogle Trust Services Subjectlootdest.org Fingerprint6B:97:EC:68:D6:DB:26:FE:DD:DE:38:C5:30:23:36:4B:BB:E0:0E:C1 ValidityThu, 02 Jan 2025 17:41:58 GMT - Wed, 02 Apr 2025 18:40:43 GMT
File typeHTML document, ASCII text, with no line terminators Hash047df4239d5e57f4c78db606a5859d7b 6f2a5da57c2a02837e19f8ac1158db728f3ad62c 45eda3cf633f023269cef5c11cf1c1d5dde3345afdc28610589ef3682ae5130a
GET /favicon.ico HTTP/1.1
Host: lootdest.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lootdest.org/s?S5xnzfE7
Cookie: uid=tknzaGYyFRNiRViHMvdfvRjKXI7pPRn5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Tue, 28 Jan 2025 03:21:02 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: EXPIRED
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=whraYBOzPpPRx19PbswPy%2BiATdPTCdvnxujlP4rfyXfJXE0IAEqJLkjXppbismodY2nZXLDPlyAJ1EF5pngSn7y5ktTAwDucaNUZimTVdDsuuG%2Ff91Vuh1OyW%2FT%2FRdE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 908dd99bdd07569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6248&min_rtt=1638&rtt_var=5833&sent=35&recv=13&lost=0&retrans=0&sent_bytes=27104&recv_bytes=1670&delivery_rate=4432918&cwnd=12000&unsent_bytes=0&cid=f5519e559f6a090a&ts=1045&x=1", cfExtPri, cfHdrFlush;dur=0
|
|
| GET unpkg.com/@lottiefiles/lottie-player@2.0.12/dist/lottie-player.js | 104.17.248.203 | 200 OK | 384 kB |
URL GET HTTP/2unpkg.com/@lottiefiles/lottie-player@2.0.12/dist/lottie-player.js IP104.17.248.203:443
Requested byhttps://lootdest.org/s?S5xnzfE7 CertificateIssuerGoogle Trust Services Subjectunpkg.com FingerprintE4:F4:EA:7C:7F:E7:57:82:8B:55:44:32:FA:B8:5A:DB:88:CE:1D:D5 ValidityMon, 20 Jan 2025 17:18:45 GMT - Sun, 20 Apr 2025 18:18:43 GMT
Size384 kB (383981 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /@lottiefiles/lottie-player@2.0.12/dist/lottie-player.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lootdest.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Jan 2025 03:21:05 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
content-encoding: br
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: "5dbed-iuWY+SuF72GOkOASnVf7lMj2w7g"
via: 1.1 fly.io
fly-request-id: 01JFH2E30AV7ERCXT9W1JEJXQB-arn
cf-cache-status: HIT
age: 1042009
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 908dd9b16cbe56bd-OSL
X-Firefox-Spdy: h2
|
|
| GET lootdest.org/s?S5xnzfE7 | 104.21.7.82 | 200 OK | 22 kB |
URL User Request GET HTTP/2IP104.21.7.82:443
CertificateIssuerGoogle Trust Services Subjectlootdest.org Fingerprint6B:97:EC:68:D6:DB:26:FE:DD:DE:38:C5:30:23:36:4B:BB:E0:0E:C1 ValidityThu, 02 Jan 2025 17:41:58 GMT - Wed, 02 Apr 2025 18:40:43 GMT
File typeHTML document, ASCII text, with very long lines (3884) Hash9aa9f245583577fbca69a5337dc87bb9 30ca46d137176ae6700cd0aceafc09245e357226 9ebd40d76baa6d073665ebca5d96a4ed0d0d395bba0b359a5fa33c389689b62b
GET /s?S5xnzfE7 HTTP/1.1
Host: lootdest.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Jan 2025 03:21:01 GMT
content-type: text/html
access-control-allow-headers: Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-methods: POST, GET, OPTIONS, HEAD
access-control-allow-credentials: true
set-cookie: uid=tknzaGYyFRNiRViHMvdfvRjKXI7pPRn5; expires=Wed, 28 Jan 2026 03:21:01 GMT; Path=/; Secure
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ljjVdiTeNxvF%2FxvmwD%2BrtvUo%2BD29I4BDDcBY382w35S992PBPdoOH2ldXRPCpbjseBkTVQ7wQ7jWW1IX%2Fa5%2F5ezRrVFndjPmxWhM8aE5b9dtF95YIvuubviZspMjLtM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 908dd994fa875699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=6348&min_rtt=420&rtt_var=11850&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3276&recv_bytes=1249&delivery_rate=7812949&cwnd=254&unsent_bytes=0&cid=cef0148703342a01&ts=256&x=0"
X-Firefox-Spdy: h2
|
|