Report - xurbansimsx.com/

Report Overview

Visited public
2023-11-01 18:18:48
Tags
URL
xurbansimsx.com/
Finishing URL
www.xurbansimsx.com/
IP / ASN
216.239.34.21
#15169 GOOGLE
Title
U R B A N S I M S

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
xurbansimsx.com	390495	2013-03-21	2017-05-19 16:14:42	2023-11-01 19:18:19	472 B	476 B	216.239.38.21
1.bp.blogspot.com	8403	2000-07-31	2012-05-21 15:44:19	2023-11-01 10:05:54	1.1 kB	119 kB	142.250.74.161
4.bp.blogspot.com	11215	2000-07-31	2012-05-21 15:44:19	2023-11-01 10:05:54	538 B	7.1 kB	142.250.74.161
storage.ko-fi.com	58521	2011-05-15	2020-04-13 17:13:13	2023-10-31 22:36:11	902 B	14 kB	172.67.26.21
www.gstatic.com	unknown	2008-02-11	2016-07-26 11:37:06	2023-11-01 12:39:23	4.2 kB	27 kB	142.250.74.35
ko-fi.com	23951	2011-05-15	2014-06-04 00:26:12	2023-10-31 17:01:59	409 B	4.3 kB	172.67.26.21
ajax.googleapis.com	12905	2005-01-25	2013-08-16 11:51:31	2023-11-01 13:35:59	882 B	147 kB	142.250.74.42
ocsp.pki.goog	175	2016-06-13	2018-07-01 08:43:07	2023-11-01 05:09:12	694 B	1.4 kB	142.250.74.131
translate.google.com	1156	1997-09-15	2012-05-30 03:30:32	2023-11-01 05:10:45	1.9 kB	196 kB	142.250.74.46
blogger.googleusercontent.com	16485	2008-11-17	2012-05-25 19:41:01	2023-11-01 10:05:54	6.0 kB	1.4 MB	142.250.74.97
www.google.com	7	1997-09-15	2015-05-10 13:11:19	2023-09-20 20:05:47	435 B	737 B	142.250.74.132
www.xurbansimsx.com	unknown	2013-03-21	2015-06-15 02:07:11	2023-10-30 06:34:08	2.3 kB	42 kB	216.239.34.21
www.blogger.com	8975	1999-06-22	2012-05-22 09:35:03	2023-11-01 10:05:53	4.2 kB	345 kB	216.58.207.233
resources.blogblog.com	13274	2000-09-15	2017-01-30 05:47:40	2023-11-01 11:17:11	1.9 kB	3.7 kB	216.58.207.233
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-11-01 11:43:11	3.1 kB	68 kB	216.58.207.227
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17 22:46:33	2023-11-01 05:09:25	877 B	19 kB	104.17.25.14
scmplayer.co	unknown	2017-01-31	2017-02-03 15:55:25	2023-10-05 13:43:26	808 B	11 kB	172.67.161.75
scmplayer.net	unknown	2011-03-25	2012-05-23 13:00:01	2023-10-29 04:59:37	7.3 kB	180 kB	104.21.234.156
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-11-01 13:26:10	443 B	1.6 kB	142.250.74.106
translate.googleapis.com	1005	2005-01-25	2012-05-31 09:21:21	2023-11-01 13:10:59	4.3 kB	174 kB	142.250.74.106
lh3.googleusercontent.com	66	2008-11-17	2012-05-22 09:35:05	2023-11-01 05:11:25	4.1 kB	18 kB	142.250.74.97
translate-pa.googleapis.com	1620	2005-01-25	2021-11-04 07:37:42	2023-11-01 13:13:06	1.1 kB	4.6 kB	142.250.74.106
freehostedscripts.net	205825	2006-08-24	2012-07-30 07:13:41	2023-10-04 21:34:18	2.9 kB	0 B	0.0.0.0

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-11-01	medium	freehostedscripts.net	Sinkholed
2023-11-01	medium	freehostedscripts.net	Sinkholed

ThreatFox

No alerts detected

JavaScript (43)

	URL	From	Size	First Seen	Last Seen
	pagead2.googlesyndication.com/pagead/js/adsbygoogle.js	ScriptElement	1.6 kB	2023-05-06	2025-05-11
Pretty URL pagead2.googlesyndication.com/pagead/js/adsbygoogle.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-06 01:21 Last Seen2025-05-11 12:10 Times Seen24222 Hash 2e9e391ad98fbe1b2de0b7b4fa9ca904 21d7771223e8286a06ad878af425094a40de32b5 1468d954f25ab75355f3c0f42cd9c84efd64a67922c47d3b69bdb6d0eb399e69 Loading...

	scmplayer.net/scm.html#https://www.xurbansimsx.com/	ScriptElement	0 B	0001-01-01	2025-05-11
Pretty URL scmplayer.net/scm.html#https://www.xurbansimsx.com/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-11 12:36 Times Seen4654327 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.xurbansimsx.com/	ScriptElement	275 B	2023-03-07	2025-05-11
Pretty URL www.xurbansimsx.com/ IP 216.239.34.21 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 12:32 Times Seen37732 Hash 38ee2f6ddbe8a478e5795030e72ba35d d332319b04b273e3b9a93ffa22ba9036d59b8e99 97d98978d5864e77cd83bd79a0d31ced40631a6134a154e8f049bcc20f49a319 Loading...

	www.xurbansimsx.com/	ScriptElement	405 B	2024-08-20	2024-08-20
Pretty URL www.xurbansimsx.com/ IP 216.239.34.21 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 21:28 Last Seen2024-08-20 21:28 Times Seen1 Hash 582152265b002df168ce033fd2cfb5a2 fcdb78befec4d09fa4e9d1e8449cd1e460e49912 1d0bd163454d5cbe41d5e25a5071dda63d11f2b2c1f96f719bde4aedbe598f38 Loading...

	www.xurbansimsx.com/sandbox%20eval%20code		128 B	2023-05-06	2025-05-11
Pretty URL www.xurbansimsx.com/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-06 01:21 Last Seen2025-05-11 12:10 Times Seen24432 Hash 23c336606ee3a6d444b305153fa0e2e2 473a2111970ae2a94b373e656d20c4bd4184d703 305375d5052f6a14434d2d338f852f0f4f04fb26495f88a5d62b6afde2e2cc60 Loading...

	unknown	EventHandler	27 B	2023-04-10	2025-05-11
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-10 15:53 Last Seen2025-05-11 12:32 Times Seen24476 Hash 7688ca9eb3ca1c878821b1e3fe2c23d7 2c41fd7e9f8312d6fed18b21e1a0589413e35553 793bae9539499e6e02187febbd2e20fd17dd40260033f5175dbfc2f294440d9a Loading...

	cdnjs.cloudflare.com/ajax/libs/knockout/2.1.0/knockout-min.js	ScriptElement	41 kB	2023-03-07	2025-04-16
Pretty URL cdnjs.cloudflare.com/ajax/libs/knockout/2.1.0/knockout-min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28 Last Seen2025-04-16 05:48 Times Seen85 Hash 10fea18c666dbafc68cbff1464996427 90654270f2e1d4650a82d6087a50ce7e9b0e187b b51f83fb92d0bd1d30751b4fbb9ba5a20385850e8906d63406fba17485333557 Loading...

	scmplayer.net/js/binding/scm.js	ScriptElement	2.8 kB	2023-03-07	2025-03-29
Pretty URL scmplayer.net/js/binding/scm.js IP 104.21.234.156 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28 Last Seen2025-03-29 02:37 Times Seen63 Hash 859ca9302728e970975ab4f655a0b231 04ee1c3881e2ab7606379059e04bf04770d70b9c b5261c3f5bac2589125b201e0ef2acf56f4ea1e3c2589f7cd3a5e5a02817d1a6 Loading...

	www.xurbansimsx.com/	ScriptElement	269 B	2024-08-20	2024-08-20
Pretty URL www.xurbansimsx.com/ IP 216.239.34.21 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 21:28 Last Seen2024-08-20 21:28 Times Seen1 Hash 97fe0fe2c9236fafe46cf9b71ebdd7a4 b6592158914c82fc15a43fdbfccab80b1a0b39d1 c43d4201ba5b92fef183e594d394dc46a4a7d603b5927c88a558015805dab439 Loading...

	www.xurbansimsx.com/_/translate_http/_/js/k=translate_http.tr.no.HFIt2YtY4Bg.O/am=CAM/d=1/rs=AN8SPfqVvrac60k8s9okwX0yfkG3KHdRYA/m=el_conf	ScriptElement	90 kB	2024-08-20	2024-08-20
Pretty URL www.xurbansimsx.com/_/translate_http/_/js/k=translate_http.tr.no.HFIt2YtY4Bg.O/am=CAM/d=1/rs=AN8SPfqVvrac60k8s9okwX0yfkG3KHdRYA/m=el_conf IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 21:28 Last Seen2024-08-20 21:28 Times Seen1 Hash f557ceea77834394291941d8fe58dbb9 c153ec0b726bc08a81489f560ced71655f6d21d8 9cb7f4e60067ab6fed2acf1f4edb149d4ab240bca7cb2bc722b15e851a82c70b Loading...

	www.xurbansimsx.com/	ScriptElement	82 B	2024-08-20	2024-08-20
Pretty URL www.xurbansimsx.com/ IP 216.239.34.21 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 21:28 Last Seen2024-08-20 21:28 Times Seen1 Hash a0c3c78afa6007813bba0a1a07b14d1b 52c80f09384036cc29d969fdad99676099d7512b cb8675079ebdc7509fe9c466991b755f9830c0a6542b2547192da939713166c2 Loading...

	scmplayer.net/js/lib/require/require.js	ScriptElement	14 kB	2023-03-07	2025-04-16
Pretty URL scmplayer.net/js/lib/require/require.js IP 104.21.234.156 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28 Last Seen2025-04-16 05:48 Times Seen71 Hash dbe85aaebf5c445fc335459062f4c252 593eb0cf2ef296738cea0dc6105383de21c3010e 6266ef98c9caf8b5e63c253af3108ba5587e7825c9a09e7a1e69a5cce100eb7c Loading...

	www.xurbansimsx.com/	ScriptElement	52 B	2023-03-07	2025-05-11
Pretty URL www.xurbansimsx.com/ IP 216.239.34.21 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 10:11 Times Seen4489 Hash 6d48f89cb998f3bd2608a2249a390a16 9fac7a2a545c24358ed42ac6619918191ff01b95 012266fd23d78b3e873c75c6fa647fd6d9d5f494f3697fd3e252f7b82dc26080 Loading...

	scmplayer.net/js/lib/soundmanager/soundmanager2-nodebug-jsmin.js	ScriptElement	34 kB	2023-03-07	2024-10-14
Pretty URL scmplayer.net/js/lib/soundmanager/soundmanager2-nodebug-jsmin.js IP 104.21.234.156 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28 Last Seen2024-10-14 12:58 Times Seen58 Hash 8c46873c9b56ee79fc4fe9d5f57850b6 4d1eb37eed902d1d5b1528977dcaf70c8d082a17 a04691f930435d25babfbbc3ba86e1b3e47360d22672d538006c7950f366f916 Loading...

	scmplayer.net/config.js	ScriptElement	1.2 kB	2023-03-07	2025-04-16
Pretty URL scmplayer.net/config.js IP 104.21.234.156 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28 Last Seen2025-04-16 05:48 Times Seen71 Hash 593536fb2b630aeff2a450902deb8a82 7f7877198eedb5e58ffec86b1781a03e9fc94cce 9699c87709fc02994056249e695196d1d814fa74c5a91fc0d52ead3a28385297 Loading...

	cdnjs.cloudflare.com/ajax/libs/underscore.js/1.4.1/underscore-min.js	ScriptElement	13 kB	2023-03-07	2025-04-16
Pretty URL cdnjs.cloudflare.com/ajax/libs/underscore.js/1.4.1/underscore-min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28 Last Seen2025-04-16 05:48 Times Seen82 Hash a8167cbe4acedc5f0132f7b087c24bd0 42394e7c9142b938e1d807c643d24107d7d9d317 ab0d4345dc2801d2667ff3a0ae25926d20154ba7540f6797ad4baab4681e2fa8 Loading...

	www.xurbansimsx.com/	ScriptElement	266 B	2023-03-07	2025-04-19
Pretty URL www.xurbansimsx.com/ IP 216.239.34.21 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:10 Last Seen2025-04-19 23:59 Times Seen225 Hash 8a17d852cab579fc0ef1cdf6007e98f0 5837f6e2ac0b7e8827812cfb1b6da8f2a0dcf31e b828d3eac0e20d816152f9a564d03a8ccb7b932da78335f9b4bfe0415745b8da Loading...

	www.xurbansimsx.com/	ScriptElement	276 B	2023-03-07	2025-05-07
Pretty URL www.xurbansimsx.com/ IP 216.239.34.21 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03 Last Seen2025-05-07 06:51 Times Seen1195 Hash 964a88133d1e4ed9a320c41af7da1091 c24f621fd6db3d4db5922c271f5ee01cb6485e50 274f2ba69eb1b2369d0bcc01969f290b644c7d22b84a99d4d13287f65bdc576a Loading...

	www.xurbansimsx.com/	ScriptElement	134 B	2023-03-07	2025-05-11
Pretty URL www.xurbansimsx.com/ IP 216.239.34.21 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03 Last Seen2025-05-11 05:50 Times Seen7869 Hash 7e2a455be32f5870991d61ec53c7dc39 5b4ae6802be8b8b8033c315ae65a16eeaf7682aa 8f0eb730a7427cc79a611009ff5de0a3d74e5249ea9a9db98d1954e2b933d91d Loading...

	scmplayer.co/script.js	ScriptElement	5.1 kB	2023-03-07	2024-10-14
Pretty URL scmplayer.co/script.js IP 172.67.161.75 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28 Last Seen2024-10-14 12:58 Times Seen63 Hash c2b4d5ae510c3b1690f5282632ef706d c32eb6f6f65dabb2fcaf1e8fafee68412395e2b9 2d2d41d73b49bb943083674f6370e9c334fda32d2fcc25be7b345f44d15dd1fd Loading...

	www.blogger.com/static/v1/widgets/3737540651-widgets.js	ScriptElement	163 kB	2023-10-30	2023-11-06
Pretty URL www.blogger.com/static/v1/widgets/3737540651-widgets.js IP 216.58.207.233 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-30 18:49 Last Seen2023-11-06 04:25 Times Seen850 Hash 4ea44bac705ed408efd4f1c5409f2c26 56d80408130a9d8e21d988323c92eaa58d7849f1 685ee7526028d355549d5bc576073aa927ea34d48a7512b12c077d88a8d24089 Loading...

	www.xurbansimsx.com/	ScriptElement	789 B	2023-03-07	2024-08-21
Pretty URL www.xurbansimsx.com/ IP 216.239.34.21 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2024-08-21 09:44 Times Seen17283 Hash 0699fb3015610319b1639f47466451f0 5f4d8a4022f3a687921d7b3dce01cfc5bd62248f 2443e5c9c4ba5a75e030860f998bcf800907b0d4b3c4017999c2ed7ac84eeefa Loading...

	www.blogger.com/static/v1/jsbin/3006914629-lbx.js	ScriptElement	385 kB	2023-10-29	2023-11-05
Pretty URL www.blogger.com/static/v1/jsbin/3006914629-lbx.js IP 216.58.207.233 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-29 11:50 Last Seen2023-11-05 15:47 Times Seen41 Hash c9c9cc8dc9c14c80ff4f9c8fad27f8d3 5ffdcaa7fa5ead209c606e65e1c64253f860e90f 66502fa1740ff7221f1b571342f484ee67d94e095b1a488cdd19e5b3e7fb4a87 Loading...

	www.xurbansimsx.com/	ScriptElement	7.6 kB	2024-08-20	2024-08-20
Pretty URL www.xurbansimsx.com/ IP 216.239.34.21 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 21:28 Last Seen2024-08-20 21:28 Times Seen1 Hash 28335b3ea78a244eb0bb2f0ef623a1e0 cdd76475475e2086f49b0e3c7d4e6d0f4b4a187d 6f01b7b57bcb3800f7cf7dfa3e7645eeb3a1da90967943575f95b7f9dcc9e365 Loading...

	www.xurbansimsx.com/js/cookienotice.js	ScriptElement	6.5 kB	2023-03-07	2025-05-11
Pretty URL www.xurbansimsx.com/js/cookienotice.js IP 216.239.34.21 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 12:32 Times Seen43878 Hash a705132a2174f88e196ec3610d68faa8 3bad57a48d973a678fec600d45933010f6edc659 068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568 Loading...

	translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.HFIt2YtY4Bg.O/d=1/exm=el_conf/ed=1/rs=AN8SPfqMM1_Y-9Hayf7A1405fcJBdTMrCw/m=el_main	ScriptElement	233 kB	2023-10-30	2023-11-01
Pretty URL translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.HFIt2YtY4Bg.O/d=1/exm=el_conf/ed=1/rs=AN8SPfqMM1_Y-9Hayf7A1405fcJBdTMrCw/m=el_main IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-30 23:30 Last Seen2023-11-01 21:25 Times Seen136 Hash 40dc0a281a22452c26abf7348ef30254 ce9661952850d910c46c93c8d968dcb16d68ca40 e4a4f785fed5043d1e45d3bf8ffae12ee84b7e533241145806a7258a7fd1ee35 Loading...

	scmplayer.net/js/lib/require/text.js	ScriptElement	4.9 kB	2023-03-07	2025-01-15
Pretty URL scmplayer.net/js/lib/require/text.js IP 104.21.234.156 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28 Last Seen2025-01-15 02:38 Times Seen59 Hash 9503dcdd09f0fd5a2629f6d76133b749 568101b8906443b8d75cc332f937f021c1f9e8d0 b7769c54ea9b2e8c8dd1fcd494dc726f73f69c01ccbfe32a57779af6d17d27ad Loading...

	scmplayer.net/js/scm.ui.js	ScriptElement	1.4 kB	2023-03-07	2025-04-16
Pretty URL scmplayer.net/js/scm.ui.js IP 104.21.234.156 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28 Last Seen2025-04-16 05:48 Times Seen64 Hash e1bfe2dd059d1e7f9a48daa8bc57549b f6b5a6424da4cc82960483b5fdcadea7ec803c7e 3b0ef0197a85a23404aa71a48bbee880a687afd845e3eb276799c683940357dc Loading...

	ko-fi.com/widgets/widget_2.js	ScriptElement	3.1 kB	2023-03-29	2024-08-21
Pretty URL ko-fi.com/widgets/widget_2.js IP 172.67.26.21 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 21:26 Last Seen2024-08-21 08:00 Times Seen11 Hash 2522295bbbfb3c4fbadd8bb2b9bc4608 58d518d52f3cabe38203ab41f677312aabef6ef8 01b0cf1a65fea9e051b9aa0abf30503fe58fc2a112eaae2f8fa8333e2690bd51 Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.8.2/jquery.min.js	ScriptElement	93 kB	2023-03-07	2025-05-10
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.8.2/jquery.min.js IP 142.250.74.42 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:12 Last Seen2025-05-10 22:22 Times Seen4058 Hash 0b6ecf17e30037994d3ffee51b525914 d09d3a99ed25d0f1fbe6856de9e14ffd33557256 f554d2f09272c6f71447ebfe4532d3b1dd1959bce669f9a5ccc99e64ef511729 Loading...

	ajax.googleapis.com/ajax/libs/jqueryui/1.8.23/jquery-ui.min.js	ScriptElement	201 kB	2023-03-07	2025-05-10
Pretty URL ajax.googleapis.com/ajax/libs/jqueryui/1.8.23/jquery-ui.min.js IP 142.250.74.42 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:10 Last Seen2025-05-10 15:08 Times Seen215 Hash 3667ec0d9975a9580b9e5f3c577e8d07 429282063ca7f3bae9797d70a6f09f2e3e05458a b0414cd9a63cee7af991c13817e46d30190ac41a8711cdae78718da6d380e572 Loading...

	scmplayer.net/js/scm.js	ScriptElement	4.0 kB	2023-03-07	2024-10-14
Pretty URL scmplayer.net/js/scm.js IP 104.21.234.156 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28 Last Seen2024-10-14 12:58 Times Seen58 Hash ad873fc1451fe2dee392f359d34bfa39 370a5dc667a7ffa23be5a4848d39e413c0bb3c19 d0a955d92e4ab733bed33866299e256d92b724af15a59fd4e8547fac254c383a Loading...

	scmplayer.net/js/binding/slider.js	ScriptElement	1.0 kB	2023-03-07	2025-03-29
Pretty URL scmplayer.net/js/binding/slider.js IP 104.21.234.156 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28 Last Seen2025-03-29 02:37 Times Seen63 Hash 14a83b7a0fe9a77a3ac66dd7413b9f1f cbbecf600c3b3ae783b76884db24e83814f3ca02 7ae65aa4faa0a0f9af2b70fd581a3baa2d551bdc86ea2314f5f3be3da9ede8ab Loading...

	scmplayer.net/js/lib/knockout/pauseable.js	ScriptElement	2.2 kB	2023-03-07	2025-03-29
Pretty URL scmplayer.net/js/lib/knockout/pauseable.js IP 104.21.234.156 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28 Last Seen2025-03-29 02:37 Times Seen63 Hash cad6d2e81972fa3f96f7fe945c1f1865 d8d8c4d0a6515f6b36378a7970fb5a79cb0086af 39cac49d2a46601e66623bf8f624aaa872cc9680453966c6a8d8b2d129bf83f4 Loading...

	scmplayer.net/js/song.js	ScriptElement	286 B	2023-03-07	2025-03-29
Pretty URL scmplayer.net/js/song.js IP 104.21.234.156 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28 Last Seen2025-03-29 02:37 Times Seen70 Hash 77c39ea9896ee02008e85e07379f33c9 48fba99842f82f7e7206c4ea7c6b538116222c38 8e1d5625afaf4de2f2cc89f4684fced0e2018c90c88e927b2c2c327f8eb6b566 Loading...

		Size	First Seen	Last Seen
	#1 Write - 31172aee0f6083a6e8b36f226680d93d	2.6 kB	2024-08-20 21:28	2024-08-20 21:28
Pretty Observations First Seen2024-08-20 21:28 Last Seen2024-08-20 21:28 Times Seen1 Hash 31172aee0f6083a6e8b36f226680d93d 7f7eca5af4c0f762b7d5104ea26c08d7ffcb7806 903f89cb57b7131609d17e13eb1b79957d91ba82a63156ad2923b4fcb38da53c Loading...

	#2 Write - 32366776e65738e23e16471980c23d82	153 B	2024-08-20 21:28	2024-08-20 21:28
Pretty Observations First Seen2024-08-20 21:28 Last Seen2024-08-20 21:28 Times Seen1 Hash 32366776e65738e23e16471980c23d82 11a2e176cca9e9e8a712159eed3785b65bc6d0a3 c4f966d971a145e35385f414d190dcb85da532b8d9bf56fc070939231096c0b6 Loading...

	#3 Write - b6cd012c83551f4ab6b1c6e0376f7548	3.0 kB	2023-10-30 23:12	2024-08-20 21:44
Pretty Observations First Seen2023-10-30 23:12 Last Seen2024-08-20 21:44 Times Seen560 Hash b6cd012c83551f4ab6b1c6e0376f7548 6e3f17c6fd26e17aaace19990eae72a93f03bd0c ad6c40e110cecc4b005bcc65563e96117436c1701e6cd65f3265b54f4c61ea4b Loading...

	#4 Write - 02b2fef5bf22dc8eed24b61db40e4d2e	157 B	2024-08-20 21:28	2024-08-20 21:28
Pretty Observations First Seen2024-08-20 21:28 Last Seen2024-08-20 21:28 Times Seen1 Hash 02b2fef5bf22dc8eed24b61db40e4d2e c1d7a62ce86824ba3b9a263801d4b2179ce4f583 3c283a5c1f6dd7173e5e951553d3be427b39db281e8ad5f96216c3f2b965b251 Loading...

	#5 Write - b09d178f36652cc732f36cd22aaec81d	469 B	2023-10-30 23:12	2024-08-20 21:44
Pretty Observations First Seen2023-10-30 23:12 Last Seen2024-08-20 21:44 Times Seen206 Hash b09d178f36652cc732f36cd22aaec81d 2951b03cfbf1379cdbfb69cbc642c597a53d884a 115efc9ac9222a04cf6ce8e5c1c8fad88234bb148bdd543cc15cdff39ea8f1fe Loading...

	#6 Write - 9e036683eb44a8c4097fae1f7da80ef3	469 B	2023-10-30 23:12	2024-08-20 21:44
Pretty Observations First Seen2023-10-30 23:12 Last Seen2024-08-20 21:44 Times Seen275 Hash 9e036683eb44a8c4097fae1f7da80ef3 709466dcee68e990c05422aa1b81de1edf8af5c1 9512b4fd121a4446065a5d0c2212919f4f67eac4ab8eba778aca39c2a809ec94 Loading...

	#7 Write - e940a0b3be4a48b19c755487668ec29e	28 B	2024-08-20 21:28	2024-08-20 21:28
Pretty Observations First Seen2024-08-20 21:28 Last Seen2024-08-20 21:28 Times Seen1 Hash e940a0b3be4a48b19c755487668ec29e c23a5b32fb6e16a12d1acf6a37dd5efafab04011 ee22c04af58d12984bb087a37d4c22aaf1fd3ec3929519f2b4002e42499d61cd Loading...

	#8 Write - cb9fa774f3856ea2611ef6c4b5cee8b0	135 B	2024-08-20 21:28	2024-08-20 21:28
Pretty Observations First Seen2024-08-20 21:28 Last Seen2024-08-20 21:28 Times Seen1 Hash cb9fa774f3856ea2611ef6c4b5cee8b0 66da8a7cc1139c42603dd9122c51c34c7a6cab24 2325773accafedbafff167c7aca9317b52afe6ef92f00f7898816b67ddf29685 Loading...

HTTP Transactions (102)

URL IP Response Size

ocsp.pki.goog/s/gts1d4/Jm0HPWqWwFQ

142.250.74.131

471 B

URL
ocsp.pki.goog/s/gts1d4/Jm0HPWqWwFQ
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
65d2b51cf6829427b7b6c1fbf6ed4d54
430b769cd9ac37811c49d15b0c5c1cee9ffbd7d3
b0a63b6a05726a04a7f1aff9a44950350fa0c0088ffa57bcf7f5d82eae9b0d32

HTTP Headers

POST /s/gts1d4/Jm0HPWqWwFQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Nov 2023 18:18:26 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

xurbansimsx.com/

216.239.38.21

301 Moved Permanently

225 B

URL User Request GET HTTP/2
xurbansimsx.com/
IP
216.239.38.21:443
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subjectxurbansimsx.com
Fingerprint8B:3C:5D:2F:DA:E2:6A:05:A3:93:E4:4C:D0:C4:E7:93:75:D7:2C:71
ValidityWed, 13 Sep 2023 05:32:40 GMT - Tue, 12 Dec 2023 06:16:48 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size
225 B (225 bytes)
Hash
52ad53e4aaa141eb694cb8f2052bf7fd
69342ed0fc2caf7f3f27c1cca736f8438e6e456a
b1a5ccefc503ab0ef3018ec66532bc71bec776a2a64f29eb44f2d81fde5c18e9

HTTP Headers

GET / HTTP/1.1
Host: xurbansimsx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
location: https://www.xurbansimsx.com/
date: Wed, 01 Nov 2023 18:18:26 GMT
content-type: text/html; charset=UTF-8
server: ghs
content-length: 225
x-xss-protection: 0
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1d4/Z_pAA8n8ZaA

142.250.74.131

471 B

URL
ocsp.pki.goog/s/gts1d4/Z_pAA8n8ZaA
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d75884fe20719f2269683c7b8efb8c2b
67b2e0ff2c44e4948d0ff8e73a822b7704ea0103
de19ba23197c198254232402305c590559ae2e8c10f81b6a14b29266fb43647d

HTTP Headers

POST /s/gts1d4/Z_pAA8n8ZaA HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Nov 2023 18:18:27 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.xurbansimsx.com/

216.239.34.21

200 OK

17 kB

URL GET HTTP/2
www.xurbansimsx.com/
IP
216.239.34.21:443
ASN
#15169 GOOGLE

Requested by
https://scmplayer.net/scm.html#https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.xurbansimsx.com
FingerprintFE:F2:95:B7:77:24:DC:F0:C6:8C:5C:29:76:01:63:7C:66:B7:5F:28
ValidityMon, 30 Oct 2023 04:31:24 GMT - Sun, 28 Jan 2024 05:22:37 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6997)
Size
17 kB (17347 bytes)
Hash
931caa2c58daa95dd82d67783588b327
744245544161c42c5013c8278299cdc13be98f94
dc3dea55f9644e24fc06b602404815580328520e6af8a406392961bc25f7944a

HTTP Headers

GET / HTTP/1.1
Host: www.xurbansimsx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Wed, 01 Nov 2023 18:18:27 GMT
date: Wed, 01 Nov 2023 18:18:27 GMT
cache-control: private, max-age=0
last-modified: Tue, 31 Oct 2023 09:28:15 GMT
etag: W/"9b08924efc25bea4b9ce90773202f0f69339a37bf49a02861d608797ec3af6a5"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 17347
server: GSE
X-Firefox-Spdy: h2

www.xurbansimsx.com/js/cookienotice.js

216.239.34.21

200 OK

2.0 kB

URL GET HTTP/2
www.xurbansimsx.com/js/cookienotice.js
IP
216.239.34.21:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.xurbansimsx.com
FingerprintFE:F2:95:B7:77:24:DC:F0:C6:8C:5C:29:76:01:63:7C:66:B7:5F:28
ValidityMon, 30 Oct 2023 04:31:24 GMT - Sun, 28 Jan 2024 05:22:37 GMT

File type
ASCII text
Size
2.0 kB (2026 bytes)
Hash
a705132a2174f88e196ec3610d68faa8
3bad57a48d973a678fec600d45933010f6edc659
068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568

HTTP Headers

GET /js/cookienotice.js HTTP/1.1
Host: www.xurbansimsx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Wed, 01 Nov 2023 18:18:27 GMT
expires: Wed, 08 Nov 2023 18:18:27 GMT
cache-control: public, max-age=604800
last-modified: Wed, 01 Nov 2023 06:51:32 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
X-Firefox-Spdy: h2

www.blogger.com/static/v1/widgets/3566091532-css_bundle_v2.css

216.58.207.233

200 OK

7.8 kB

URL GET HTTP/2
www.blogger.com/static/v1/widgets/3566091532-css_bundle_v2.css
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint3F:08:9F:49:DB:C6:54:6F:4F:5E:71:19:FC:42:98:33:57:FD:36:44
ValidityMon, 09 Oct 2023 08:03:32 GMT - Mon, 01 Jan 2024 08:03:31 GMT

File type
ASCII text, with very long lines (35959)
Size
7.8 kB (7756 bytes)
Hash
1e32420a7b6ddbdcb7def8b3141c4d1e
a1be54d42ff1f95244c9653539f90318f5bc0580
a9ca837900b6ae007386d400f659c233120b8af7d93407fd6475c9180d9e83d2

HTTP Headers

GET /static/v1/widgets/3566091532-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7756
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Oct 2023 08:06:17 GMT
expires: Fri, 25 Oct 2024 08:06:17 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 26 Oct 2023 02:57:30 GMT
content-type: text/css
vary: Accept-Encoding
age: 555130
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

resources.blogblog.com/img/icon18_edit_allbkg.gif

216.58.207.233

200 OK

162 B

URL GET HTTP/2
resources.blogblog.com/img/icon18_edit_allbkg.gif
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint3F:08:9F:49:DB:C6:54:6F:4F:5E:71:19:FC:42:98:33:57:FD:36:44
ValidityMon, 09 Oct 2023 08:03:32 GMT - Mon, 01 Jan 2024 08:03:31 GMT

File type
GIF image data, version 89a, 18 x 18\012- data
Size
162 B (162 bytes)
Hash
c991641178ff05adf0d004298b5eafa9
d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b

HTTP Headers

GET /img/icon18_edit_allbkg.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 162
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Oct 2023 23:51:37 GMT
expires: Thu, 02 Nov 2023 23:51:37 GMT
cache-control: public, max-age=604800
last-modified: Wed, 25 Oct 2023 21:56:15 GMT
content-type: image/gif
age: 498410
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.blogger.com/static/v1/widgets/3737540651-widgets.js

216.58.207.233

200 OK

59 kB

URL GET HTTP/2
www.blogger.com/static/v1/widgets/3737540651-widgets.js
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint3F:08:9F:49:DB:C6:54:6F:4F:5E:71:19:FC:42:98:33:57:FD:36:44
ValidityMon, 09 Oct 2023 08:03:32 GMT - Mon, 01 Jan 2024 08:03:31 GMT

File type
ASCII text, with very long lines (2215)
Size
59 kB (58997 bytes)
Hash
4ea44bac705ed408efd4f1c5409f2c26
56d80408130a9d8e21d988323c92eaa58d7849f1
685ee7526028d355549d5bc576073aa927ea34d48a7512b12c077d88a8d24089

HTTP Headers

GET /static/v1/widgets/3737540651-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 58997
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Oct 2023 02:17:21 GMT
expires: Tue, 29 Oct 2024 02:17:21 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 30 Oct 2023 01:51:38 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 230466
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

1.bp.blogspot.com/-bKcFlX1YlTQ/YTPZzpN89KI/AAAAAAAABVs/WFjTQa6oOl8lMpMUxE6W0CZgX-tEJrJvgCLcBGAsYHQ/s960/teespringstore.png

142.250.74.161

200 OK

59 kB

URL GET HTTP/2
1.bp.blogspot.com/-bKcFlX1YlTQ/YTPZzpN89KI/AAAAAAAABVs/WFjTQa6oOl8lMpMUxE6W0CZgX-tEJrJvgCLcBGAsYHQ/s960/teespringstore.png
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintE5:CE:AD:EC:C9:31:39:C3:55:73:BD:95:08:49:F5:A0:14:78:3C:B9
ValidityMon, 09 Oct 2023 08:09:09 GMT - Mon, 01 Jan 2024 08:09:08 GMT

File type
PNG image data, 960 x 350, 8-bit/color RGB, non-interlaced\012- data
Size
59 kB (58754 bytes)
Hash
11ce72c43d962e0c8c6757a06063ff93
588890d5bca8dd10f9c5e6ce9b754e7838f055e1
34f31030c91b45d439243099d325f49f745460e2ee31019f93470a005a59c50a

HTTP Headers

GET /-bKcFlX1YlTQ/YTPZzpN89KI/AAAAAAAABVs/WFjTQa6oOl8lMpMUxE6W0CZgX-tEJrJvgCLcBGAsYHQ/s960/teespringstore.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="teespringstore.png"
x-content-type-options: nosniff
server: fife
content-length: 58754
x-xss-protection: 0
date: Wed, 01 Nov 2023 15:48:17 GMT
expires: Thu, 02 Nov 2023 15:48:17 GMT
cache-control: public, max-age=86400, no-transform
age: 9011
etag: "v55c"
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

translate.google.com/translate_a/element.js?cb=googleTranslateElementInit

142.250.74.46

200 OK

32 kB

URL GET HTTP/3
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP
142.250.74.46:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint71:34:F9:A1:80:2F:AF:05:CB:45:8A:35:D5:48:03:3F:B3:6F:61:30
ValidityMon, 09 Oct 2023 08:04:03 GMT - Mon, 01 Jan 2024 08:04:02 GMT

File type
gzip compressed data, max compression\012- data
Size
32 kB (31668 bytes)
Hash
b27311b9b222652fa40fac224a0d29cd
374e5287c1757c99bba49a4b0c8ff779f37f381c
6f7962e1f871bf3a8d1fb372c65c304f8164375f35e3e44dea66da5c22beabef

HTTP Headers

GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 01 Nov 2023 18:18:27 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+661; expires=Fri, 31-Oct-2025 18:18:27 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

scmplayer.net/script.js

104.21.234.156

200 OK

2.4 kB

URL GET HTTP/3
scmplayer.net/script.js
IP
104.21.234.156:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerLet's Encrypt
Subjectscmplayer.net
FingerprintB7:4D:C8:BC:8D:67:D6:0A:9A:D5:C8:78:61:1D:87:4D:3D:A3:A1:26
ValidityWed, 18 Oct 2023 17:10:54 GMT - Tue, 16 Jan 2024 17:10:53 GMT

File type
exported SGML document, ASCII text, with very long lines (978)
Size
2.4 kB (2447 bytes)
Hash
c2b4d5ae510c3b1690f5282632ef706d
c32eb6f6f65dabb2fcaf1e8fafee68412395e2b9
2d2d41d73b49bb943083674f6370e9c334fda32d2fcc25be7b345f44d15dd1fd

HTTP Headers

GET /script.js HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xurbansimsx.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 01 Nov 2023 18:18:28 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=6496
etag: W/"5fb7e6e6-1960"
last-modified: Fri, 20 Nov 2020 15:55:18 GMT
x-xss-protection: 0
cache-control: max-age=14400
cf-cache-status: HIT
age: 2264
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JytHOnJdPJj%2Br63TivyZJzUTEbDJ5WHdHSJ8D6OQoiGRu%2BJiSnbVzm6neeGAvbTh8YmxjR%2Bbd%2BnimAQXmr4wt3Z54MQQOsocEFJIQH%2FMi%2BOUWc%2FuLy7PjN0nXCiJB2qT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f623f5ad6763d5-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

resources.blogblog.com/blogblog/data/1kt/simple/gradients_light.png

216.58.207.233

200 OK

403 B

URL GET HTTP/3
resources.blogblog.com/blogblog/data/1kt/simple/gradients_light.png
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint3F:08:9F:49:DB:C6:54:6F:4F:5E:71:19:FC:42:98:33:57:FD:36:44
ValidityMon, 09 Oct 2023 08:03:32 GMT - Mon, 01 Jan 2024 08:03:31 GMT

File type
PNG image data, 20 x 1100, 8-bit/color RGBA, non-interlaced\012- data
Size
403 B (403 bytes)
Hash
4f7de2e6afefb125b1f14fa5cda610ee
57a145f234b504a73f9d55cf39f2231a04719456
ecb30886406e3f776ff7bc3834de849944471e626ff148bed2fa389d02866044

HTTP Headers

GET /blogblog/data/1kt/simple/gradients_light.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 403
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Oct 2023 23:16:22 GMT
expires: Fri, 03 Nov 2023 23:16:22 GMT
cache-control: public, max-age=604800
last-modified: Fri, 27 Oct 2023 16:58:05 GMT
content-type: image/png
age: 414126
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

4.bp.blogspot.com/-1tXxkGro6Ko/YTPade6Nv-I/AAAAAAAABWQ/Sq-OQRfWfqclivOgweeRMjbU92TQckV-QCK4BGAYYCw/w1600/DARKBLUEREVEAL.png

142.250.74.161

200 OK

6.5 kB

URL GET HTTP/3
4.bp.blogspot.com/-1tXxkGro6Ko/YTPade6Nv-I/AAAAAAAABWQ/Sq-OQRfWfqclivOgweeRMjbU92TQckV-QCK4BGAYYCw/w1600/DARKBLUEREVEAL.png
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintE5:CE:AD:EC:C9:31:39:C3:55:73:BD:95:08:49:F5:A0:14:78:3C:B9
ValidityMon, 09 Oct 2023 08:09:09 GMT - Mon, 01 Jan 2024 08:09:08 GMT

File type
PNG image data, 1600 x 900, 8-bit/color RGB, non-interlaced\012- data
Size
6.5 kB (6522 bytes)
Hash
6ed5280ca820b06216b90e6d0b2ef43a
83ad1591b5c99f37e7587e95cf0eb7514acf0ed6
735f2b4b921ea03b776db7c005c4c047e7236d8dc88eb535abb7bad485b8fb1a

HTTP Headers

GET /-1tXxkGro6Ko/YTPade6Nv-I/AAAAAAAABWQ/Sq-OQRfWfqclivOgweeRMjbU92TQckV-QCK4BGAYYCw/w1600/DARKBLUEREVEAL.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="DARKBLUEREVEAL.png"
x-content-type-options: nosniff
server: fife
content-length: 6522
x-xss-protection: 0
date: Wed, 01 Nov 2023 15:48:19 GMT
expires: Thu, 02 Nov 2023 15:48:19 GMT
cache-control: public, max-age=86400, no-transform
age: 9009
etag: "v567"
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/josefinsans/v32/Qw3PZQNVED7rKGKxtqIqX5E-AVSJrOCfjY46_DjQbMZhLw.woff2

216.58.207.227

200 OK

12 kB

URL GET HTTP/2
fonts.gstatic.com/s/josefinsans/v32/Qw3PZQNVED7rKGKxtqIqX5E-AVSJrOCfjY46_DjQbMZhLw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintBE:D3:D2:0A:C4:57:FB:0B:D7:17:48:C8:AB:52:49:39:3E:E9:3C:60
ValidityMon, 09 Oct 2023 08:10:32 GMT - Mon, 01 Jan 2024 08:10:31 GMT

File type
Web Open Font Format (Version 2), TrueType, length 12388, version 1.0\012- data
Size
12 kB (12388 bytes)
Hash
05110e0dbae56dcfb519fccb407e0f64
74453afb44493489399f67cb047e39c24d11afe5
24a6ddc71f3d94fd9bcd29b7540b49f299a1ca78986464aeb47291fdea955e35

HTTP Headers

GET /s/josefinsans/v32/Qw3PZQNVED7rKGKxtqIqX5E-AVSJrOCfjY46_DjQbMZhLw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.xurbansimsx.com
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12388
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Oct 2023 05:15:12 GMT
expires: Wed, 30 Oct 2024 05:15:12 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 24 Aug 2023 20:50:19 GMT
content-type: font/woff2
age: 133396
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/geo/v21/CSRz4zRZluflKHpn.woff2

216.58.207.227

200 OK

8.2 kB

URL GET HTTP/3
fonts.gstatic.com/s/geo/v21/CSRz4zRZluflKHpn.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintBE:D3:D2:0A:C4:57:FB:0B:D7:17:48:C8:AB:52:49:39:3E:E9:3C:60
ValidityMon, 09 Oct 2023 08:10:32 GMT - Mon, 01 Jan 2024 08:10:31 GMT

File type
Web Open Font Format (Version 2), TrueType, length 8160, version 1.0\012- data
Size
8.2 kB (8160 bytes)
Hash
2e64db0e1c04b11ce4e83415171da58f
506f28ec578b2111131b08cfc5a3f72787f4ceb7
9a044d49ff4d1cdd4798d34eddaa9a449591c8124ab7ce8e41f5370d153870c2

HTTP Headers

GET /s/geo/v21/CSRz4zRZluflKHpn.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.xurbansimsx.com
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8160
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Oct 2023 20:00:39 GMT
expires: Sat, 26 Oct 2024 20:00:39 GMT
cache-control: public, max-age=31536000
age: 425869
last-modified: Thu, 24 Aug 2023 17:51:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

storage.ko-fi.com/cdn/cup-border.png

172.67.26.21

200 OK

6.0 kB

URL GET HTTP/2
storage.ko-fi.com/cdn/cup-border.png
IP
172.67.26.21:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
6.0 kB (6016 bytes)
Hash
07bb577348aa409cc3fe65078e8bd970
73e582aeedbbd43bae8631de33dbec607019de71
457554ad286ecf6fd5f5e79e6c883602d57638d50f96fb060f6edc19de027834

HTTP Headers

GET /cdn/cup-border.png HTTP/1.1
Host: storage.ko-fi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 01 Nov 2023 18:18:28 GMT
content-type: image/webp
content-length: 6016
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cf-bgj: imgq:100,h2pri,csam-hash
cf-polished: origFmt=png, origSize=11273
content-disposition: inline; filename="cup-border.webp"
content-md5: nt+i2V4lVEX5fauLp9jhTw==
etag: 0x8DAB5417C366016
last-modified: Sun, 23 Oct 2022 21:56:48 GMT
vary: Accept
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 10f997b2-501e-0033-16d0-00411d000000
x-ms-version: 2009-09-19
cf-cache-status: HIT
age: 2071
accept-ranges: bytes
server: cloudflare
cf-ray: 81f623f84f790b4d-OSL
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Quicksand:400,700

142.250.74.106

200 OK

923 B

URL GET HTTP/3
fonts.googleapis.com/css?family=Quicksand:400,700
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint87:BD:C2:71:54:40:3F:F2:18:79:1A:89:F5:E9:BC:63:E5:EC:57:64
ValidityMon, 09 Oct 2023 08:10:33 GMT - Mon, 01 Jan 2024 08:10:32 GMT

File type
gzip compressed data, max compression\012- data
Size
923 B (923 bytes)
Hash
a60ceaf80ab73b63ae1365e8736a8e81
30422177e78bad280ffecd098b779254b4e4527e
e5867d3b17fbfe80c53efde21fd0f6603f9897030be6b3f4abba94d7b37a66cb

HTTP Headers

GET /css?family=Quicksand:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 01 Nov 2023 18:18:28 GMT
date: Wed, 01 Nov 2023 18:18:28 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=CAM/d=0/rs=AN8SPfraOsu5efVNBOQ1KgAVxhCYpwxnBg/m=el_main_css

142.250.74.35

200 OK

4.0 kB

URL GET HTTP/3
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=CAM/d=0/rs=AN8SPfraOsu5efVNBOQ1KgAVxhCYpwxnBg/m=el_main_css
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintBE:D3:D2:0A:C4:57:FB:0B:D7:17:48:C8:AB:52:49:39:3E:E9:3C:60
ValidityMon, 09 Oct 2023 08:10:32 GMT - Mon, 01 Jan 2024 08:10:31 GMT

File type
ASCII text, with very long lines (20367), with no line terminators
Size
4.0 kB (3960 bytes)
Hash
72d3a735ccca1027f6b3afba2c93e3a7
67f8eff8d17334c59c28fc1753bf451527c7490d
c8c845f55e2346b89894ce0df8185ee182359e096bf29987d5cf1f8a7391bef1

HTTP Headers

GET /_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=CAM/d=0/rs=AN8SPfraOsu5efVNBOQ1KgAVxhCYpwxnBg/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Oct 2023 05:42:29 GMT
expires: Wed, 30 Oct 2024 05:42:29 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 15 Jul 2023 01:09:03 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
age: 131759
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.blogger.com/img/share_buttons_20_3.png

216.58.207.233

200 OK

5.1 kB

URL GET HTTP/3
www.blogger.com/img/share_buttons_20_3.png
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint3F:08:9F:49:DB:C6:54:6F:4F:5E:71:19:FC:42:98:33:57:FD:36:44
ValidityMon, 09 Oct 2023 08:03:32 GMT - Mon, 01 Jan 2024 08:03:31 GMT

File type
PNG image data, 120 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
5.1 kB (5080 bytes)
Hash
ad9999106d5f550920b586e8e1704e5a
93fd02c51166402a41f96509cd0ca3fb917877dd
3829a5b2ade7cfc416c80b8f3df71e49e68672875f025d525223978f5cee3fd3

HTTP Headers

GET /img/share_buttons_20_3.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/static/v1/widgets/3566091532-css_bundle_v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 5080
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Oct 2023 12:48:34 GMT
expires: Fri, 03 Nov 2023 12:48:34 GMT
cache-control: public, max-age=604800
last-modified: Fri, 27 Oct 2023 07:57:26 GMT
content-type: image/png
age: 451794
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.HFIt2YtY4Bg.O/d=1/exm=el_conf/ed=1/rs=AN8SPfqMM1_Y-9Hayf7A1405fcJBdTMrCw/m=el_main

142.250.74.106

200 OK

82 kB

URL GET HTTP/3
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.HFIt2YtY4Bg.O/d=1/exm=el_conf/ed=1/rs=AN8SPfqMM1_Y-9Hayf7A1405fcJBdTMrCw/m=el_main
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint87:BD:C2:71:54:40:3F:F2:18:79:1A:89:F5:E9:BC:63:E5:EC:57:64
ValidityMon, 09 Oct 2023 08:10:33 GMT - Mon, 01 Jan 2024 08:10:32 GMT

File type
ASCII text, with very long lines (1671)
Size
82 kB (82253 bytes)
Hash
40dc0a281a22452c26abf7348ef30254
ce9661952850d910c46c93c8d968dcb16d68ca40
e4a4f785fed5043d1e45d3bf8ffae12ee84b7e533241145806a7258a7fd1ee35

HTTP Headers

GET /_/translate_http/_/js/k=translate_http.tr.no.HFIt2YtY4Bg.O/d=1/exm=el_conf/ed=1/rs=AN8SPfqMM1_Y-9Hayf7A1405fcJBdTMrCw/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 82253
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Oct 2023 19:28:03 GMT
expires: Wed, 30 Oct 2024 19:28:03 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 30 Oct 2023 21:11:04 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 82225
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

lh3.googleusercontent.com/blogger_img_proxy/ALY8t1tS4BdcaURCpZBNUVdiSwjM18gOVd9sDkmbQ4lWb0s-uoAHg2Tt9SG5gGUnEWmdtbhPT2FW1RUlLSh2KXyxBA3FuHX5RQG5vLOe-VBlXaRmiVbHFG_ChxJIS_GGDb5A=s0-d

142.250.74.97

200 OK

1.7 kB

URL GET HTTP/3
lh3.googleusercontent.com/blogger_img_proxy/ALY8t1tS4BdcaURCpZBNUVdiSwjM18gOVd9sDkmbQ4lWb0s-uoAHg2Tt9SG5gGUnEWmdtbhPT2FW1RUlLSh2KXyxBA3FuHX5RQG5vLOe-VBlXaRmiVbHFG_ChxJIS_GGDb5A=s0-d
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint5E:EF:C0:E1:67:C9:67:A3:95:36:92:94:58:17:E4:59:B6:C9:8E:E5
ValidityMon, 09 Oct 2023 08:11:06 GMT - Mon, 01 Jan 2024 08:11:05 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 64x64, components 3\012- data
Size
1.7 kB (1670 bytes)
Hash
2ab5622f45c0d6940bfcb9814514e0ce
c3e7ca63b0ad29c9593a5b4f3bd5a6400f467601
3a75b4493b7015fae6a6b8fb10fd20056170529b77b189c262423e3f93c09708

HTTP Headers

GET /blogger_img_proxy/ALY8t1tS4BdcaURCpZBNUVdiSwjM18gOVd9sDkmbQ4lWb0s-uoAHg2Tt9SG5gGUnEWmdtbhPT2FW1RUlLSh2KXyxBA3FuHX5RQG5vLOe-VBlXaRmiVbHFG_ChxJIS_GGDb5A=s0-d HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
expires: Thu, 02 Nov 2023 18:18:28 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: attachment;filename="unnamed.jpg"
x-content-type-options: nosniff
date: Wed, 01 Nov 2023 18:18:28 GMT
server: fife
content-length: 1670
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.xurbansimsx.com/favicon.ico

216.239.34.21

200 OK

768 B

URL GET HTTP/2
www.xurbansimsx.com/favicon.ico
IP
216.239.34.21:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.xurbansimsx.com
FingerprintFE:F2:95:B7:77:24:DC:F0:C6:8C:5C:29:76:01:63:7C:66:B7:5F:28
ValidityMon, 30 Oct 2023 04:31:24 GMT - Sun, 28 Jan 2024 05:22:37 GMT

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
768 B (768 bytes)
Hash
f4a9aeaa9cc415d5493b799283dbe6be
ed2049ba9601a59a331e79f086e635cfea4cf706
fdffd8ca3986bb05718557368acdc3090b32df56125a60d7607f31ac04988ea3

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.xurbansimsx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/x-icon
expires: Wed, 01 Nov 2023 18:18:28 GMT
date: Wed, 01 Nov 2023 18:18:28 GMT
cache-control: private, max-age=86400
last-modified: Tue, 31 Oct 2023 09:28:15 GMT
etag: W/"9b08924efc25bea4b9ce90773202f0f69339a37bf49a02861d608797ec3af6a5"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 768
server: GSE
X-Firefox-Spdy: h2

fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg

216.58.207.227

200 OK

3.3 kB

URL GET HTTP/3
fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintBE:D3:D2:0A:C4:57:FB:0B:D7:17:48:C8:AB:52:49:39:3E:E9:3C:60
ValidityMon, 09 Oct 2023 08:10:32 GMT - Mon, 01 Jan 2024 08:10:31 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (6225), with no line terminators
Size
3.3 kB (3340 bytes)
Hash
2bd5c073a88b83ed74db88282a56ddfb
d0ebfc376f8c6a44a8d4cd216817dcd7d0c33650
ab5c23a05e39deed14d9d8262b0dce9f024f86105a27196cad37d14a3f516e09

HTTP Headers

GET /s/i/productlogos/translate/v14/24px.svg HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 3340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Oct 2023 04:23:55 GMT
expires: Tue, 29 Oct 2024 04:23:55 GMT
cache-control: public, max-age=31536000
age: 222873
last-modified: Wed, 20 Apr 2022 14:24:23 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

lh3.googleusercontent.com/blogger_img_proxy/ALY8t1s1tmCZsQx6M8Cb0pU73JAU3mGTCRWgiwRS5dUzHLnctzVjHl1s5eLuoAiesMNK9qrkDWl2tyrC6qSgMH70CZnxQlRyaDVBmz7Aj2B8f2YajNL_Mrb1g4xyEeRZsk6r=s0-d

142.250.74.97

200 OK

2.7 kB

URL GET HTTP/3
lh3.googleusercontent.com/blogger_img_proxy/ALY8t1s1tmCZsQx6M8Cb0pU73JAU3mGTCRWgiwRS5dUzHLnctzVjHl1s5eLuoAiesMNK9qrkDWl2tyrC6qSgMH70CZnxQlRyaDVBmz7Aj2B8f2YajNL_Mrb1g4xyEeRZsk6r=s0-d
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint5E:EF:C0:E1:67:C9:67:A3:95:36:92:94:58:17:E4:59:B6:C9:8E:E5
ValidityMon, 09 Oct 2023 08:11:06 GMT - Mon, 01 Jan 2024 08:11:05 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 64x64, components 3\012- data
Size
2.7 kB (2658 bytes)
Hash
6be207e696bddad9f9a1b7da4c8cc948
ba6cab2b05f5f4c277363dce13be44b35db062e7
86ee32fa76b68471b075cb164dfa8053ac6b8e55028d180595c30ec456fb3945

HTTP Headers

GET /blogger_img_proxy/ALY8t1s1tmCZsQx6M8Cb0pU73JAU3mGTCRWgiwRS5dUzHLnctzVjHl1s5eLuoAiesMNK9qrkDWl2tyrC6qSgMH70CZnxQlRyaDVBmz7Aj2B8f2YajNL_Mrb1g4xyEeRZsk6r=s0-d HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
expires: Thu, 02 Nov 2023 18:18:28 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: attachment;filename="unnamed.jpg"
x-content-type-options: nosniff
date: Wed, 01 Nov 2023 18:18:28 GMT
server: fife
content-length: 2658
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

lh3.googleusercontent.com/blogger_img_proxy/ALY8t1umfdc9GHBJYuu2UkpHyWkPgvXW2W8PeeXmrcpw_V5XZUpRs6V3nnwzpbwg_Ptq81j6Q48u2bs25JG0TpSHgD23lMMY5PmSbHV8gYB1J46Tyjbgx9egn8d_bckhH3XY=s0-d

142.250.74.97

200 OK

2.4 kB

URL GET HTTP/3
lh3.googleusercontent.com/blogger_img_proxy/ALY8t1umfdc9GHBJYuu2UkpHyWkPgvXW2W8PeeXmrcpw_V5XZUpRs6V3nnwzpbwg_Ptq81j6Q48u2bs25JG0TpSHgD23lMMY5PmSbHV8gYB1J46Tyjbgx9egn8d_bckhH3XY=s0-d
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint5E:EF:C0:E1:67:C9:67:A3:95:36:92:94:58:17:E4:59:B6:C9:8E:E5
ValidityMon, 09 Oct 2023 08:11:06 GMT - Mon, 01 Jan 2024 08:11:05 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 64x64, components 3\012- data
Size
2.4 kB (2396 bytes)
Hash
cf40b7405177c1ca33ee245b9ed5f234
3a26252337edc9fb2cabba2efef5fe442d276a2e
4a9439f7b893306a6a0ae208aff1ebed78bb5bfefbf4c8456f244c6eda1b8545

HTTP Headers

GET /blogger_img_proxy/ALY8t1umfdc9GHBJYuu2UkpHyWkPgvXW2W8PeeXmrcpw_V5XZUpRs6V3nnwzpbwg_Ptq81j6Q48u2bs25JG0TpSHgD23lMMY5PmSbHV8gYB1J46Tyjbgx9egn8d_bckhH3XY=s0-d HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
expires: Thu, 02 Nov 2023 18:18:28 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: attachment;filename="unnamed.jpg"
x-content-type-options: nosniff
date: Wed, 01 Nov 2023 18:18:28 GMT
server: fife
content-length: 2396
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

lh3.googleusercontent.com/blogger_img_proxy/ALY8t1v-TxVe-4zEUo_hLZk1j2WoH0kr1eD062eEsnlVkpAhFHOpyenNEpbAWCpP00To2XArRnyrfrq833ZLs_DdDhPvx4OCJZ4YLCt8F8wpgWWsg2kYL3YetokwAnrRssfS=s0-d

142.250.74.97

200 OK

1.9 kB

URL GET HTTP/2
lh3.googleusercontent.com/blogger_img_proxy/ALY8t1v-TxVe-4zEUo_hLZk1j2WoH0kr1eD062eEsnlVkpAhFHOpyenNEpbAWCpP00To2XArRnyrfrq833ZLs_DdDhPvx4OCJZ4YLCt8F8wpgWWsg2kYL3YetokwAnrRssfS=s0-d
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint5E:EF:C0:E1:67:C9:67:A3:95:36:92:94:58:17:E4:59:B6:C9:8E:E5
ValidityMon, 09 Oct 2023 08:11:06 GMT - Mon, 01 Jan 2024 08:11:05 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 64x64, components 3\012- data
Size
1.9 kB (1892 bytes)
Hash
97b1a327ef36b68db32855adaf2cfe0a
0a1dc5fe4b42e822db4e11f2cf0f8f69b8267201
2cd37a18ee0a3a79fb7ed0dd30833c7074606d8b01f4440a1944385714be3a42

HTTP Headers

GET /blogger_img_proxy/ALY8t1v-TxVe-4zEUo_hLZk1j2WoH0kr1eD062eEsnlVkpAhFHOpyenNEpbAWCpP00To2XArRnyrfrq833ZLs_DdDhPvx4OCJZ4YLCt8F8wpgWWsg2kYL3YetokwAnrRssfS=s0-d HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
expires: Thu, 02 Nov 2023 18:18:28 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: attachment;filename="unnamed.jpg"
x-content-type-options: nosniff
date: Wed, 01 Nov 2023 18:18:28 GMT
server: fife
content-length: 1892
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.blogger.com/dyn-css/authorization.css?targetBlogID=2988003842413464308&zx=91cf8590-39d5-4a53-a424-a1680a676605

216.58.207.233

200 OK

21 B

URL GET HTTP/3
www.blogger.com/dyn-css/authorization.css?targetBlogID=2988003842413464308&zx=91cf8590-39d5-4a53-a424-a1680a676605
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint3F:08:9F:49:DB:C6:54:6F:4F:5E:71:19:FC:42:98:33:57:FD:36:44
ValidityMon, 09 Oct 2023 08:03:32 GMT - Mon, 01 Jan 2024 08:03:31 GMT

File type
very short file (no magic)
Size
21 B (21 bytes)
Hash
68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b

HTTP Headers

GET /dyn-css/authorization.css?targetBlogID=2988003842413464308&zx=91cf8590-39d5-4a53-a424-a1680a676605 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src   'self' *.google.com *.google-analytics.com 'unsafe-inline'   'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com   *.googleapis.com uds.googleusercontent.com https://s.ytimg.com   https://i18n-cloud.appspot.com   https://www.youtube.com   www-onepick-opensocial.googleusercontent.com   www-bloggervideo-opensocial.googleusercontent.com   www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 01 Nov 2023 18:18:28 GMT
last-modified: Wed, 01 Nov 2023 18:18:28 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhJy5I3TRqklDkmaqjoCsqRcGnLhl5IN4tiOsy-sxjdpvJmHTQWM2OeOgZeLjnqRtvyaZmJ578CXPHbHI5KSUMsqHS-byOdY93GSSyjAm89I8aHkye-MOd3CkUf4X-DWVUi3kWe44X1bWS9w-40KtjoeKfhnFk9dR4Ba3PFTW_lM_EENfvYYfK0dO5VXxc/w400-h225/ertertre.png

142.250.74.97

200 OK

129 kB

URL GET HTTP/2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhJy5I3TRqklDkmaqjoCsqRcGnLhl5IN4tiOsy-sxjdpvJmHTQWM2OeOgZeLjnqRtvyaZmJ578CXPHbHI5KSUMsqHS-byOdY93GSSyjAm89I8aHkye-MOd3CkUf4X-DWVUi3kWe44X1bWS9w-40KtjoeKfhnFk9dR4Ba3PFTW_lM_EENfvYYfK0dO5VXxc/w400-h225/ertertre.png
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint5E:EF:C0:E1:67:C9:67:A3:95:36:92:94:58:17:E4:59:B6:C9:8E:E5
ValidityMon, 09 Oct 2023 08:11:06 GMT - Mon, 01 Jan 2024 08:11:05 GMT

File type
PNG image data, 399 x 225, 8-bit/color RGB, non-interlaced\012- data
Size
129 kB (129226 bytes)
Hash
339fee00d74cba9edd32c1b7458197b3
a10a256b3f99bf2d40767f6c7ce34672bc1cdae1
a3a6f3fbe27599f879dc24f743c8718b43db406967ab154e7b47436664c13adf

HTTP Headers

GET /img/b/R29vZ2xl/AVvXsEhJy5I3TRqklDkmaqjoCsqRcGnLhl5IN4tiOsy-sxjdpvJmHTQWM2OeOgZeLjnqRtvyaZmJ578CXPHbHI5KSUMsqHS-byOdY93GSSyjAm89I8aHkye-MOd3CkUf4X-DWVUi3kWe44X1bWS9w-40KtjoeKfhnFk9dR4Ba3PFTW_lM_EENfvYYfK0dO5VXxc/w400-h225/ertertre.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v6a9"
expires: Thu, 02 Nov 2023 18:18:29 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="ertertre.png"
x-content-type-options: nosniff
date: Wed, 01 Nov 2023 18:18:29 GMT
server: fife
content-length: 129226
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhG8VxwRJZacj5hXPqZ5pEoab8VhSP7AnNYwIZlJniEiHYsHgRCtsyEqPbktfr4IsVmlleyGgxd8gmMv_vNOW70vtlT9_6loKJTWuwrWthoL5XlWYOtk5iJkbl3Zm6yC5DFZ40DvmeBvoPvs6ULBnyruam6mX19gjUlmdXqRMdm_GINYgSGqayOw5-Nu0A/w400-h225/dhdgs.png

142.250.74.97

200 OK

145 kB

URL GET HTTP/2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhG8VxwRJZacj5hXPqZ5pEoab8VhSP7AnNYwIZlJniEiHYsHgRCtsyEqPbktfr4IsVmlleyGgxd8gmMv_vNOW70vtlT9_6loKJTWuwrWthoL5XlWYOtk5iJkbl3Zm6yC5DFZ40DvmeBvoPvs6ULBnyruam6mX19gjUlmdXqRMdm_GINYgSGqayOw5-Nu0A/w400-h225/dhdgs.png
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint5E:EF:C0:E1:67:C9:67:A3:95:36:92:94:58:17:E4:59:B6:C9:8E:E5
ValidityMon, 09 Oct 2023 08:11:06 GMT - Mon, 01 Jan 2024 08:11:05 GMT

File type
PNG image data, 399 x 225, 8-bit/color RGB, non-interlaced\012- data
Size
145 kB (145210 bytes)
Hash
be577044c79e72ecaba4c3a27ebb5b76
199f926cb46188322d50db60c509d0ecad107eab
5fe85de364d6b8ce84f82296cd983afda950169dc635e40e9a212ae2aabec8e2

HTTP Headers

GET /img/b/R29vZ2xl/AVvXsEhG8VxwRJZacj5hXPqZ5pEoab8VhSP7AnNYwIZlJniEiHYsHgRCtsyEqPbktfr4IsVmlleyGgxd8gmMv_vNOW70vtlT9_6loKJTWuwrWthoL5XlWYOtk5iJkbl3Zm6yC5DFZ40DvmeBvoPvs6ULBnyruam6mX19gjUlmdXqRMdm_GINYgSGqayOw5-Nu0A/w400-h225/dhdgs.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v6a4"
expires: Thu, 02 Nov 2023 18:18:29 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="dhdgs.png"
x-content-type-options: nosniff
date: Wed, 01 Nov 2023 18:18:29 GMT
server: fife
content-length: 145210
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgJXInu7DoDpYbObL18KUb0_C1pgkoThxMfXqNOYsgxPqakvrZseRLpSXcV7JASSqxziBU15SrUAfZXJbfJwVnBMLWG0BXaT-0VyZkNjRPcxVwT66SiJ9z7vmlLIaBWDfF5VEzzpELfTLiIRaBOFuJwz0dNACPR95LBpaYQ-PukwwIt61sTuVeFMTE-mPY/w400-h225/sdfdss.png

142.250.74.97

200 OK

193 kB

URL GET HTTP/2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgJXInu7DoDpYbObL18KUb0_C1pgkoThxMfXqNOYsgxPqakvrZseRLpSXcV7JASSqxziBU15SrUAfZXJbfJwVnBMLWG0BXaT-0VyZkNjRPcxVwT66SiJ9z7vmlLIaBWDfF5VEzzpELfTLiIRaBOFuJwz0dNACPR95LBpaYQ-PukwwIt61sTuVeFMTE-mPY/w400-h225/sdfdss.png
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint5E:EF:C0:E1:67:C9:67:A3:95:36:92:94:58:17:E4:59:B6:C9:8E:E5
ValidityMon, 09 Oct 2023 08:11:06 GMT - Mon, 01 Jan 2024 08:11:05 GMT

File type
PNG image data, 399 x 225, 8-bit/color RGB, non-interlaced\012- data
Size
193 kB (193295 bytes)
Hash
2488160c485862f213535b06f3eac7e9
5c932a09801ffdfd041898e98f4494f2108616eb
4e29123a19487b5038c1210c1b91c7ef30667d80a99fc7480544139b639d23dd

HTTP Headers

GET /img/b/R29vZ2xl/AVvXsEgJXInu7DoDpYbObL18KUb0_C1pgkoThxMfXqNOYsgxPqakvrZseRLpSXcV7JASSqxziBU15SrUAfZXJbfJwVnBMLWG0BXaT-0VyZkNjRPcxVwT66SiJ9z7vmlLIaBWDfF5VEzzpELfTLiIRaBOFuJwz0dNACPR95LBpaYQ-PukwwIt61sTuVeFMTE-mPY/w400-h225/sdfdss.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v6a6"
expires: Thu, 02 Nov 2023 18:18:29 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="sdfdss.png"
x-content-type-options: nosniff
date: Wed, 01 Nov 2023 18:18:29 GMT
server: fife
content-length: 193295
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhdHybCHu-cVWWO-lb2LwirQScZ-ztnMmDMf0SqkxNDAhODbZBwZ7pZApTauiG3xzYBfnqpbcgwkEYQtX1PpzbdIAaehRztWSkuFwOOq7IqsDsFoVZ0TG1kG7lNV681tfm4QtE828Ym9yA6U6tAGuy9Re83jwWm3cPRnu3GSpYflteYq28PCekAbLWxj9Y/w400-h225/soccerfeild2.png

142.250.74.97

200 OK

171 kB

URL GET HTTP/2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhdHybCHu-cVWWO-lb2LwirQScZ-ztnMmDMf0SqkxNDAhODbZBwZ7pZApTauiG3xzYBfnqpbcgwkEYQtX1PpzbdIAaehRztWSkuFwOOq7IqsDsFoVZ0TG1kG7lNV681tfm4QtE828Ym9yA6U6tAGuy9Re83jwWm3cPRnu3GSpYflteYq28PCekAbLWxj9Y/w400-h225/soccerfeild2.png
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint5E:EF:C0:E1:67:C9:67:A3:95:36:92:94:58:17:E4:59:B6:C9:8E:E5
ValidityMon, 09 Oct 2023 08:11:06 GMT - Mon, 01 Jan 2024 08:11:05 GMT

File type
PNG image data, 399 x 225, 8-bit/color RGB, non-interlaced\012- data
Size
171 kB (171374 bytes)
Hash
8aa2270427e9f86d726e26bc1de914ed
cac19db8e9e0f15fc39ea62c197f29aa9e5be5eb
aaca25d6dec64713a74974da7d4afcd7dd13558002ae6e2e44d3cf5135d6233d

HTTP Headers

GET /img/b/R29vZ2xl/AVvXsEhdHybCHu-cVWWO-lb2LwirQScZ-ztnMmDMf0SqkxNDAhODbZBwZ7pZApTauiG3xzYBfnqpbcgwkEYQtX1PpzbdIAaehRztWSkuFwOOq7IqsDsFoVZ0TG1kG7lNV681tfm4QtE828Ym9yA6U6tAGuy9Re83jwWm3cPRnu3GSpYflteYq28PCekAbLWxj9Y/w400-h225/soccerfeild2.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v6a0"
expires: Thu, 02 Nov 2023 18:18:29 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="soccerfeild2.png"
x-content-type-options: nosniff
date: Wed, 01 Nov 2023 18:18:29 GMT
server: fife
content-length: 171374
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi_x6eov9tVLiJG1QdzH6H6UA3AXrH5dgIarCegkxoNMpVq5Tfi6Za7iUrvymloX3TA6BKoftZC_hkhPIze2iph7-Ll20ko1nLheDKKC6yBc7eSkgSdwbTw4wrO-EHxjQDDM6xZ-RT2yZJysHZBeXLAsTuQo1HRSYKdu6TxdXg-XtcYCWkyBIkUFTfZaKQ/w400-h225/dfsfdsfsffs.png

142.250.74.97

200 OK

121 kB

URL GET HTTP/3
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi_x6eov9tVLiJG1QdzH6H6UA3AXrH5dgIarCegkxoNMpVq5Tfi6Za7iUrvymloX3TA6BKoftZC_hkhPIze2iph7-Ll20ko1nLheDKKC6yBc7eSkgSdwbTw4wrO-EHxjQDDM6xZ-RT2yZJysHZBeXLAsTuQo1HRSYKdu6TxdXg-XtcYCWkyBIkUFTfZaKQ/w400-h225/dfsfdsfsffs.png
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint5E:EF:C0:E1:67:C9:67:A3:95:36:92:94:58:17:E4:59:B6:C9:8E:E5
ValidityMon, 09 Oct 2023 08:11:06 GMT - Mon, 01 Jan 2024 08:11:05 GMT

File type
PNG image data, 399 x 225, 8-bit/color RGB, non-interlaced\012- data
Size
121 kB (120555 bytes)
Hash
aa7aaef63f7d8b8e9f191bef07e67d39
591c4a6825679d8efab1f5ad3ba90a20b3a45b65
03c39a14451d5eb5edcf226f84045418d2b3b627eb1e34515b4d9edbb68fb7cd

HTTP Headers

GET /img/b/R29vZ2xl/AVvXsEi_x6eov9tVLiJG1QdzH6H6UA3AXrH5dgIarCegkxoNMpVq5Tfi6Za7iUrvymloX3TA6BKoftZC_hkhPIze2iph7-Ll20ko1nLheDKKC6yBc7eSkgSdwbTw4wrO-EHxjQDDM6xZ-RT2yZJysHZBeXLAsTuQo1HRSYKdu6TxdXg-XtcYCWkyBIkUFTfZaKQ/w400-h225/dfsfdsfsffs.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v69e"
expires: Thu, 02 Nov 2023 18:18:29 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="dfsfdsfsffs.png"
x-content-type-options: nosniff
date: Wed, 01 Nov 2023 18:18:29 GMT
server: fife
content-length: 120555
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png

142.250.74.35

200 OK

910 B

URL GET HTTP/3
www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintBE:D3:D2:0A:C4:57:FB:0B:D7:17:48:C8:AB:52:49:39:3E:E9:3C:60
ValidityMon, 09 Oct 2023 08:10:32 GMT - Mon, 01 Jan 2024 08:10:31 GMT

File type
PNG image data, 42 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
910 B (910 bytes)
Hash
efa6bb2bfe459bc6f4bdafa3db0383f6
52d15ce52fe50643e542c17812de43f4ed1b6ee0
6318394f737c66f0e2ccfcd88e3935c6667633a1b95fa29fba2b75431d55eef2

HTTP Headers

GET /images/branding/googlelogo/1x/googlelogo_color_42x16dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 910
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Oct 2023 05:14:09 GMT
expires: Wed, 30 Oct 2024 05:14:09 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/png
vary: Origin
age: 133460
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback

142.250.74.106

1.4 kB

URL
translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
Unicode text, UTF-8 text
Size
1.4 kB (1392 bytes)
Hash
a3eefe14b1b4698460d992bd1673a26b
a2fca6ebb00b8bdcca3eda88654d02d2c165b9c4
87514750a90cd70dd22c8673cfa80d804ef55840bd0755950af2118d8d218067

HTTP Headers

GET /v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback HTTP/1.1
Host: translate-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 01 Nov 2023 18:18:29 GMT
server: ESF
cache-control: private
content-length: 1392
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=CoX1kR8im8NIg4KjAJb2aMvQGPAAuGVPYXoXMsx0sNVyika6v-9UJJGFefByc2btjZhB-hDL9C4av-O-9QYdMXC-H6npJzWeFS2u6V8R0a17fBWQZM0WwalyG3SxFvpoY3qSinzsKCS8AzXvGCbc-GeH_LSPcBTQsvaYK4zyHI0; expires=Thu, 02-May-2024 18:18:29 GMT; path=/; domain=.translate-pa.googleapis.com; HttpOnly
CONSENT=PENDING+794; expires=Fri, 31-Oct-2025 18:18:29 GMT; path=/; domain=.googleapis.com; Secure
expires: Wed, 01 Nov 2023 18:18:29 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=CAM/d=0/rs=AN8SPfraOsu5efVNBOQ1KgAVxhCYpwxnBg/m=el_main_css

142.250.74.35

200 OK

4.0 kB

URL GET HTTP/3
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=CAM/d=0/rs=AN8SPfraOsu5efVNBOQ1KgAVxhCYpwxnBg/m=el_main_css
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintBE:D3:D2:0A:C4:57:FB:0B:D7:17:48:C8:AB:52:49:39:3E:E9:3C:60
ValidityMon, 09 Oct 2023 08:10:32 GMT - Mon, 01 Jan 2024 08:10:31 GMT

File type
ASCII text, with very long lines (20367), with no line terminators
Size
4.0 kB (3960 bytes)
Hash
72d3a735ccca1027f6b3afba2c93e3a7
67f8eff8d17334c59c28fc1753bf451527c7490d
c8c845f55e2346b89894ce0df8185ee182359e096bf29987d5cf1f8a7391bef1

HTTP Headers

GET /_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=CAM/d=0/rs=AN8SPfraOsu5efVNBOQ1KgAVxhCYpwxnBg/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Oct 2023 05:42:29 GMT
expires: Wed, 30 Oct 2024 05:42:29 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 15 Jul 2023 01:09:03 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
age: 131760
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate.google.com/gen204?sl=en&nca=te_ap&client=te&logld=vTE_20231030

142.250.74.46

204 No Content

0 B

URL GET HTTP/3
translate.google.com/gen204?sl=en&nca=te_ap&client=te&logld=vTE_20231030
IP
142.250.74.46:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint71:34:F9:A1:80:2F:AF:05:CB:45:8A:35:D5:48:03:3F:B3:6F:61:30
ValidityMon, 09 Oct 2023 08:04:03 GMT - Mon, 01 Jan 2024 08:04:02 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /gen204?sl=en&nca=te_ap&client=te&logld=vTE_20231030 HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: image/gif; charset=us-ascii
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 01 Nov 2023 18:18:29 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: same-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: require-trusted-types-for 'script';report-uri /_/TranslateApiHttp/cspreport, script-src 'nonce-eMPbga-CutJqPDc3ueshjg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/TranslateApiHttp/cspreport;worker-src 'self'
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: __Secure-ENID=15.SE=Vdzo8s0mG8Uzh9wIpwOa4in4krAr1VAIDM_gf7xJekSnB62TPh2igKHhwUDpiOMINeoccn0HAICE53IgZo6Y0Yi0Srin86D0lksXoZ46l0QzMhi4es_EIzeVXuMAZudAHLhYAaj299y-v0xprH5rSQoQ80DCmTtjj5vO_rhcBNo; expires=Sun, 01-Dec-2024 10:36:47 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=lax
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

cdnjs.cloudflare.com/ajax/libs/knockout/2.1.0/knockout-min.js

104.17.25.14

200 OK

13 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/knockout/2.1.0/knockout-min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://scmplayer.net/scm.html#https://www.xurbansimsx.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (625)
Size
13 kB (12965 bytes)
Hash
10fea18c666dbafc68cbff1464996427
90654270f2e1d4650a82d6087a50ce7e9b0e187b
b51f83fb92d0bd1d30751b4fbb9ba5a20385850e8906d63406fba17485333557

HTTP Headers

GET /ajax/libs/knockout/2.1.0/knockout-min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scmplayer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 01 Nov 2023 18:18:29 GMT
content-type: application/javascript; charset=utf-8
content-length: 12965
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ecf-a16e"
last-modified: Mon, 04 May 2020 16:11:59 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 489498
expires: Mon, 21 Oct 2024 18:18:29 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7bo9bsIW7tJxVk5Y7fuleoUb%2BvWrk6NxvH05Hi2cXN1rxN6lMevHx3V8eIe60i%2BLyTeOqrn%2F%2BBkacvnZwckeQQNmK6TrIC41gxL50KoupDDA0N0wZmalMSUbDKei6if%2B3lDVrtgr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 81f624015c595695-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/underscore.js/1.4.1/underscore-min.js

104.17.25.14

200 OK

4.2 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/underscore.js/1.4.1/underscore-min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://scmplayer.net/scm.html#https://www.xurbansimsx.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (13248)
Size
4.2 kB (4171 bytes)
Hash
a8167cbe4acedc5f0132f7b087c24bd0
42394e7c9142b938e1d807c643d24107d7d9d317
ab0d4345dc2801d2667ff3a0ae25926d20154ba7540f6797ad4baab4681e2fa8

HTTP Headers

GET /ajax/libs/underscore.js/1.4.1/underscore-min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scmplayer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 01 Nov 2023 18:18:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 4171
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04015-3476"
last-modified: Mon, 04 May 2020 16:17:25 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 486626
expires: Mon, 21 Oct 2024 18:18:30 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1QDnf8wPbITkdkZARUHSd1IKfh2q0%2Fs36%2FydYMSBbrFoHYaWpaYcF0uOH2IjIK56Wt10V9xmIGda5oNHkTgwmfP3wy%2Bx8YoUkUitzrPqJPHpadRZXemhJSYq7dlf1trZbIXPYiA9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 81f624019c915695-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.xurbansimsx.com/

216.239.34.21

200 OK

17 kB

URL GET HTTP/2
www.xurbansimsx.com/
IP
216.239.34.21:443
ASN
#15169 GOOGLE

Requested by
https://scmplayer.net/scm.html#https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.xurbansimsx.com
FingerprintFE:F2:95:B7:77:24:DC:F0:C6:8C:5C:29:76:01:63:7C:66:B7:5F:28
ValidityMon, 30 Oct 2023 04:31:24 GMT - Sun, 28 Jan 2024 05:22:37 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6997)
Size
17 kB (17347 bytes)
Hash
931caa2c58daa95dd82d67783588b327
744245544161c42c5013c8278299cdc13be98f94
dc3dea55f9644e24fc06b602404815580328520e6af8a406392961bc25f7944a

HTTP Headers

GET / HTTP/1.1
Host: www.xurbansimsx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scmplayer.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Wed, 01 Nov 2023 18:18:30 GMT
date: Wed, 01 Nov 2023 18:18:30 GMT
cache-control: private, max-age=0
last-modified: Tue, 31 Oct 2023 09:28:15 GMT
etag: W/"9b08924efc25bea4b9ce90773202f0f69339a37bf49a02861d608797ec3af6a5"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 17347
server: GSE
X-Firefox-Spdy: h2

www.blogger.com/static/v1/widgets/3566091532-css_bundle_v2.css

216.58.207.233

200 OK

7.8 kB

URL GET HTTP/2
www.blogger.com/static/v1/widgets/3566091532-css_bundle_v2.css
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint3F:08:9F:49:DB:C6:54:6F:4F:5E:71:19:FC:42:98:33:57:FD:36:44
ValidityMon, 09 Oct 2023 08:03:32 GMT - Mon, 01 Jan 2024 08:03:31 GMT

File type
ASCII text, with very long lines (35959)
Size
7.8 kB (7756 bytes)
Hash
1e32420a7b6ddbdcb7def8b3141c4d1e
a1be54d42ff1f95244c9653539f90318f5bc0580
a9ca837900b6ae007386d400f659c233120b8af7d93407fd6475c9180d9e83d2

HTTP Headers

GET /static/v1/widgets/3566091532-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7756
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Oct 2023 08:06:17 GMT
expires: Fri, 25 Oct 2024 08:06:17 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 26 Oct 2023 02:57:30 GMT
content-type: text/css
vary: Accept-Encoding
age: 555133
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

scmplayer.net/js/scm.js

104.21.234.156

200 OK

61 kB

URL GET HTTP/3
scmplayer.net/js/scm.js
IP
104.21.234.156:443
ASN
#13335 CLOUDFLARENET

Requested by
https://scmplayer.net/scm.html#https://www.xurbansimsx.com/
Certificate
IssuerLet's Encrypt
Subjectscmplayer.net
FingerprintB7:4D:C8:BC:8D:67:D6:0A:9A:D5:C8:78:61:1D:87:4D:3D:A3:A1:26
ValidityWed, 18 Oct 2023 17:10:54 GMT - Tue, 16 Jan 2024 17:10:53 GMT

File type
ASCII text, with very long lines (824)
Size
61 kB (61132 bytes)
Hash
ad873fc1451fe2dee392f359d34bfa39
370a5dc667a7ffa23be5a4848d39e413c0bb3c19
d0a955d92e4ab733bed33866299e256d92b724af15a59fd4e8547fac254c383a

HTTP Headers

GET /js/scm.js HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scmplayer.net/scm.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 01 Nov 2023 18:18:29 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=5284
etag: W/"5eae4c3d-14a4"
last-modified: Sun, 03 May 2020 04:44:45 GMT
x-xss-protection: 0
cache-control: max-age=14400
cf-cache-status: HIT
age: 1720
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r3alEntA3iUajvcXkBBiYFrKGWdy8dBryzPT%2BZ7QssrEZ8liszr4NbLAd5IPCyJPDGein3U6L%2FUXtIGqkjappQZX63BIaAkNNZEbRGcZz1n7ONee%2FdPfzE%2FqxncGkyIW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f6240149eb368e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.xurbansimsx.com/js/cookienotice.js

216.239.34.21

200 OK

2.0 kB

URL GET HTTP/2
www.xurbansimsx.com/js/cookienotice.js
IP
216.239.34.21:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.xurbansimsx.com
FingerprintFE:F2:95:B7:77:24:DC:F0:C6:8C:5C:29:76:01:63:7C:66:B7:5F:28
ValidityMon, 30 Oct 2023 04:31:24 GMT - Sun, 28 Jan 2024 05:22:37 GMT

File type
ASCII text
Size
2.0 kB (2026 bytes)
Hash
a705132a2174f88e196ec3610d68faa8
3bad57a48d973a678fec600d45933010f6edc659
068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568

HTTP Headers

GET /js/cookienotice.js HTTP/1.1
Host: www.xurbansimsx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Wed, 01 Nov 2023 18:18:30 GMT
expires: Wed, 08 Nov 2023 18:18:30 GMT
cache-control: public, max-age=604800
last-modified: Wed, 01 Nov 2023 06:51:32 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
X-Firefox-Spdy: h2

scmplayer.net/js/binding/slider.js

104.21.234.156

200 OK

6.9 kB

URL GET HTTP/3
scmplayer.net/js/binding/slider.js
IP
104.21.234.156:443
ASN
#13335 CLOUDFLARENET

Requested by
https://scmplayer.net/scm.html#https://www.xurbansimsx.com/
Certificate
IssuerLet's Encrypt
Subjectscmplayer.net
FingerprintB7:4D:C8:BC:8D:67:D6:0A:9A:D5:C8:78:61:1D:87:4D:3D:A3:A1:26
ValidityWed, 18 Oct 2023 17:10:54 GMT - Tue, 16 Jan 2024 17:10:53 GMT

File type
ASCII text, with very long lines (392)
Size
6.9 kB (6941 bytes)
Hash
14a83b7a0fe9a77a3ac66dd7413b9f1f
cbbecf600c3b3ae783b76884db24e83814f3ca02
7ae65aa4faa0a0f9af2b70fd581a3baa2d551bdc86ea2314f5f3be3da9ede8ab

HTTP Headers

GET /js/binding/slider.js HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scmplayer.net/scm.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 01 Nov 2023 18:18:29 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1385
etag: W/"5eae4c3d-569"
last-modified: Sun, 03 May 2020 04:44:45 GMT
x-xss-protection: 0
cache-control: max-age=14400
cf-cache-status: HIT
age: 6767
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Eu%2BgLYNVZKYRyK1Ti3I8tfjKAuMUN0n4bfoJ%2BpMu8LVJBX5YQJw8qqYGGfl%2F%2BatiErzeuB4wEFt7GEwZdBWN3DpXFerWAwB1vN%2FGdvtlk8b5W0Sm73pO%2FCwRen21%2FQ7o"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f6240149f1368e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

resources.blogblog.com/img/icon18_edit_allbkg.gif

216.58.207.233

200 OK

162 B

URL GET HTTP/2
resources.blogblog.com/img/icon18_edit_allbkg.gif
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint3F:08:9F:49:DB:C6:54:6F:4F:5E:71:19:FC:42:98:33:57:FD:36:44
ValidityMon, 09 Oct 2023 08:03:32 GMT - Mon, 01 Jan 2024 08:03:31 GMT

File type
GIF image data, version 89a, 18 x 18\012- data
Size
162 B (162 bytes)
Hash
c991641178ff05adf0d004298b5eafa9
d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b

HTTP Headers

GET /img/icon18_edit_allbkg.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 162
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Oct 2023 23:51:37 GMT
expires: Thu, 02 Nov 2023 23:51:37 GMT
cache-control: public, max-age=604800
last-modified: Wed, 25 Oct 2023 21:56:15 GMT
content-type: image/gif
age: 498413
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

1.bp.blogspot.com/-bKcFlX1YlTQ/YTPZzpN89KI/AAAAAAAABVs/WFjTQa6oOl8lMpMUxE6W0CZgX-tEJrJvgCLcBGAsYHQ/s960/teespringstore.png

142.250.74.161

200 OK

59 kB

URL GET HTTP/2
1.bp.blogspot.com/-bKcFlX1YlTQ/YTPZzpN89KI/AAAAAAAABVs/WFjTQa6oOl8lMpMUxE6W0CZgX-tEJrJvgCLcBGAsYHQ/s960/teespringstore.png
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintE5:CE:AD:EC:C9:31:39:C3:55:73:BD:95:08:49:F5:A0:14:78:3C:B9
ValidityMon, 09 Oct 2023 08:09:09 GMT - Mon, 01 Jan 2024 08:09:08 GMT

File type
PNG image data, 960 x 350, 8-bit/color RGB, non-interlaced\012- data
Size
59 kB (58754 bytes)
Hash
11ce72c43d962e0c8c6757a06063ff93
588890d5bca8dd10f9c5e6ce9b754e7838f055e1
34f31030c91b45d439243099d325f49f745460e2ee31019f93470a005a59c50a

HTTP Headers

GET /-bKcFlX1YlTQ/YTPZzpN89KI/AAAAAAAABVs/WFjTQa6oOl8lMpMUxE6W0CZgX-tEJrJvgCLcBGAsYHQ/s960/teespringstore.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="teespringstore.png"
x-content-type-options: nosniff
server: fife
content-length: 58754
x-xss-protection: 0
date: Wed, 01 Nov 2023 15:48:17 GMT
expires: Thu, 02 Nov 2023 15:48:17 GMT
cache-control: public, max-age=86400, no-transform
age: 9013
etag: "v55c"
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

resources.blogblog.com/blogblog/data/1kt/simple/gradients_light.png

216.58.207.233

200 OK

403 B

URL GET HTTP/3
resources.blogblog.com/blogblog/data/1kt/simple/gradients_light.png
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint3F:08:9F:49:DB:C6:54:6F:4F:5E:71:19:FC:42:98:33:57:FD:36:44
ValidityMon, 09 Oct 2023 08:03:32 GMT - Mon, 01 Jan 2024 08:03:31 GMT

File type
PNG image data, 20 x 1100, 8-bit/color RGBA, non-interlaced\012- data
Size
403 B (403 bytes)
Hash
4f7de2e6afefb125b1f14fa5cda610ee
57a145f234b504a73f9d55cf39f2231a04719456
ecb30886406e3f776ff7bc3834de849944471e626ff148bed2fa389d02866044

HTTP Headers

GET /blogblog/data/1kt/simple/gradients_light.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 403
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Oct 2023 23:16:22 GMT
expires: Fri, 03 Nov 2023 23:16:22 GMT
cache-control: public, max-age=604800
last-modified: Fri, 27 Oct 2023 16:58:05 GMT
content-type: image/png
age: 414128
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/geo/v21/CSRz4zRZluflKHpn.woff2

216.58.207.227

200 OK

8.2 kB

URL GET HTTP/3
fonts.gstatic.com/s/geo/v21/CSRz4zRZluflKHpn.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintBE:D3:D2:0A:C4:57:FB:0B:D7:17:48:C8:AB:52:49:39:3E:E9:3C:60
ValidityMon, 09 Oct 2023 08:10:32 GMT - Mon, 01 Jan 2024 08:10:31 GMT

File type
Web Open Font Format (Version 2), TrueType, length 8160, version 1.0\012- data
Size
8.2 kB (8160 bytes)
Hash
2e64db0e1c04b11ce4e83415171da58f
506f28ec578b2111131b08cfc5a3f72787f4ceb7
9a044d49ff4d1cdd4798d34eddaa9a449591c8124ab7ce8e41f5370d153870c2

HTTP Headers

GET /s/geo/v21/CSRz4zRZluflKHpn.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.xurbansimsx.com
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8160
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Oct 2023 20:00:39 GMT
expires: Sat, 26 Oct 2024 20:00:39 GMT
cache-control: public, max-age=31536000
age: 425871
last-modified: Thu, 24 Aug 2023 17:51:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

scmplayer.net/js/lib/require/text.js

104.21.234.156

200 OK

14 kB

URL GET HTTP/3
scmplayer.net/js/lib/require/text.js
IP
104.21.234.156:443
ASN
#13335 CLOUDFLARENET

Requested by
https://scmplayer.net/scm.html#https://www.xurbansimsx.com/
Certificate
IssuerLet's Encrypt
Subjectscmplayer.net
FingerprintB7:4D:C8:BC:8D:67:D6:0A:9A:D5:C8:78:61:1D:87:4D:3D:A3:A1:26
ValidityWed, 18 Oct 2023 17:10:54 GMT - Tue, 16 Jan 2024 17:10:53 GMT

File type
ASCII text, with very long lines (733)
Size
14 kB (14327 bytes)
Hash
9503dcdd09f0fd5a2629f6d76133b749
568101b8906443b8d75cc332f937f021c1f9e8d0
b7769c54ea9b2e8c8dd1fcd494dc726f73f69c01ccbfe32a57779af6d17d27ad

HTTP Headers

GET /js/lib/require/text.js HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scmplayer.net/scm.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 01 Nov 2023 18:18:29 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=12340
etag: W/"5eae4c3d-3034"
last-modified: Sun, 03 May 2020 04:44:45 GMT
x-xss-protection: 0
cache-control: max-age=14400
cf-cache-status: HIT
age: 1779
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RzpMIhvbliN06665JQWQ%2BkR96%2BO8Q6bBCOtgP35Q4hyrwqQWhx6HLEjPhL57F5R4JjD9UYhz1tlk1UR3NUkS9Ai93lIaRdwC0qLOhGGV5PxaiYGw%2BbF%2BAoHk7BR0JdKL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f6240139d0368e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

storage.ko-fi.com/cdn/cup-border.png

172.67.26.21

200 OK

6.0 kB

URL GET HTTP/2
storage.ko-fi.com/cdn/cup-border.png
IP
172.67.26.21:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
6.0 kB (6016 bytes)
Hash
07bb577348aa409cc3fe65078e8bd970
73e582aeedbbd43bae8631de33dbec607019de71
457554ad286ecf6fd5f5e79e6c883602d57638d50f96fb060f6edc19de027834

HTTP Headers

GET /cdn/cup-border.png HTTP/1.1
Host: storage.ko-fi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 01 Nov 2023 18:18:30 GMT
content-type: image/webp
content-length: 6016
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cf-bgj: imgq:100,h2pri,csam-hash
cf-polished: origFmt=png, origSize=11273
content-disposition: inline; filename="cup-border.webp"
content-md5: nt+i2V4lVEX5fauLp9jhTw==
etag: 0x8DAB5417C366016
last-modified: Sun, 23 Oct 2022 21:56:48 GMT
vary: Accept
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 10f997b2-501e-0033-16d0-00411d000000
x-ms-version: 2009-09-19
cf-cache-status: HIT
age: 2073
accept-ranges: bytes
server: cloudflare
cf-ray: 81f624041fce0b4d-OSL
X-Firefox-Spdy: h2

scmplayer.net/script.js

104.21.234.156

200 OK

5.9 kB

URL GET HTTP/3
scmplayer.net/script.js
IP
104.21.234.156:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerLet's Encrypt
Subjectscmplayer.net
FingerprintB7:4D:C8:BC:8D:67:D6:0A:9A:D5:C8:78:61:1D:87:4D:3D:A3:A1:26
ValidityWed, 18 Oct 2023 17:10:54 GMT - Tue, 16 Jan 2024 17:10:53 GMT

File type
exported SGML document, ASCII text, with very long lines (978)
Size
5.9 kB (5935 bytes)
Hash
c2b4d5ae510c3b1690f5282632ef706d
c32eb6f6f65dabb2fcaf1e8fafee68412395e2b9
2d2d41d73b49bb943083674f6370e9c334fda32d2fcc25be7b345f44d15dd1fd

HTTP Headers

GET /script.js HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xurbansimsx.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 01 Nov 2023 18:18:30 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=6496
etag: W/"5fb7e6e6-1960"
last-modified: Fri, 20 Nov 2020 15:55:18 GMT
x-xss-protection: 0
cache-control: max-age=14400
cf-cache-status: HIT
age: 6657
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6iKxkS6I2Gp9fywJD8qhHp3uotJchWSO0WrCqxW002DOPwU%2BcXfNB43qdx8lIP39AknPY8dYtDn9Z4SNPQc6jPrTjKSfwldQ6kW7%2B2YCe%2Fb9i1ti%2F3J6sZYYg6FkpMRp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f62403dea7368e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/quicksand/v31/6xKtdSZaM9iE8KbpRA_hK1QN.woff2

216.58.207.227

200 OK

28 kB

URL GET HTTP/3
fonts.gstatic.com/s/quicksand/v31/6xKtdSZaM9iE8KbpRA_hK1QN.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintBE:D3:D2:0A:C4:57:FB:0B:D7:17:48:C8:AB:52:49:39:3E:E9:3C:60
ValidityMon, 09 Oct 2023 08:10:32 GMT - Mon, 01 Jan 2024 08:10:31 GMT

File type
Web Open Font Format (Version 2), TrueType, length 28064, version 1.0\012- data
Size
28 kB (28064 bytes)
Hash
314d6364bbee6681d0b2364ee3555e2e
c5aab803abe36bf664d7b7e2a3731cd849337006
5a42c91e1ecc9b09346a1520d9a6f98074c13eebfb1cc87c4e82e5992beb685b

HTTP Headers

GET /s/quicksand/v31/6xKtdSZaM9iE8KbpRA_hK1QN.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.xurbansimsx.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28064
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Oct 2023 05:14:10 GMT
expires: Wed, 30 Oct 2024 05:14:10 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:22:14 GMT
content-type: font/woff2
age: 133460
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

scmplayer.net/js/lib/soundmanager/soundmanager2-nodebug-jsmin.js

104.21.234.156

200 OK

46 kB

URL GET HTTP/3
scmplayer.net/js/lib/soundmanager/soundmanager2-nodebug-jsmin.js
IP
104.21.234.156:443
ASN
#13335 CLOUDFLARENET

Requested by
https://scmplayer.net/scm.html#https://www.xurbansimsx.com/
Certificate
IssuerLet's Encrypt
Subjectscmplayer.net
FingerprintB7:4D:C8:BC:8D:67:D6:0A:9A:D5:C8:78:61:1D:87:4D:3D:A3:A1:26
ValidityWed, 18 Oct 2023 17:10:54 GMT - Tue, 16 Jan 2024 17:10:53 GMT

File type
ASCII text, with very long lines (24442)
Size
46 kB (46326 bytes)
Hash
8c46873c9b56ee79fc4fe9d5f57850b6
4d1eb37eed902d1d5b1528977dcaf70c8d082a17
a04691f930435d25babfbbc3ba86e1b3e47360d22672d538006c7950f366f916

HTTP Headers

GET /js/lib/soundmanager/soundmanager2-nodebug-jsmin.js HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scmplayer.net/scm.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 01 Nov 2023 18:18:29 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=34853
etag: W/"5eae4c3d-8825"
last-modified: Sun, 03 May 2020 04:44:45 GMT
x-xss-protection: 0
cache-control: max-age=14400
cf-cache-status: HIT
age: 508
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S5Nj2NiZfo%2BhDyut2q6CcviUop%2FxtQApNM3XqdFZcntCeNEfBE9ZAIIsYq7%2FhSiA0ty9dt77dRwoMKgOfUhM0g5OhmXVw%2BcHxjKdDdBHISEi31PsEakaYr00fQP3nUfA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f623ffceee368e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

lh3.googleusercontent.com/blogger_img_proxy/ALY8t1v-TxVe-4zEUo_hLZk1j2WoH0kr1eD062eEsnlVkpAhFHOpyenNEpbAWCpP00To2XArRnyrfrq833ZLs_DdDhPvx4OCJZ4YLCt8F8wpgWWsg2kYL3YetokwAnrRssfS=s0-d

142.250.74.97

200 OK

1.9 kB

URL GET HTTP/2
lh3.googleusercontent.com/blogger_img_proxy/ALY8t1v-TxVe-4zEUo_hLZk1j2WoH0kr1eD062eEsnlVkpAhFHOpyenNEpbAWCpP00To2XArRnyrfrq833ZLs_DdDhPvx4OCJZ4YLCt8F8wpgWWsg2kYL3YetokwAnrRssfS=s0-d
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint5E:EF:C0:E1:67:C9:67:A3:95:36:92:94:58:17:E4:59:B6:C9:8E:E5
ValidityMon, 09 Oct 2023 08:11:06 GMT - Mon, 01 Jan 2024 08:11:05 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 64x64, components 3\012- data
Size
1.9 kB (1892 bytes)
Hash
97b1a327ef36b68db32855adaf2cfe0a
0a1dc5fe4b42e822db4e11f2cf0f8f69b8267201
2cd37a18ee0a3a79fb7ed0dd30833c7074606d8b01f4440a1944385714be3a42

HTTP Headers

GET /blogger_img_proxy/ALY8t1v-TxVe-4zEUo_hLZk1j2WoH0kr1eD062eEsnlVkpAhFHOpyenNEpbAWCpP00To2XArRnyrfrq833ZLs_DdDhPvx4OCJZ4YLCt8F8wpgWWsg2kYL3YetokwAnrRssfS=s0-d HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: attachment;filename="unnamed.jpg"
x-content-type-options: nosniff
server: fife
content-length: 1892
x-xss-protection: 0
date: Wed, 01 Nov 2023 18:18:28 GMT
expires: Thu, 02 Nov 2023 18:18:28 GMT
cache-control: public, max-age=86400, no-transform
content-type: image/jpeg
vary: Origin
age: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

lh3.googleusercontent.com/blogger_img_proxy/ALY8t1umfdc9GHBJYuu2UkpHyWkPgvXW2W8PeeXmrcpw_V5XZUpRs6V3nnwzpbwg_Ptq81j6Q48u2bs25JG0TpSHgD23lMMY5PmSbHV8gYB1J46Tyjbgx9egn8d_bckhH3XY=s0-d

142.250.74.97

200 OK

2.4 kB

URL GET HTTP/3
lh3.googleusercontent.com/blogger_img_proxy/ALY8t1umfdc9GHBJYuu2UkpHyWkPgvXW2W8PeeXmrcpw_V5XZUpRs6V3nnwzpbwg_Ptq81j6Q48u2bs25JG0TpSHgD23lMMY5PmSbHV8gYB1J46Tyjbgx9egn8d_bckhH3XY=s0-d
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint5E:EF:C0:E1:67:C9:67:A3:95:36:92:94:58:17:E4:59:B6:C9:8E:E5
ValidityMon, 09 Oct 2023 08:11:06 GMT - Mon, 01 Jan 2024 08:11:05 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 64x64, components 3\012- data
Size
2.4 kB (2396 bytes)
Hash
cf40b7405177c1ca33ee245b9ed5f234
3a26252337edc9fb2cabba2efef5fe442d276a2e
4a9439f7b893306a6a0ae208aff1ebed78bb5bfefbf4c8456f244c6eda1b8545

HTTP Headers

GET /blogger_img_proxy/ALY8t1umfdc9GHBJYuu2UkpHyWkPgvXW2W8PeeXmrcpw_V5XZUpRs6V3nnwzpbwg_Ptq81j6Q48u2bs25JG0TpSHgD23lMMY5PmSbHV8gYB1J46Tyjbgx9egn8d_bckhH3XY=s0-d HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: attachment;filename="unnamed.jpg"
x-content-type-options: nosniff
server: fife
content-length: 2396
x-xss-protection: 0
date: Wed, 01 Nov 2023 18:18:28 GMT
expires: Thu, 02 Nov 2023 18:18:28 GMT
cache-control: public, max-age=86400, no-transform
content-type: image/jpeg
vary: Origin
age: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ko-fi.com/widgets/widget_2.js

172.67.26.21

200 OK

3.8 kB

URL GET HTTP/2
ko-fi.com/widgets/widget_2.js
IP
172.67.26.21:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT

File type
gzip compressed data, from Unix\012- data
Size
3.8 kB (3795 bytes)
Hash
58c549824b59edf157b1ebcd49eb44e8
21dc412064bdad23ec17aa636dfa1bcbb1e0898a
1369061e3f44343b01e6f3cb1b3304cc94a83c6147dbaadcdda34234232bd6a2

HTTP Headers

GET /widgets/widget_2.js HTTP/1.1
Host: ko-fi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 01 Nov 2023 18:18:27 GMT
content-type: application/x-javascript
cf-bgj: minify
cf-polished: origSize=3629
etag: W/"0d610aeafcda1:0"
last-modified: Wed, 01 Nov 2023 10:39:24 GMT
referrer-policy: strict-origin-when-cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 35
server: cloudflare
cf-ray: 81f623f3fcf50b4d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

lh3.googleusercontent.com/blogger_img_proxy/ALY8t1tS4BdcaURCpZBNUVdiSwjM18gOVd9sDkmbQ4lWb0s-uoAHg2Tt9SG5gGUnEWmdtbhPT2FW1RUlLSh2KXyxBA3FuHX5RQG5vLOe-VBlXaRmiVbHFG_ChxJIS_GGDb5A=s0-d

142.250.74.97

200 OK

1.7 kB

URL GET HTTP/3
lh3.googleusercontent.com/blogger_img_proxy/ALY8t1tS4BdcaURCpZBNUVdiSwjM18gOVd9sDkmbQ4lWb0s-uoAHg2Tt9SG5gGUnEWmdtbhPT2FW1RUlLSh2KXyxBA3FuHX5RQG5vLOe-VBlXaRmiVbHFG_ChxJIS_GGDb5A=s0-d
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint5E:EF:C0:E1:67:C9:67:A3:95:36:92:94:58:17:E4:59:B6:C9:8E:E5
ValidityMon, 09 Oct 2023 08:11:06 GMT - Mon, 01 Jan 2024 08:11:05 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 64x64, components 3\012- data
Size
1.7 kB (1670 bytes)
Hash
2ab5622f45c0d6940bfcb9814514e0ce
c3e7ca63b0ad29c9593a5b4f3bd5a6400f467601
3a75b4493b7015fae6a6b8fb10fd20056170529b77b189c262423e3f93c09708

HTTP Headers

GET /blogger_img_proxy/ALY8t1tS4BdcaURCpZBNUVdiSwjM18gOVd9sDkmbQ4lWb0s-uoAHg2Tt9SG5gGUnEWmdtbhPT2FW1RUlLSh2KXyxBA3FuHX5RQG5vLOe-VBlXaRmiVbHFG_ChxJIS_GGDb5A=s0-d HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: attachment;filename="unnamed.jpg"
x-content-type-options: nosniff
server: fife
content-length: 1670
x-xss-protection: 0
date: Wed, 01 Nov 2023 18:18:28 GMT
expires: Thu, 02 Nov 2023 18:18:28 GMT
cache-control: public, max-age=86400, no-transform
content-type: image/jpeg
vary: Origin
age: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.blogger.com/img/share_buttons_20_3.png

216.58.207.233

200 OK

5.1 kB

URL GET HTTP/3
www.blogger.com/img/share_buttons_20_3.png
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint3F:08:9F:49:DB:C6:54:6F:4F:5E:71:19:FC:42:98:33:57:FD:36:44
ValidityMon, 09 Oct 2023 08:03:32 GMT - Mon, 01 Jan 2024 08:03:31 GMT

File type
PNG image data, 120 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
5.1 kB (5080 bytes)
Hash
ad9999106d5f550920b586e8e1704e5a
93fd02c51166402a41f96509cd0ca3fb917877dd
3829a5b2ade7cfc416c80b8f3df71e49e68672875f025d525223978f5cee3fd3

HTTP Headers

GET /img/share_buttons_20_3.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/static/v1/widgets/3566091532-css_bundle_v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 5080
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Oct 2023 12:48:34 GMT
expires: Fri, 03 Nov 2023 12:48:34 GMT
cache-control: public, max-age=604800
last-modified: Fri, 27 Oct 2023 07:57:26 GMT
content-type: image/png
age: 451796
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.HFIt2YtY4Bg.O/d=1/exm=el_conf/ed=1/rs=AN8SPfqMM1_Y-9Hayf7A1405fcJBdTMrCw/m=el_main

142.250.74.106

200 OK

82 kB

URL GET HTTP/3
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.HFIt2YtY4Bg.O/d=1/exm=el_conf/ed=1/rs=AN8SPfqMM1_Y-9Hayf7A1405fcJBdTMrCw/m=el_main
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint87:BD:C2:71:54:40:3F:F2:18:79:1A:89:F5:E9:BC:63:E5:EC:57:64
ValidityMon, 09 Oct 2023 08:10:33 GMT - Mon, 01 Jan 2024 08:10:32 GMT

File type
ASCII text, with very long lines (1671)
Size
82 kB (82253 bytes)
Hash
40dc0a281a22452c26abf7348ef30254
ce9661952850d910c46c93c8d968dcb16d68ca40
e4a4f785fed5043d1e45d3bf8ffae12ee84b7e533241145806a7258a7fd1ee35

HTTP Headers

GET /_/translate_http/_/js/k=translate_http.tr.no.HFIt2YtY4Bg.O/d=1/exm=el_conf/ed=1/rs=AN8SPfqMM1_Y-9Hayf7A1405fcJBdTMrCw/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 82253
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Oct 2023 19:28:03 GMT
expires: Wed, 30 Oct 2024 19:28:03 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 30 Oct 2023 21:11:04 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 82227
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ajax.googleapis.com/ajax/libs/jqueryui/1.8.23/jquery-ui.min.js

142.250.74.42

200 OK

52 kB

URL GET HTTP/3
ajax.googleapis.com/ajax/libs/jqueryui/1.8.23/jquery-ui.min.js
IP
142.250.74.42:443
ASN
#15169 GOOGLE

Requested by
https://scmplayer.net/scm.html#https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint87:BD:C2:71:54:40:3F:F2:18:79:1A:89:F5:E9:BC:63:E5:EC:57:64
ValidityMon, 09 Oct 2023 08:10:33 GMT - Mon, 01 Jan 2024 08:10:32 GMT

File type
ASCII text, with very long lines (64651)
Size
52 kB (51646 bytes)
Hash
3667ec0d9975a9580b9e5f3c577e8d07
429282063ca7f3bae9797d70a6f09f2e3e05458a
b0414cd9a63cee7af991c13817e46d30190ac41a8711cdae78718da6d380e572

HTTP Headers

GET /ajax/libs/jqueryui/1.8.23/jquery-ui.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scmplayer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 51646
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Oct 2023 05:18:06 GMT
expires: Wed, 30 Oct 2024 05:18:06 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 133224
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

scmplayer.net/js/view/player.html

104.21.234.156

200 OK

678 B

URL GET HTTP/3
scmplayer.net/js/view/player.html
IP
104.21.234.156:443
ASN
#13335 CLOUDFLARENET

Requested by
https://scmplayer.net/scm.html#https://www.xurbansimsx.com/
Certificate
IssuerLet's Encrypt
Subjectscmplayer.net
FingerprintB7:4D:C8:BC:8D:67:D6:0A:9A:D5:C8:78:61:1D:87:4D:3D:A3:A1:26
ValidityWed, 18 Oct 2023 17:10:54 GMT - Tue, 16 Jan 2024 17:10:53 GMT

File type
HTML document, ASCII text
Size
678 B (678 bytes)
Hash
45efb80a65d5a39b95996318d22d5a0c
453993fb0b51a9598298be729a8858158967d933
5e8400a5d3955d64a6bfa91f319c191176798129bab395c3e267159ba4bc3b55

HTTP Headers

GET /js/view/player.html HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scmplayer.net/scm.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 01 Nov 2023 18:18:30 GMT
content-type: text/html
last-modified: Sun, 03 May 2020 04:44:45 GMT
vary: Accept-Encoding
x-xss-protection: 0
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oCaqt%2FBPv%2BvCBFEu%2FizKLiGmlgQg4c5B1ci35bJp4uD27OpfzCDPGI3dq9eGkO%2BGbqiqc%2B0v5OfUzOys5bXaIOlkOzH%2FYOnAk5qHlLSyy4JB7uENjm3WNv7oa3tPv%2F1Y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81f624028c3d368e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg

216.58.207.227

200 OK

3.3 kB

URL GET HTTP/3
fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintBE:D3:D2:0A:C4:57:FB:0B:D7:17:48:C8:AB:52:49:39:3E:E9:3C:60
ValidityMon, 09 Oct 2023 08:10:32 GMT - Mon, 01 Jan 2024 08:10:31 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (6225), with no line terminators
Size
3.3 kB (3340 bytes)
Hash
2bd5c073a88b83ed74db88282a56ddfb
d0ebfc376f8c6a44a8d4cd216817dcd7d0c33650
ab5c23a05e39deed14d9d8262b0dce9f024f86105a27196cad37d14a3f516e09

HTTP Headers

GET /s/i/productlogos/translate/v14/24px.svg HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 3340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Oct 2023 04:23:55 GMT
expires: Tue, 29 Oct 2024 04:23:55 GMT
cache-control: public, max-age=31536000
age: 222875
last-modified: Wed, 20 Apr 2022 14:24:23 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png

142.250.74.35

200 OK

910 B

URL GET HTTP/3
www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintBE:D3:D2:0A:C4:57:FB:0B:D7:17:48:C8:AB:52:49:39:3E:E9:3C:60
ValidityMon, 09 Oct 2023 08:10:32 GMT - Mon, 01 Jan 2024 08:10:31 GMT

File type
PNG image data, 42 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
910 B (910 bytes)
Hash
efa6bb2bfe459bc6f4bdafa3db0383f6
52d15ce52fe50643e542c17812de43f4ed1b6ee0
6318394f737c66f0e2ccfcd88e3935c6667633a1b95fa29fba2b75431d55eef2

HTTP Headers

GET /images/branding/googlelogo/1x/googlelogo_color_42x16dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 910
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Oct 2023 05:14:09 GMT
expires: Wed, 30 Oct 2024 05:14:09 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/png
vary: Origin
age: 133461
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/images/branding/product/2x/translate_24dp.png

142.250.74.35

200 OK

1.8 kB

URL GET HTTP/3
www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintBE:D3:D2:0A:C4:57:FB:0B:D7:17:48:C8:AB:52:49:39:3E:E9:3C:60
ValidityMon, 09 Oct 2023 08:10:32 GMT - Mon, 01 Jan 2024 08:10:31 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1842 bytes)
Hash
c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82

HTTP Headers

GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=CAM/d=0/rs=AN8SPfraOsu5efVNBOQ1KgAVxhCYpwxnBg/m=el_main_css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Oct 2023 05:14:09 GMT
expires: Wed, 30 Oct 2024 05:14:09 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
vary: Origin
age: 133461
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback

142.250.74.106

1.4 kB

URL
translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
Unicode text, UTF-8 text
Size
1.4 kB (1392 bytes)
Hash
a3eefe14b1b4698460d992bd1673a26b
a2fca6ebb00b8bdcca3eda88654d02d2c165b9c4
87514750a90cd70dd22c8673cfa80d804ef55840bd0755950af2118d8d218067

HTTP Headers

GET /v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback HTTP/1.1
Host: translate-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 01 Nov 2023 18:18:30 GMT
server: ESF
cache-control: private
content-length: 1392
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=fL9Ckm8weI6f8bMBIP18jFxLhOK2563zvldtsN0AcSRIPIkFdb_bcmr4vhx8K--045ODmwzVY5reMk2sn3cVbSQL93FxkIT_hid5aIaitIFm6sdJszvXQKDwo58qVcXciAAA-oj-lFzSeWL_Y7yifwVk1AQapXf2SJ3rgLiu8C0; expires=Thu, 02-May-2024 18:18:30 GMT; path=/; domain=.translate-pa.googleapis.com; HttpOnly
CONSENT=PENDING+542; expires=Fri, 31-Oct-2025 18:18:30 GMT; path=/; domain=.googleapis.com; Secure
expires: Wed, 01 Nov 2023 18:18:30 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

142.250.74.97

200 OK

121 kB

URL GET HTTP/3
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi_x6eov9tVLiJG1QdzH6H6UA3AXrH5dgIarCegkxoNMpVq5Tfi6Za7iUrvymloX3TA6BKoftZC_hkhPIze2iph7-Ll20ko1nLheDKKC6yBc7eSkgSdwbTw4wrO-EHxjQDDM6xZ-RT2yZJysHZBeXLAsTuQo1HRSYKdu6TxdXg-XtcYCWkyBIkUFTfZaKQ/w400-h225/dfsfdsfsffs.png
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint5E:EF:C0:E1:67:C9:67:A3:95:36:92:94:58:17:E4:59:B6:C9:8E:E5
ValidityMon, 09 Oct 2023 08:11:06 GMT - Mon, 01 Jan 2024 08:11:05 GMT

File type
PNG image data, 399 x 225, 8-bit/color RGB, non-interlaced\012- data
Size
121 kB (120555 bytes)
Hash
aa7aaef63f7d8b8e9f191bef07e67d39
591c4a6825679d8efab1f5ad3ba90a20b3a45b65
03c39a14451d5eb5edcf226f84045418d2b3b627eb1e34515b4d9edbb68fb7cd

HTTP Headers

GET /img/b/R29vZ2xl/AVvXsEi_x6eov9tVLiJG1QdzH6H6UA3AXrH5dgIarCegkxoNMpVq5Tfi6Za7iUrvymloX3TA6BKoftZC_hkhPIze2iph7-Ll20ko1nLheDKKC6yBc7eSkgSdwbTw4wrO-EHxjQDDM6xZ-RT2yZJysHZBeXLAsTuQo1HRSYKdu6TxdXg-XtcYCWkyBIkUFTfZaKQ/w400-h225/dfsfdsfsffs.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v69e"
expires: Thu, 02 Nov 2023 18:18:30 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="dfsfdsfsffs.png"
x-content-type-options: nosniff
date: Wed, 01 Nov 2023 18:18:30 GMT
server: fife
content-length: 120555
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate.google.com/gen204?sl=en&nca=te_ap&client=te&logld=vTE_20231030

142.250.74.46

204 No Content

0 B

URL GET HTTP/3
translate.google.com/gen204?sl=en&nca=te_ap&client=te&logld=vTE_20231030
IP
142.250.74.46:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint71:34:F9:A1:80:2F:AF:05:CB:45:8A:35:D5:48:03:3F:B3:6F:61:30
ValidityMon, 09 Oct 2023 08:04:03 GMT - Mon, 01 Jan 2024 08:04:02 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /gen204?sl=en&nca=te_ap&client=te&logld=vTE_20231030 HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: image/gif; charset=us-ascii
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 01 Nov 2023 18:18:30 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-opener-policy: same-origin
content-security-policy: require-trusted-types-for 'script';report-uri /_/TranslateApiHttp/cspreport, script-src 'nonce-D19EAwrcFbwkYZRvC0nitw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/TranslateApiHttp/cspreport;worker-src 'self'
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: __Secure-ENID=15.SE=M5InhjtXlxqycGKY9sZHxExa4NS9RxT8S5U05TPY0AGPVsYj3JD2DxEVS9xK-juBwK_pM4z11VVgT7qwZZqu8HNjYK5VhJMH8urBJHngRjtOSnLTAQ8Fjq6h42Ifg7caqHLIX4B8GOwssxUfHDXVbjF3WRFK3iepeSrKPw-5uoE; expires=Sun, 01-Dec-2024 10:36:48 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=lax
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=CAM/d=0/rs=AN8SPfraOsu5efVNBOQ1KgAVxhCYpwxnBg/m=el_main_css

142.250.74.35

200 OK

4.0 kB

URL GET HTTP/3
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=CAM/d=0/rs=AN8SPfraOsu5efVNBOQ1KgAVxhCYpwxnBg/m=el_main_css
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintBE:D3:D2:0A:C4:57:FB:0B:D7:17:48:C8:AB:52:49:39:3E:E9:3C:60
ValidityMon, 09 Oct 2023 08:10:32 GMT - Mon, 01 Jan 2024 08:10:31 GMT

File type
ASCII text, with very long lines (20367), with no line terminators
Size
4.0 kB (3960 bytes)
Hash
72d3a735ccca1027f6b3afba2c93e3a7
67f8eff8d17334c59c28fc1753bf451527c7490d
c8c845f55e2346b89894ce0df8185ee182359e096bf29987d5cf1f8a7391bef1

HTTP Headers

GET /_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=CAM/d=0/rs=AN8SPfraOsu5efVNBOQ1KgAVxhCYpwxnBg/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Oct 2023 05:42:29 GMT
expires: Wed, 30 Oct 2024 05:42:29 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 15 Jul 2023 01:09:03 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
age: 131761
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_68x28dp.png

142.250.74.35

200 OK

1.6 kB

URL GET HTTP/3
www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_68x28dp.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintBE:D3:D2:0A:C4:57:FB:0B:D7:17:48:C8:AB:52:49:39:3E:E9:3C:60
ValidityMon, 09 Oct 2023 08:10:32 GMT - Mon, 01 Jan 2024 08:10:31 GMT

File type
PNG image data, 68 x 28, 8-bit/color RGBA, non-interlaced\012- data
Size
1.6 kB (1597 bytes)
Hash
c4a931d597decd2553aac6634b766cf2
6ec84fb4a2745b4b71520241be77db1fd1013830
f56402b127698db4b4dc611a97a6f081d04c4691c60522c5912d189e37c94a9e

HTTP Headers

GET /images/branding/googlelogo/1x/googlelogo_color_68x28dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1597
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Oct 2023 05:06:59 GMT
expires: Fri, 25 Oct 2024 05:06:59 GMT
cache-control: public, max-age=31536000
age: 565891
last-modified: Fri, 30 Jun 2023 18:58:00 GMT
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate.googleapis.com/translate_static/img/loading.gif

142.250.74.106

200 OK

702 B

URL GET HTTP/3
translate.googleapis.com/translate_static/img/loading.gif
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint87:BD:C2:71:54:40:3F:F2:18:79:1A:89:F5:E9:BC:63:E5:EC:57:64
ValidityMon, 09 Oct 2023 08:10:33 GMT - Mon, 01 Jan 2024 08:10:32 GMT

File type
GIF image data, version 89a, 16 x 16\012- data
Size
702 B (702 bytes)
Hash
eefaa072b284a305c12c06608333abc2
58272721ccc1efda26eaa22354022c7c793edbb6
fb6b7bcc1ab09f27db17bcbdf5239ce1d52af34f1fc5125b3fc8528a07848d21

HTTP Headers

GET /translate_static/img/loading.gif HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 702
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Oct 2023 15:45:53 GMT
expires: Sat, 26 Oct 2024 15:45:53 GMT
cache-control: public, max-age=31536000
age: 441157
last-modified: Thu, 03 Oct 2019 10:15:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/images/cleardot.gif

142.250.74.132

200 OK

43 B

URL GET HTTP/2
www.google.com/images/cleardot.gif
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint13:D2:E3:B0:25:78:80:D7:35:78:09:81:0D:21:CE:31:CB:EF:DA:75
ValidityMon, 09 Oct 2023 08:11:26 GMT - Mon, 01 Jan 2024 08:11:25 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363

HTTP Headers

GET /images/cleardot.gif HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/gif
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 43
date: Wed, 01 Nov 2023 18:18:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Tue, 22 Oct 2019 18:30:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=CAM/d=0/rs=AN8SPfraOsu5efVNBOQ1KgAVxhCYpwxnBg/m=el_main_css

142.250.74.35

200 OK

4.0 kB

URL GET HTTP/3
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=CAM/d=0/rs=AN8SPfraOsu5efVNBOQ1KgAVxhCYpwxnBg/m=el_main_css
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintBE:D3:D2:0A:C4:57:FB:0B:D7:17:48:C8:AB:52:49:39:3E:E9:3C:60
ValidityMon, 09 Oct 2023 08:10:32 GMT - Mon, 01 Jan 2024 08:10:31 GMT

File type
ASCII text, with very long lines (20367), with no line terminators
Size
4.0 kB (3960 bytes)
Hash
72d3a735ccca1027f6b3afba2c93e3a7
67f8eff8d17334c59c28fc1753bf451527c7490d
c8c845f55e2346b89894ce0df8185ee182359e096bf29987d5cf1f8a7391bef1

HTTP Headers

GET /_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=CAM/d=0/rs=AN8SPfraOsu5efVNBOQ1KgAVxhCYpwxnBg/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Oct 2023 05:42:29 GMT
expires: Wed, 30 Oct 2024 05:42:29 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 15 Jul 2023 01:09:03 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
age: 131762
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

142.250.74.97

200 OK

145 kB

URL GET HTTP/2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhG8VxwRJZacj5hXPqZ5pEoab8VhSP7AnNYwIZlJniEiHYsHgRCtsyEqPbktfr4IsVmlleyGgxd8gmMv_vNOW70vtlT9_6loKJTWuwrWthoL5XlWYOtk5iJkbl3Zm6yC5DFZ40DvmeBvoPvs6ULBnyruam6mX19gjUlmdXqRMdm_GINYgSGqayOw5-Nu0A/w400-h225/dhdgs.png
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint5E:EF:C0:E1:67:C9:67:A3:95:36:92:94:58:17:E4:59:B6:C9:8E:E5
ValidityMon, 09 Oct 2023 08:11:06 GMT - Mon, 01 Jan 2024 08:11:05 GMT

File type
PNG image data, 399 x 225, 8-bit/color RGB, non-interlaced\012- data
Size
145 kB (145210 bytes)
Hash
be577044c79e72ecaba4c3a27ebb5b76
199f926cb46188322d50db60c509d0ecad107eab
5fe85de364d6b8ce84f82296cd983afda950169dc635e40e9a212ae2aabec8e2

HTTP Headers

GET /img/b/R29vZ2xl/AVvXsEhG8VxwRJZacj5hXPqZ5pEoab8VhSP7AnNYwIZlJniEiHYsHgRCtsyEqPbktfr4IsVmlleyGgxd8gmMv_vNOW70vtlT9_6loKJTWuwrWthoL5XlWYOtk5iJkbl3Zm6yC5DFZ40DvmeBvoPvs6ULBnyruam6mX19gjUlmdXqRMdm_GINYgSGqayOw5-Nu0A/w400-h225/dhdgs.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v6a4"
expires: Thu, 02 Nov 2023 18:18:31 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="dhdgs.png"
x-content-type-options: nosniff
date: Wed, 01 Nov 2023 18:18:31 GMT
server: fife
content-length: 145210
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

142.250.74.97

200 OK

171 kB

URL GET HTTP/2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhdHybCHu-cVWWO-lb2LwirQScZ-ztnMmDMf0SqkxNDAhODbZBwZ7pZApTauiG3xzYBfnqpbcgwkEYQtX1PpzbdIAaehRztWSkuFwOOq7IqsDsFoVZ0TG1kG7lNV681tfm4QtE828Ym9yA6U6tAGuy9Re83jwWm3cPRnu3GSpYflteYq28PCekAbLWxj9Y/w400-h225/soccerfeild2.png
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint5E:EF:C0:E1:67:C9:67:A3:95:36:92:94:58:17:E4:59:B6:C9:8E:E5
ValidityMon, 09 Oct 2023 08:11:06 GMT - Mon, 01 Jan 2024 08:11:05 GMT

File type
PNG image data, 399 x 225, 8-bit/color RGB, non-interlaced\012- data
Size
171 kB (171374 bytes)
Hash
8aa2270427e9f86d726e26bc1de914ed
cac19db8e9e0f15fc39ea62c197f29aa9e5be5eb
aaca25d6dec64713a74974da7d4afcd7dd13558002ae6e2e44d3cf5135d6233d

HTTP Headers

GET /img/b/R29vZ2xl/AVvXsEhdHybCHu-cVWWO-lb2LwirQScZ-ztnMmDMf0SqkxNDAhODbZBwZ7pZApTauiG3xzYBfnqpbcgwkEYQtX1PpzbdIAaehRztWSkuFwOOq7IqsDsFoVZ0TG1kG7lNV681tfm4QtE828Ym9yA6U6tAGuy9Re83jwWm3cPRnu3GSpYflteYq28PCekAbLWxj9Y/w400-h225/soccerfeild2.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v6a0"
expires: Thu, 02 Nov 2023 18:18:31 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="soccerfeild2.png"
x-content-type-options: nosniff
date: Wed, 01 Nov 2023 18:18:31 GMT
server: fife
content-length: 171374
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate.google.com/translate_a/element.js?cb=googleTranslateElementInit

142.250.74.46

200 OK

160 kB

URL GET HTTP/3
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP
142.250.74.46:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint71:34:F9:A1:80:2F:AF:05:CB:45:8A:35:D5:48:03:3F:B3:6F:61:30
ValidityMon, 09 Oct 2023 08:04:03 GMT - Mon, 01 Jan 2024 08:04:02 GMT

File type
gzip compressed data, max compression\012- data
Size
160 kB (160423 bytes)
Hash
42df6e848b05eae50e799f1ecddad13f
74ebcbfa5aecb9e96721eab8088f7ba157d23c3d
c645ef2066ac1c3347566eb251cb656f001d4b8b48dbb67c17eff139a7769683

HTTP Headers

GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 01 Nov 2023 18:18:30 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+622; expires=Fri, 31-Oct-2025 18:18:30 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

142.250.74.97

200 OK

193 kB

URL GET HTTP/2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgJXInu7DoDpYbObL18KUb0_C1pgkoThxMfXqNOYsgxPqakvrZseRLpSXcV7JASSqxziBU15SrUAfZXJbfJwVnBMLWG0BXaT-0VyZkNjRPcxVwT66SiJ9z7vmlLIaBWDfF5VEzzpELfTLiIRaBOFuJwz0dNACPR95LBpaYQ-PukwwIt61sTuVeFMTE-mPY/w400-h225/sdfdss.png
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint5E:EF:C0:E1:67:C9:67:A3:95:36:92:94:58:17:E4:59:B6:C9:8E:E5
ValidityMon, 09 Oct 2023 08:11:06 GMT - Mon, 01 Jan 2024 08:11:05 GMT

File type
PNG image data, 399 x 225, 8-bit/color RGB, non-interlaced\012- data
Size
193 kB (193295 bytes)
Hash
2488160c485862f213535b06f3eac7e9
5c932a09801ffdfd041898e98f4494f2108616eb
4e29123a19487b5038c1210c1b91c7ef30667d80a99fc7480544139b639d23dd

HTTP Headers

GET /img/b/R29vZ2xl/AVvXsEgJXInu7DoDpYbObL18KUb0_C1pgkoThxMfXqNOYsgxPqakvrZseRLpSXcV7JASSqxziBU15SrUAfZXJbfJwVnBMLWG0BXaT-0VyZkNjRPcxVwT66SiJ9z7vmlLIaBWDfF5VEzzpELfTLiIRaBOFuJwz0dNACPR95LBpaYQ-PukwwIt61sTuVeFMTE-mPY/w400-h225/sdfdss.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v6a6"
expires: Thu, 02 Nov 2023 18:18:31 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="sdfdss.png"
x-content-type-options: nosniff
date: Wed, 01 Nov 2023 18:18:31 GMT
server: fife
content-length: 193295
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate.googleapis.com/translate_static/img/te_ctrl3.gif

142.250.74.106

200 OK

1.4 kB

URL GET HTTP/3
translate.googleapis.com/translate_static/img/te_ctrl3.gif
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint87:BD:C2:71:54:40:3F:F2:18:79:1A:89:F5:E9:BC:63:E5:EC:57:64
ValidityMon, 09 Oct 2023 08:10:33 GMT - Mon, 01 Jan 2024 08:10:32 GMT

File type
GIF image data, version 89a, 84 x 19\012- data
Size
1.4 kB (1412 bytes)
Hash
9afe50090c0bc612953d081295eab5b1
71a4da2a622879c29176ecfa5afe1bbe3e8cfa40
d228d0256370863119c043f1e5ca8f3930f6999bd9f250434b6d8935f45dc171

HTTP Headers

GET /translate_static/img/te_ctrl3.gif HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Oct 2023 20:49:27 GMT
expires: Fri, 25 Oct 2024 20:49:27 GMT
cache-control: public, max-age=31536000
age: 509344
last-modified: Thu, 03 Oct 2019 10:15:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate.googleapis.com/translate_static/img/te_bk.gif

142.250.74.106

200 OK

848 B

URL GET HTTP/3
translate.googleapis.com/translate_static/img/te_bk.gif
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint87:BD:C2:71:54:40:3F:F2:18:79:1A:89:F5:E9:BC:63:E5:EC:57:64
ValidityMon, 09 Oct 2023 08:10:33 GMT - Mon, 01 Jan 2024 08:10:32 GMT

File type
GIF image data, version 89a, 1 x 59\012- data
Size
848 B (848 bytes)
Hash
daf9b48977041ac85a62dc9b7c16b38d
049dcb061470572d06fd83b287ebd1d96e6bb870
cb1fd0e051209c32622e91cdeda967e50d80a184b185ac6a656a807986e8eb75

HTTP Headers

GET /translate_static/img/te_bk.gif HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 848
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Oct 2023 23:28:14 GMT
expires: Sat, 26 Oct 2024 23:28:14 GMT
cache-control: public, max-age=31536000
age: 413417
last-modified: Sun, 25 Jun 2023 02:58:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.blogger.com/static/v1/v-css/3268905543-lightbox_bundle.css

216.58.207.233

200 OK

6.5 kB

URL GET HTTP/3
www.blogger.com/static/v1/v-css/3268905543-lightbox_bundle.css
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint3F:08:9F:49:DB:C6:54:6F:4F:5E:71:19:FC:42:98:33:57:FD:36:44
ValidityMon, 09 Oct 2023 08:03:32 GMT - Mon, 01 Jan 2024 08:03:31 GMT

File type
ASCII text, with very long lines (35889), with no line terminators
Size
6.5 kB (6501 bytes)
Hash
e287450e0a5c5a5625f7ba3716c1b0cf
3287eee808b2a77f7e4ea16b148f4cd173cddb66
5ee6fb081a76cfc34678b67e894a1fa91ed96857c4d94710cb1a8cea5ea1d76b

HTTP Headers

GET /static/v1/v-css/3268905543-lightbox_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6501
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Oct 2023 10:45:13 GMT
expires: Sun, 27 Oct 2024 10:45:13 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 28 Oct 2023 05:55:17 GMT
content-type: text/css
vary: Accept-Encoding
age: 372798
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.blogger.com/static/v1/jsbin/3006914629-lbx.js

216.58.207.233

200 OK

124 kB

URL GET HTTP/3
www.blogger.com/static/v1/jsbin/3006914629-lbx.js
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint3F:08:9F:49:DB:C6:54:6F:4F:5E:71:19:FC:42:98:33:57:FD:36:44
ValidityMon, 09 Oct 2023 08:03:32 GMT - Mon, 01 Jan 2024 08:03:31 GMT

File type
HTML document, ASCII text, with very long lines (1373)
Size
124 kB (123451 bytes)
Hash
c9c9cc8dc9c14c80ff4f9c8fad27f8d3
5ffdcaa7fa5ead209c606e65e1c64253f860e90f
66502fa1740ff7221f1b571342f484ee67d94e095b1a488cdd19e5b3e7fb4a87

HTTP Headers

GET /static/v1/jsbin/3006914629-lbx.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 123451
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Oct 2023 02:07:12 GMT
expires: Sat, 26 Oct 2024 02:07:12 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 27 Oct 2023 01:53:41 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 490279
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.blogger.com/static/v1/jsbin/3006914629-lbx.js

216.58.207.233

200 OK

124 kB

URL GET HTTP/3
www.blogger.com/static/v1/jsbin/3006914629-lbx.js
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint3F:08:9F:49:DB:C6:54:6F:4F:5E:71:19:FC:42:98:33:57:FD:36:44
ValidityMon, 09 Oct 2023 08:03:32 GMT - Mon, 01 Jan 2024 08:03:31 GMT

File type
HTML document, ASCII text, with very long lines (1373)
Size
124 kB (123451 bytes)
Hash
c9c9cc8dc9c14c80ff4f9c8fad27f8d3
5ffdcaa7fa5ead209c606e65e1c64253f860e90f
66502fa1740ff7221f1b571342f484ee67d94e095b1a488cdd19e5b3e7fb4a87

HTTP Headers

GET /static/v1/jsbin/3006914629-lbx.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 123451
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Oct 2023 02:07:12 GMT
expires: Sat, 26 Oct 2024 02:07:12 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 27 Oct 2023 01:53:41 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 490279
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0

142.250.74.106

200 OK

0 B

URL POST HTTP/3
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint87:BD:C2:71:54:40:3F:F2:18:79:1A:89:F5:E9:BC:63:E5:EC:57:64
ValidityMon, 09 Oct 2023 08:10:33 GMT - Mon, 01 Jan 2024 08:10:32 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-encoding,content-type,x-goog-authuser
Referer: https://www.xurbansimsx.com/
Origin: https://www.xurbansimsx.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://www.xurbansimsx.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,content-encoding,content-type,x-goog-authuser,origin
content-type: text/plain; charset=UTF-8
date: Wed, 01 Nov 2023 18:18:39 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+400; expires=Fri, 31-Oct-2025 18:18:39 GMT; path=/; domain=.googleapis.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Wed, 01 Nov 2023 18:18:39 GMT
cache-control: private

translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0

142.250.74.106

200 OK

131 B

URL POST HTTP/3
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint87:BD:C2:71:54:40:3F:F2:18:79:1A:89:F5:E9:BC:63:E5:EC:57:64
ValidityMon, 09 Oct 2023 08:10:33 GMT - Mon, 01 Jan 2024 08:10:32 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Encoding: gzip
Content-Type: application/binary
Content-Length: 325
Origin: https://www.xurbansimsx.com
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://www.xurbansimsx.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Wed, 01 Nov 2023 18:18:39 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+343; expires=Fri, 31-Oct-2025 18:18:39 GMT; path=/; domain=.googleapis.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Wed, 01 Nov 2023 18:18:39 GMT

translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0

142.250.74.106

200 OK

131 B

URL POST HTTP/3
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint87:BD:C2:71:54:40:3F:F2:18:79:1A:89:F5:E9:BC:63:E5:EC:57:64
ValidityMon, 09 Oct 2023 08:10:33 GMT - Mon, 01 Jan 2024 08:10:32 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Encoding: gzip
Content-Type: application/binary
Content-Length: 289
Origin: https://www.xurbansimsx.com
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://www.xurbansimsx.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Wed, 01 Nov 2023 18:18:40 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+688; expires=Fri, 31-Oct-2025 18:18:40 GMT; path=/; domain=.googleapis.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Wed, 01 Nov 2023 18:18:40 GMT

scmplayer.net/js/view/playlist.html

104.21.234.156

200 OK

923 B

URL GET HTTP/3
scmplayer.net/js/view/playlist.html
IP
104.21.234.156:443
ASN
#13335 CLOUDFLARENET

Requested by
https://scmplayer.net/scm.html#https://www.xurbansimsx.com/
Certificate
IssuerLet's Encrypt
Subjectscmplayer.net
FingerprintB7:4D:C8:BC:8D:67:D6:0A:9A:D5:C8:78:61:1D:87:4D:3D:A3:A1:26
ValidityWed, 18 Oct 2023 17:10:54 GMT - Tue, 16 Jan 2024 17:10:53 GMT

File type
exported SGML document, ASCII text, with very long lines (1011), with no line terminators
Size
923 B (923 bytes)
Hash
cda4adfd109786893c415857da83a38f
9c79f2b380b73063df799e288736ea831be54df1
66bb9b4d9cafe768e60e4d61ac1b09d739c0d19b9ac95bf14ed4bac7e6fc40ff

HTTP Headers

GET /js/view/playlist.html HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scmplayer.net/scm.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 01 Nov 2023 18:18:30 GMT
content-type: text/html
last-modified: Sun, 03 May 2020 08:28:11 GMT
vary: Accept-Encoding
x-xss-protection: 0
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IuMCXUgTASUHkovof06Qv6cAogbiGGikc7imrYhOjOlfRzJ5ocbg9WyxuFZdhxbNW%2FkRs23aNPFlFM8gqElS3hdI66zOE6726%2BkOnjYyWG9Z5uENg80eDQ7Ffsn%2B8S4t"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81f624028c42368e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

scmplayer.net/js/lib/require/require.js

104.21.234.156

200 OK

14 kB

URL GET HTTP/3
scmplayer.net/js/lib/require/require.js
IP
104.21.234.156:443
ASN
#13335 CLOUDFLARENET

Requested by
https://scmplayer.net/scm.html#https://www.xurbansimsx.com/
Certificate
IssuerLet's Encrypt
Subjectscmplayer.net
FingerprintB7:4D:C8:BC:8D:67:D6:0A:9A:D5:C8:78:61:1D:87:4D:3D:A3:A1:26
ValidityWed, 18 Oct 2023 17:10:54 GMT - Tue, 16 Jan 2024 17:10:53 GMT

File type
ASCII text, with very long lines (11238)
Size
14 kB (14521 bytes)
Hash
dbe85aaebf5c445fc335459062f4c252
593eb0cf2ef296738cea0dc6105383de21c3010e
6266ef98c9caf8b5e63c253af3108ba5587e7825c9a09e7a1e69a5cce100eb7c

HTTP Headers

GET /js/lib/require/require.js HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scmplayer.net/scm.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 01 Nov 2023 18:18:29 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=14736
etag: W/"5eae4c3d-3990"
last-modified: Sun, 03 May 2020 04:44:45 GMT
x-xss-protection: 0
cache-control: max-age=14400
cf-cache-status: HIT
age: 2011
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2PX2ymC5yJrnCDDPe3w4d4U1UO8jMFyc04X%2BH7hh6onoaroHyqJ5aQoTe4a09i9tem0z2ogX7ax3ZXARa4DY%2B%2F9YYMXWfm%2BL%2BrWQLRLMjrPL7OVYqMhW%2Ba9zaa1pR7uR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f623ffcef4368e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

scmplayer.net/scm.html

104.21.234.156

200 OK

4.7 kB

URL GET HTTP/3
scmplayer.net/scm.html
IP
104.21.234.156:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerLet's Encrypt
Subjectscmplayer.net
FingerprintB7:4D:C8:BC:8D:67:D6:0A:9A:D5:C8:78:61:1D:87:4D:3D:A3:A1:26
ValidityWed, 18 Oct 2023 17:10:54 GMT - Tue, 16 Jan 2024 17:10:53 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5061), with no line terminators
Size
4.7 kB (4691 bytes)
Hash
08339b7a979cee772fe6a61b3711e328
0f70d239eaf86dbabac65d7d444fcf561a70e5a0
a06ba58a34bbbb43893b168c060c205f371998ff27e470015f13a908455b5834

HTTP Headers

GET /scm.html HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 01 Nov 2023 18:18:28 GMT
content-type: text/html
last-modified: Thu, 07 May 2020 02:24:16 GMT
vary: Accept-Encoding
x-xss-protection: 0
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d1C7hIIgywwnkqjnXMmuPAXToIcdQ2x3Bn85OQQpOT4uKfkvmrcfgZpEyeZpBlSS15m%2Bw6zd5xvg6dfeRIbypWo4ZsHYDZzWAiWpjXLTcrTjZvfbg9x3KxsqkJSgBiqk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81f623f9ab8b368e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

scmplayer.net/js/lib/knockout/pauseable.js

104.21.234.156

200 OK

2.2 kB

URL GET HTTP/3
scmplayer.net/js/lib/knockout/pauseable.js
IP
104.21.234.156:443
ASN
#13335 CLOUDFLARENET

Requested by
https://scmplayer.net/scm.html#https://www.xurbansimsx.com/
Certificate
IssuerLet's Encrypt
Subjectscmplayer.net
FingerprintB7:4D:C8:BC:8D:67:D6:0A:9A:D5:C8:78:61:1D:87:4D:3D:A3:A1:26
ValidityWed, 18 Oct 2023 17:10:54 GMT - Tue, 16 Jan 2024 17:10:53 GMT

File type
ASCII text, with very long lines (2194), with no line terminators
Size
2.2 kB (2150 bytes)
Hash
5c441bbf59b0b1be6460357d7fe5a05d
f41baea40034eef881de6c722fd38d9cf7b287c6
f0ffd34b24d4d65f6144302dfd40d7a0e20f49a9d68cc65a3b7df5782dcf09ab

HTTP Headers

GET /js/lib/knockout/pauseable.js HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scmplayer.net/scm.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 01 Nov 2023 18:18:30 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=3551
etag: W/"5eae4c3d-ddf"
last-modified: Sun, 03 May 2020 04:44:45 GMT
x-xss-protection: 0
cache-control: max-age=14400
cf-cache-status: HIT
age: 1720
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=21uWp07dxh2PutD2ygSBAhMH9yxyPM0gGaalSlFcpWUA2Bpf%2BE46T2%2BsFhtcXyEO4Pev709nUlvRLAOmvc7pSK52Sz0fgCyWpqxZIHarIQL1WkHAuXVsMrWhozyD6%2BMx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f624029c49368e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

scmplayer.co/script.js

172.67.161.75

301 Moved Permanently

5.1 kB

URL GET HTTP/2
scmplayer.co/script.js
IP
172.67.161.75:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectscmplayer.co
Fingerprint68:94:7E:83:D7:9C:58:6F:A5:3D:A4:AA:EF:D5:22:46:EF:7F:E4:BE
ValidityWed, 04 Oct 2023 06:00:54 GMT - Tue, 02 Jan 2024 06:00:53 GMT

File type

Size
5.1 kB (5063 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /script.js HTTP/1.1
Host: scmplayer.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Wed, 01 Nov 2023 18:18:30 GMT
location: https://scmplayer.net/script.js
cache-control: max-age=3600
expires: Wed, 01 Nov 2023 19:18:30 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7VeEn6PMBeljB%2B4vQXBYPH5ln1FNGEyERrf1U8QubYIs%2FlNvMrdqCe33BxBjZJzT4Ebr2%2FQ%2BbRvKxSoY5Vnxk10dJO0t4k6t70I%2FiBpVKfa4xAgbUd7Ea40EPUDgQXA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f62402dc0c1c12-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

scmplayer.co/script.js

172.67.161.75

301 Moved Permanently

5.1 kB

URL GET HTTP/2
scmplayer.co/script.js
IP
172.67.161.75:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectscmplayer.co
Fingerprint68:94:7E:83:D7:9C:58:6F:A5:3D:A4:AA:EF:D5:22:46:EF:7F:E4:BE
ValidityWed, 04 Oct 2023 06:00:54 GMT - Tue, 02 Jan 2024 06:00:53 GMT

File type

Size
5.1 kB (5063 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /script.js HTTP/1.1
Host: scmplayer.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Wed, 01 Nov 2023 18:18:27 GMT
location: https://scmplayer.net/script.js
cache-control: max-age=3600
expires: Wed, 01 Nov 2023 19:18:27 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qmRcapFXoJt3wPuQX3TWbixZbmLJhQqfxstkHW2gGKr53Rh1m2%2BHBQTvm0rjmG4RNslHaeqIqE19amf3PhTi9xZpS02UPTOLzoNOU1nexn4mOTsegy2Hno6G62R1zy4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f623f479201c12-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

freehostedscripts.net/ocount.php?site=ID2725885&name=Total+Visiters

0.0.0.0

0 B

URL GET
freehostedscripts.net/ocount.php?site=ID2725885&name=Total+Visiters
IP
0.0.0.0:0
ASN
#0

Requested by
https://www.xurbansimsx.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ocount.php?site=ID2725885&name=Total+Visiters HTTP/1.1
Host: freehostedscripts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

freehostedscripts.net/ocount.php?site=ID2725885&name=Total+Visiters

0.0.0.0

0 B

URL GET
freehostedscripts.net/ocount.php?site=ID2725885&name=Total+Visiters
IP
0.0.0.0:0
ASN
#0

Requested by
https://www.xurbansimsx.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ocount.php?site=ID2725885&name=Total+Visiters HTTP/1.1
Host: freehostedscripts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

scmplayer.net/js/scm.ui.js

104.21.234.156

200 OK

1.4 kB

URL GET HTTP/3
scmplayer.net/js/scm.ui.js
IP
104.21.234.156:443
ASN
#13335 CLOUDFLARENET

Requested by
https://scmplayer.net/scm.html#https://www.xurbansimsx.com/
Certificate
IssuerLet's Encrypt
Subjectscmplayer.net
FingerprintB7:4D:C8:BC:8D:67:D6:0A:9A:D5:C8:78:61:1D:87:4D:3D:A3:A1:26
ValidityWed, 18 Oct 2023 17:10:54 GMT - Tue, 16 Jan 2024 17:10:53 GMT

File type
ASCII text, with very long lines (1396), with no line terminators
Size
1.4 kB (1380 bytes)
Hash
a22844dc93789830166eaab778cccd7c
43109ff62fd9a2b07cf3232a2109f310ba88e906
9345e022e40c7ce5092650de3c956ef75aab43de8d84b4b3b76c4647c56fa4e0

HTTP Headers

GET /js/scm.ui.js HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scmplayer.net/scm.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 01 Nov 2023 18:18:29 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1592
etag: W/"5eae4c3d-638"
last-modified: Sun, 03 May 2020 04:44:45 GMT
x-xss-protection: 0
cache-control: max-age=14400
cf-cache-status: HIT
age: 6915
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VdjlYvnidBVBCTeWMU6GNuvLpe4%2FavQ1I8Jc3sdMlBHxJdNy%2BUES7oHNba1szupJedmhLNFhfTM30N0r74YDVyO%2BRveMLVIzwZcQq6SXy5i%2BnGS8bs3aepuKkHCLQEH8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f6240149ee368e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

freehostedscripts.net/ocount.php?site=ID2725885&name=Total+Visiters

0.0.0.0

0 B

URL GET
freehostedscripts.net/ocount.php?site=ID2725885&name=Total+Visiters
IP
0.0.0.0:0
ASN
#0

Requested by
https://www.xurbansimsx.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ocount.php?site=ID2725885&name=Total+Visiters HTTP/1.1
Host: freehostedscripts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

freehostedscripts.net/ocount.php?site=ID2725885&name=Total+Visiters

0.0.0.0

0 B

URL GET
freehostedscripts.net/ocount.php?site=ID2725885&name=Total+Visiters
IP
0.0.0.0:0
ASN
#0

Requested by
https://www.xurbansimsx.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ocount.php?site=ID2725885&name=Total+Visiters HTTP/1.1
Host: freehostedscripts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

scmplayer.net/js/binding/scm.js

104.21.234.156

200 OK

2.8 kB

URL GET HTTP/3
scmplayer.net/js/binding/scm.js
IP
104.21.234.156:443
ASN
#13335 CLOUDFLARENET

Requested by
https://scmplayer.net/scm.html#https://www.xurbansimsx.com/
Certificate
IssuerLet's Encrypt
Subjectscmplayer.net
FingerprintB7:4D:C8:BC:8D:67:D6:0A:9A:D5:C8:78:61:1D:87:4D:3D:A3:A1:26
ValidityWed, 18 Oct 2023 17:10:54 GMT - Tue, 16 Jan 2024 17:10:53 GMT

File type
ASCII text, with very long lines (2811), with no line terminators
Size
2.8 kB (2787 bytes)
Hash
94f11cb56aaf8cd596d2d597f25c729a
7d5285a0a8ecae51bfd721966b0b99062564cc2b
7f1e0be192da2b54cdb4da89fe10a97ca043590a36c40035c76356cbe0b45e72

HTTP Headers

GET /js/binding/scm.js HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scmplayer.net/scm.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 01 Nov 2023 18:18:29 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=3415
etag: W/"5eae4c3d-d57"
last-modified: Sun, 03 May 2020 04:44:45 GMT
x-xss-protection: 0
cache-control: max-age=14400
cf-cache-status: HIT
age: 1823
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=REtO6Gz9lZpaGi98tX6IuZQpoltG1DoDCFcQgibIH6zerZ6YvsKhovq0o06m9HQ9lV%2BKbjEpuMpAILLPAoU5tOXG0H2%2BYBcQ3qSI6OfbPfUqoYvNL12aPlFKQXvT0CFc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f6240149f4368e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

ajax.googleapis.com/ajax/libs/jquery/1.8.2/jquery.min.js

142.250.74.42

200 OK

93 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/1.8.2/jquery.min.js
IP
142.250.74.42:443
ASN
#15169 GOOGLE

Requested by
https://scmplayer.net/scm.html#https://www.xurbansimsx.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint87:BD:C2:71:54:40:3F:F2:18:79:1A:89:F5:E9:BC:63:E5:EC:57:64
ValidityMon, 09 Oct 2023 08:10:33 GMT - Mon, 01 Jan 2024 08:10:32 GMT

File type

Size
93 kB (93435 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ajax/libs/jquery/1.8.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scmplayer.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33621
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Oct 2023 17:32:48 GMT
expires: Sun, 27 Oct 2024 17:32:48 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 348342
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

freehostedscripts.net/ocounter.php?site=5676870&e1=Online%20User&e2=Online%20Users&r=https://scmplayer.net/&wh=1280%20x%201024&a=1&pn=https://www.xurbansimsx.com/

0.0.0.0

0 B

URL GET
freehostedscripts.net/ocounter.php?site=5676870&e1=Online%20User&e2=Online%20Users&r=https://scmplayer.net/&wh=1280%20x%201024&a=1&pn=https://www.xurbansimsx.com/
IP
0.0.0.0:0
ASN
#0

Requested by
https://www.xurbansimsx.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ocounter.php?site=5676870&e1=Online%20User&e2=Online%20Users&r=https://scmplayer.net/&wh=1280%20x%201024&a=1&pn=https://www.xurbansimsx.com/ HTTP/1.1
Host: freehostedscripts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

scmplayer.net/css/scm.css

104.21.234.156

200 OK

1.5 kB

URL GET HTTP/3
scmplayer.net/css/scm.css
IP
104.21.234.156:443
ASN
#13335 CLOUDFLARENET

Requested by
https://scmplayer.net/scm.html#https://www.xurbansimsx.com/
Certificate
IssuerLet's Encrypt
Subjectscmplayer.net
FingerprintB7:4D:C8:BC:8D:67:D6:0A:9A:D5:C8:78:61:1D:87:4D:3D:A3:A1:26
ValidityWed, 18 Oct 2023 17:10:54 GMT - Tue, 16 Jan 2024 17:10:53 GMT

File type
ASCII text, with very long lines (1544), with no line terminators
Size
1.5 kB (1544 bytes)
Hash
20e5afe83c9e8237a8b06a6ad5db371e
58e3dae6753fa03b3f36fb5af678d827b186b004
4ff1b4832f53a053e5d6afc113a2c909c35e0aed483a6bc5531270b2dce613d0

HTTP Headers

GET /css/scm.css HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scmplayer.net/scm.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 01 Nov 2023 18:18:29 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=1718
etag: W/"5eae4c3d-6b6"
last-modified: Sun, 03 May 2020 04:44:45 GMT
vary: Accept-Encoding
x-xss-protection: 0
cache-control: max-age=14400
cf-cache-status: HIT
age: 6736
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iNYQ2spg5B2xuaCrPIoV9RprY3ju76aOCKoSaNPuuyc4rFf5uttXLYQyAtE%2Fn4S61xZK0FFIuoTYzyBeNmZ7fo7jOZMx3%2FMrI0CAagWdzNFlpbC3lD90uo%2FWtBqUH0p7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81f623ffceec368e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

scmplayer.net/config.js

104.21.234.156

200 OK

1.2 kB

URL GET HTTP/3
scmplayer.net/config.js
IP
104.21.234.156:443
ASN
#13335 CLOUDFLARENET

Requested by
https://scmplayer.net/scm.html#https://www.xurbansimsx.com/
Certificate
IssuerLet's Encrypt
Subjectscmplayer.net
FingerprintB7:4D:C8:BC:8D:67:D6:0A:9A:D5:C8:78:61:1D:87:4D:3D:A3:A1:26
ValidityWed, 18 Oct 2023 17:10:54 GMT - Tue, 16 Jan 2024 17:10:53 GMT

File type
ASCII text, with very long lines (1188), with no line terminators
Size
1.2 kB (1178 bytes)
Hash
a5aef2ccea3002ae5a9a15ffb2dd268e
53ebafc8a782c0303fad791459ac2a05629defbf
0fb169e01bad09dec1e95d1084ca656e44dcd466d76da29eb5b2206c2fc8b001

HTTP Headers

GET /config.js HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scmplayer.net/scm.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 01 Nov 2023 18:18:29 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1328
etag: W/"5eae4c3d-530"
last-modified: Sun, 03 May 2020 04:44:45 GMT
x-xss-protection: 0
cache-control: max-age=14400
cf-cache-status: HIT
age: 1240
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S3Ja3Ev%2FCpdGKBIDzD5YrDyrBwk5SuCj66n1aImlwH38yjpHQJy9WudiBAic%2BSeUL2sOrSDym8CvhWSqrOUkYrI7ud%2BnCW%2Bsc3AnvtRaSVCE7RyaofgCcFhVrf54VQYI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f623ffcef2368e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

scmplayer.net/js/song.js

104.21.234.156

200 OK

286 B

URL GET HTTP/3
scmplayer.net/js/song.js
IP
104.21.234.156:443
ASN
#13335 CLOUDFLARENET

Requested by
https://scmplayer.net/scm.html#https://www.xurbansimsx.com/
Certificate
IssuerLet's Encrypt
Subjectscmplayer.net
FingerprintB7:4D:C8:BC:8D:67:D6:0A:9A:D5:C8:78:61:1D:87:4D:3D:A3:A1:26
ValidityWed, 18 Oct 2023 17:10:54 GMT - Tue, 16 Jan 2024 17:10:53 GMT

File type
ASCII text, with no line terminators
Size
286 B (286 bytes)
Hash
77c39ea9896ee02008e85e07379f33c9
48fba99842f82f7e7206c4ea7c6b538116222c38
8e1d5625afaf4de2f2cc89f4684fced0e2018c90c88e927b2c2c327f8eb6b566

HTTP Headers

GET /js/song.js HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scmplayer.net/scm.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 01 Nov 2023 18:18:30 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=341
etag: W/"5eae4c3d-155"
last-modified: Sun, 03 May 2020 04:44:45 GMT
x-xss-protection: 0
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ItH24PdCI07OLFNsas1VPydWIfRN31tCwUeiqdPxizNuJbFA120RAUVSuFnt6fk8zh%2FSmsTqF8BCpNFbgKF0URSu3Sy7yxd6CcYVkNSh5%2FRpvZQswVukWCDfjyxu5v3Z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81f6240149ec368e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

scmplayer.net/css/reset.css

104.21.234.156

200 OK

685 B

URL GET HTTP/3
scmplayer.net/css/reset.css
IP
104.21.234.156:443
ASN
#13335 CLOUDFLARENET

Requested by
https://scmplayer.net/scm.html#https://www.xurbansimsx.com/
Certificate
IssuerLet's Encrypt
Subjectscmplayer.net
FingerprintB7:4D:C8:BC:8D:67:D6:0A:9A:D5:C8:78:61:1D:87:4D:3D:A3:A1:26
ValidityWed, 18 Oct 2023 17:10:54 GMT - Tue, 16 Jan 2024 17:10:53 GMT

File type
ASCII text, with very long lines (685), with no line terminators
Size
685 B (685 bytes)
Hash
db7fafe25581494385331383549f349c
220693553d9fcad899c43cd5dee52f5e5e893547
9f1ccf65d91fb676d79f133f17bda89b31e931c00a96322fbabe3ded104b6be7

HTTP Headers

GET /css/reset.css HTTP/1.1
Host: scmplayer.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://scmplayer.net/scm.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 01 Nov 2023 18:18:29 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=815
etag: W/"5eae4c3d-32f"
last-modified: Sun, 03 May 2020 04:44:45 GMT
vary: Accept-Encoding
x-xss-protection: 0
cache-control: max-age=14400
cf-cache-status: HIT
age: 1720
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L%2BpOOITsiuJ4ba2II8UuQ8T3GXzIbigYiVIqkujh0g8TBiCE3wpAC90dZ9Tg5pNo22cxC1OTEjza1oTFOMWhRwZOvdG8%2F2wHmA7FWGPljGhe4U2YC7p6dZAhIPZqYnct"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81f623ffceea368e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

freehostedscripts.net/ocounter.php?site=5676870&e1=Online%20User&e2=Online%20Users&r=&wh=1280%20x%201024&a=1&pn=https://www.xurbansimsx.com/

0.0.0.0

0 B

URL GET
freehostedscripts.net/ocounter.php?site=5676870&e1=Online%20User&e2=Online%20Users&r=&wh=1280%20x%201024&a=1&pn=https://www.xurbansimsx.com/
IP
0.0.0.0:0
ASN
#0

Requested by
https://www.xurbansimsx.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ocounter.php?site=5676870&e1=Online%20User&e2=Online%20Users&r=&wh=1280%20x%201024&a=1&pn=https://www.xurbansimsx.com/ HTTP/1.1
Host: freehostedscripts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xurbansimsx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (43)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash