GET assets.cs.money/faq/7f0786d998c6a11976454be4b76fc0bfbb51a8a83e1b907ca4375821a73f6ea9.png
104.20.18.108200 OK 96 kB URL GET assets.cs.money/faq/7f0786d998c6a11976454be4b76fc0bfbb51a8a83e1b907ca4375821a73f6ea9.png
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type PNG image data, 1656 x 3552, 8-bit colormap, non-interlaced
Hash 363ca6645502d0354f9e4750fa5ac5bf
0f722efec2965e0f187e226a429022cbbb67f7a3
606fb5a6099f8b40f235566cff7de648485ac74d826439de5b43b97bcffd5e6b
GET /faq/7f0786d998c6a11976454be4b76fc0bfbb51a8a83e1b907ca4375821a73f6ea9.png HTTP/1.1
Host: assets.cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:45 GMT
content-type: image/webp
content-length: 96404
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=117166
content-disposition: inline; filename="7f0786d998c6a11976454be4b76fc0bfbb51a8a83e1b907ca4375821a73f6ea9.webp"
etag: "2a3348af2f4d849c5c0b492730ebe835"
last-modified: Thu, 13 Mar 2025 10:50:14 GMT
vary: Accept
cf-cache-status: HIT
age: 1286
accept-ranges: bytes
priority: u=4,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f080d26b4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.youtube.com/embed/iBxSxVZ4kro
142.250.74.78200 OK 112 kB URL GET www.youtube.com/embed/iBxSxVZ4kro
IP 142.250.74.78:443
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint67:52:2F:AB:93:DE:39:DA:94:50:11:AE:8B:37:CB:88:8F:DC:56:7D
ValidityMon, 31 Mar 2025 08:54:37 GMT - Mon, 23 Jun 2025 08:54:36 GMT
File type HTML document, ASCII text, with very long lines (57984)
Size 112 kB (112349 bytes)
Hash b95342c4cb7df45d5cebcf4975902637
939d89e5fae368c95177637a3d375f36aede0655
20c2babe14686aabd63a7005b72b04b008817d2006164f824ea971e67faee88e
GET /embed/iBxSxVZ4kro HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 24 Apr 2025 10:53:50 GMT
strict-transport-security: max-age=31536000
origin-trial: AmhMBR6zCLzDDxpW+HfpP67BqwIknWnyMOXOQGfzYswFmJe+fgaI6XZgAzcxOrzNtP7hEDsOo1jdjFnVr2IdxQ4AAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: base-uri 'self';default-src 'self' https: blob:;font-src https: data:;img-src https: data: android-webview-video-poster:;media-src blob: https:;object-src 'none';report-uri /cspreport/common;script-src 'nonce-hOpYbFO0HGkjFqWVYOZS_A' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';style-src https: 'unsafe-inline'
content-security-policy: require-trusted-types-for 'script'
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=-Ky1WnMh4jQ; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
__Secure-ROLLOUT_TOKEN=CL_P7cWsk-vCmAEQwfK-w8DwjAMYwfK-w8DwjAM%3D; Domain=youtube.com; Expires=Tue, 21-Oct-2025 10:53:50 GMT; Path=/; Secure; HttpOnly; SameSite=none; Partitioned
VISITOR_INFO1_LIVE=lur3blLKJ_0; Domain=.youtube.com; Expires=Tue, 21-Oct-2025 10:53:50 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxIhEh0SGwsMDg8QERITFBUWFxgZGhscHR4fICEiIyQlJiBt; Domain=.youtube.com; Expires=Tue, 21-Oct-2025 10:53:50 GMT; Path=/; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET cs.money/faq/item-status/
104.20.18.108303 See Other 508 kB URL User Request GET cs.money/faq/item-status/
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
Size 508 kB (508180 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /faq/item-status/ HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 303 See Other
date: Thu, 24 Apr 2025 10:53:44 GMT
set-cookie: steamid=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT; httponly
region=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT
auction__faq_banner=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT
registered_user=true; path=/; expires=Fri, 24 Apr 2026 10:53:44 GMT
content-security-policy: script-src 'self' 'unsafe-eval' *.cs.money 'nonce-BXZPCg5lI+Z4JY3QBz+m6A==' https://owox.cs.money https://support.cs.money https://tagmanager.google.com https://connect.facebook.net https://analytics.tiktok.com https://metrics.hotjar.io https://bat.bing.com https://tr.snapchat.com https://gleam.io https://sc-static.net https://script.hotjar.com https://*.yandex.ru https://*.yandex.com;worker-src 'self' data: blob:;object-src;img-src 'self' https: data: blob:;default-src 'self';connect-src 'self' *.cs.money https://widget.trustpilot.com https://owox.cs.money https://api.amplitude.com https://esputnik.com https://analytics.tiktok.com https://analytics.pangle-ads.com https://bat.bing.com https://google.com https://*.googlesyndication.com https://*.doubleclick.net https://*.google.com https://*.esputnik.com https://*.snapchat.com https://*.yandex.ru https://*.yandex.com https://*.hotjar.io https://*.facebook.com https://*.google-analytics.com https://*.sentry.io https://*.grafana.net wss://*.hotjar.com wss://support.cs.money *.google.com *.google.ad *.google.ae *.google.com.af *.google.com.ag *.google.al *.google.am *.google.co.ao *.google.com.ar *.google.as *.google.at *.google.com.au *.google.az *.google.ba *.google.com.bd *.google.be *.google.bf *.google.bg *.google.com.bh *.google.bi *.google.bj *.google.com.bn *.google.com.bo *.google.com.br *.google.bs *.google.bt *.google.co.bw *.google.by *.google.com.bz *.google.ca *.google.cd *.google.cf *.google.cg *.google.ch *.google.ci *.google.co.ck *.google.cl *.google.cm *.google.cn *.google.com.co *.google.co.cr *.google.com.cu *.google.cv *.google.com.cy *.google.cz *.google.de *.google.dj *.google.dk *.google.dm *.google.com.do *.google.dz *.google.com.ec *.google.ee *.google.com.eg *.google.es *.google.com.et *.google.fi *.google.com.fj *.google.fm *.google.fr *.google.ga *.google.ge *.google.gg *.google.com.gh *.google.com.gi *.google.gl *.google.gm *.google.gr *.google.com.gt *.google.gy *.google.com.hk *.google.hn *.google.hr *.google.ht *.google.hu *.google.co.id *.google.ie *.google.co.il *.google.im *.google.co.in *.google.iq *.google.is *.google.it *.google.je *.google.com.jm *.google.jo *.google.co.jp *.google.co.ke *.google.com.kh *.google.ki *.google.kg *.google.co.kr *.google.com.kw *.google.kz *.google.la *.google.com.lb *.google.li *.google.lk *.google.co.ls *.google.lt *.google.lu *.google.lv *.google.com.ly *.google.co.ma *.google.md *.google.me *.google.mg *.google.mk *.google.ml *.google.com.mm *.google.mn *.google.com.mt *.google.mu *.google.mv *.google.mw *.google.com.mx *.google.com.my *.google.co.mz *.google.com.na *.google.com.ng *.google.com.ni *.google.ne *.google.nl *.google.no *.google.com.np *.google.nr *.google.nu *.google.co.nz *.google.com.om *.google.com.pa *.google.com.pe *.google.com.pg *.google.com.ph *.google.com.pk *.google.pl *.google.pn *.google.com.pr *.google.ps *.google.pt *.google.com.py *.google.com.qa *.google.ro *.google.ru *.google.rw *.google.com.sa *.google.com.sb *.google.sc *.google.se *.google.com.sg *.google.sh *.google.si *.google.sk *.google.com.sl *.google.sn *.google.so *.google.sm *.google.sr *.google.st *.google.com.sv *.google.td *.google.tg *.google.co.th *.google.com.tj *.google.tl *.google.tm *.google.tn *.google.to *.google.com.tr *.google.tt *.google.com.tw *.google.co.tz *.google.com.ua *.google.co.ug *.google.co.uk *.google.com.uy *.google.co.uz *.google.com.vc *.google.co.ve *.google.co.vi *.google.com.vn *.google.vu *.google.ws *.google.rs *.google.co.za *.google.co.zm *.google.co.zw *.google.cat;media-src 'self' https://www.googletagmanager.com https://assets.cs.money/ https://hl.xplay.cloud/ https://hl-dev.xplay.cloud;form-action 'self' https://facebook.com https://www.facebook.com;font-src 'self' https://fonts.gstatic.com;frame-ancestors 'self' https://*.cs.money https://*.yandex.ru https://*.yandex.com https://*.webvisor.com http://*.webvisor.com;frame-src https://www.youtube.com https://www.facebook.com/ https://cashier.bridgerpay.com/ https://widget.trustpilot.com https://gleam.io https://www.googletagmanager.com https://*.doubleclick.net https://*.snapchat.com https://*.sumsub.com https://*.yandex.ru https://*.yandex.com;base-uri 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
x-content-type-options: nosniff
location: /no/faq/
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 93550f01eccf0b69-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
POST www.youtube.com/youtubei/v1/log_event?alt=json
142.250.74.78200 OK 28 B URL POST www.youtube.com/youtubei/v1/log_event?alt=json
IP 142.250.74.78:443
Requested by https://www.youtube.com/embed/iBxSxVZ4kro
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint67:52:2F:AB:93:DE:39:DA:94:50:11:AE:8B:37:CB:88:8F:DC:56:7D
ValidityMon, 31 Mar 2025 08:54:37 GMT - Mon, 23 Jun 2025 08:54:36 GMT
Hash 5e1fa6fd9abd549a576f3f24b1d3c8d4
d5335d7f7d33be6a0b663f03b2df4df2521c4a87
d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1745492034288
Content-Type: application/json
X-Goog-Visitor-Id: CgtsdXIzYmxMS0pfMCi-sKjABjInCgJOTxIhEh0SGwsMDg8QERITFBUWFxgZGhscHR4fICEiIyQlJiBt
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20250420.21.00
X-YouTube-Device: cbr=Firefox&cbrver=96.0&ceng=Gecko&cengver=96.0&cos=X11&cplatform=DESKTOP
X-YouTube-Page-CL: 749652930
X-YouTube-Page-Label: youtube.player.web_20250420_21_RC00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1745492030974&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C760%2C428&vis=1&wgl=true&ca_type=image
Content-Length: 11582
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/iBxSxVZ4kro
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Thu, 24 Apr 2025 10:53:54 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET cs.money/_next/static/chunks/main-7b9e56c6d6eb205eecbf.js
104.20.18.108200 OK 78 kB URL GET cs.money/_next/static/chunks/main-7b9e56c6d6eb205eecbf.js
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 5f1525d7862102c708a0d8185bb30d37
410ac6d07a800600a302a0bc46d486e415da9a43
57d4320c7132ad778ee64cdbe19e29b6711a5c6bf3ea026b8efedc097c4bebb6
GET /_next/static/chunks/main-7b9e56c6d6eb205eecbf.js HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:45 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Thu, 19 Dec 2024 15:55:45 GMT
etag: W/"12edb-193dfa1d3e8"
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 10691252
priority: u=3,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f073b6cb4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET assets.cs.money/faq/4d60673b025faba88194f47a11e62109af805a8f7522ea4acee33f35cbbbf55f.png
104.20.18.108200 OK 97 kB URL GET assets.cs.money/faq/4d60673b025faba88194f47a11e62109af805a8f7522ea4acee33f35cbbbf55f.png
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type PNG image data, 1656 x 3552, 8-bit colormap, non-interlaced
Hash 89d32814f292d8c8e61a6a16fb79afcd
d1bb8c441fc4241b7c3f15cec4477ecefd0af5e4
4f8a3b951cafb4911fefc892ac2d7e5bc23e9360897e250659ed3bc36051c10a
GET /faq/4d60673b025faba88194f47a11e62109af805a8f7522ea4acee33f35cbbbf55f.png HTTP/1.1
Host: assets.cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:45 GMT
content-type: image/webp
content-length: 96646
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=114259
content-disposition: inline; filename="4d60673b025faba88194f47a11e62109af805a8f7522ea4acee33f35cbbbf55f.webp"
etag: "ff9be329761d34857b4e47f06084ae3c"
last-modified: Thu, 13 Mar 2025 10:50:14 GMT
vary: Accept
cf-cache-status: HIT
age: 1286
accept-ranges: bytes
priority: u=4,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f080d2cb4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET cs.money/img/favicon.ico
104.20.18.108200 OK 4.7 kB IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type MS Windows icon resource - 1 icon, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel
Hash 497b08b3d012ae7f3481c09ac5599d85
5b496b89ed14eca8e68eddb458143f4efe5e44f9
52338fdd35d85dfd4d883539ccf782d9d23798b85615ec8e72522fd28fb5b3ad
GET /img/favicon.ico HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true; group_id=13df623f-d5e6-4315-addd-94f9a2d633f5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:49 GMT
content-type: image/x-icon
cache-control: public, max-age=0
last-modified: Wed, 23 Apr 2025 14:08:52 GMT
etag: W/"1242-19662fae520"
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 71738
priority: u=6,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f229cd5b4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET cs.money/_next/static/css/kqu-yk-da70fbf2406bab50eda8.css
104.20.18.108200 OK 8.0 kB URL GET cs.money/_next/static/css/kqu-yk-da70fbf2406bab50eda8.css
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type ASCII text, with very long lines (7969), with no line terminators
Hash c4927ba94793da728f8d9c35d56dbafd
57a180f31591c18b29772887a96fc1c1b55f9a56
ac1ae0aa7ff7140e08a70a438a85f4ad796c2b69cd1a30a7a9785974ef8ab2d7
GET /_next/static/css/kqu-yk-da70fbf2406bab50eda8.css HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:45 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Thu, 24 Apr 2025 10:39:36 GMT
etag: W/"1f21-1966761aa40"
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 603
priority: u=2,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f071b42b4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.youtube.com/s/player/6450230e/player_ias.vflset/en_US/base.js
142.250.74.78200 OK 2.6 MB URL GET www.youtube.com/s/player/6450230e/player_ias.vflset/en_US/base.js
IP 142.250.74.78:443
Requested by https://www.youtube.com/embed/iBxSxVZ4kro
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint67:52:2F:AB:93:DE:39:DA:94:50:11:AE:8B:37:CB:88:8F:DC:56:7D
ValidityMon, 31 Mar 2025 08:54:37 GMT - Mon, 23 Jun 2025 08:54:36 GMT
File type JavaScript source, ASCII text, with very long lines (534)
Size 2.6 MB (2555800 bytes)
Hash 93e453140133a0135dab42252349eabc
b7b21834625ef0251012f9f18ca110c9eb9021f7
81e6145a16e150b490c929fd464ac38b5670c788efa292df498b15482b1e4cdb
GET /s/player/6450230e/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/iBxSxVZ4kro
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 663294
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Apr 2025 07:29:13 GMT
expires: Tue, 21 Apr 2026 07:29:13 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Apr 2025 04:08:53 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 271477
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.google.com/js/th/0_c8eXGm9CcQQgRpw14bPa6qp95su8afljG9yvcjQME.js
142.250.178.36200 OK 59 kB URL GET www.google.com/js/th/0_c8eXGm9CcQQgRpw14bPa6qp95su8afljG9yvcjQME.js
IP 142.250.178.36:443
Requested by https://www.youtube.com/embed/iBxSxVZ4kro
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint67:52:2F:AB:93:DE:39:DA:94:50:11:AE:8B:37:CB:88:8F:DC:56:7D
ValidityMon, 31 Mar 2025 08:54:37 GMT - Mon, 23 Jun 2025 08:54:36 GMT
File type JavaScript source, ASCII text, with very long lines (57531)
Hash a18eb8afe39268c00f52258e738a171e
9574808b4d6b8734825f13d4cb9e1b6be32438bd
d3f73c7971a6f42710420469c35e1b3daeaaa7de6cbbc69f9631bdcaf72340c1
GET /js/th/0_c8eXGm9CcQQgRpw14bPa6qp95su8afljG9yvcjQME.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 22346
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Apr 2025 05:38:21 GMT
expires: Thu, 23 Apr 2026 05:38:21 GMT
cache-control: public, max-age=31536000
age: 105331
last-modified: Mon, 07 Apr 2025 13:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET cs.money/_next/static/chunks/NotificationManager.889bc3da3e3e54326176.js
104.20.18.108200 OK 1.6 kB URL GET cs.money/_next/static/chunks/NotificationManager.889bc3da3e3e54326176.js
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type JavaScript source, ASCII text, with very long lines (1552), with no line terminators
Hash 261634e851c1b141e14d9cc2f0e4f148
4da2b5991d639798ec8fd4bca0dc10715dd623f6
fb972de35bd78b9700f10939bb27d4d4ec72481ceaa09efa17ec7de45cde64c2
GET /_next/static/chunks/NotificationManager.889bc3da3e3e54326176.js HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true; group_id=13df623f-d5e6-4315-addd-94f9a2d633f5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:49 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Mon, 17 Mar 2025 18:16:00 GMT
etag: W/"610-195a551db00"
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 3200002
priority: u=3,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f1d69ceb4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
POST metrics.cs.money/api/4/envelope/?sentry_key=b9549680c85c11eb9f5572ddd0708824&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.74.1
104.20.18.108200 OK 2 B URL POST metrics.cs.money/api/4/envelope/?sentry_key=b9549680c85c11eb9f5572ddd0708824&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.74.1
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /api/4/envelope/?sentry_key=b9549680c85c11eb9f5572ddd0708824&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.74.1 HTTP/1.1
Host: metrics.cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cs.money/
Content-Type: application/json
Content-Length: 435
Origin: https://cs.money
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:49 GMT
content-type: application/json
content-length: 2
access-control-allow-origin: https://cs.money
vary: origin, access-control-request-method, access-control-request-headers
access-control-expose-headers: x-sentry-error,x-sentry-rate-limits,retry-after
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-max-age: 1728000
cf-cache-status: DYNAMIC
priority: u=4,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f1fefabb4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET assets.cs.money/faq/e1e02aa4fc3f8e0556a7ed544a358f1c39cd09171882076d8599bc8758937ce8.png
104.20.18.108200 OK 187 kB URL GET assets.cs.money/faq/e1e02aa4fc3f8e0556a7ed544a358f1c39cd09171882076d8599bc8758937ce8.png
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type PNG image data, 1656 x 3552, 8-bit/color RGBA, non-interlaced
Size 187 kB (186581 bytes)
Hash a39e5a43898785f53644fb2b32c31b40
af8f2b092d162298265d74ed74c290e734ca49f6
0d0d84da46a18dfd5c66bc2c88e3d7882e60c020cca9e67e8015679ced1f529c
GET /faq/e1e02aa4fc3f8e0556a7ed544a358f1c39cd09171882076d8599bc8758937ce8.png HTTP/1.1
Host: assets.cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:45 GMT
content-type: image/png
content-length: 186581
cf-bgj: imgq:100,h2pri
cf-polished: origSize=213088, status=webp_bigger
etag: "93644cf2a0cab0888ed8214e6c6bf5c9"
last-modified: Thu, 13 Mar 2025 10:50:14 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 1286
accept-ranges: bytes
priority: u=4,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f07fce8b4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET cs.money/cdn-cgi/challenge-platform/h/g/scripts/jsd/44e6f86df4dc/main.js?
104.20.18.108200 OK 8.5 kB URL GET cs.money/cdn-cgi/challenge-platform/h/g/scripts/jsd/44e6f86df4dc/main.js?
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type JavaScript source, ASCII text, with very long lines (8455), with no line terminators
Hash 4a9ede9bb4a2e4db9abe68adea804d24
97f2f077f9d3b627e15090679d109fcb98e10b62
da645033655630da7e0cab926c916606f9182892021d6b7813a6b924030d72fc
GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/44e6f86df4dc/main.js? HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: registered_user=true; group_id=13df623f-d5e6-4315-addd-94f9a2d633f5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:49 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, stale-if-error=10800, stale-while-revalidate=10800, public
x-content-type-options: nosniff
priority: u=3,i=?0
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 93550f233e0ab4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.youtube.com/generate_204?n67Qww
142.250.74.78204 No Content 0 B URL GET www.youtube.com/generate_204?n67Qww
IP 142.250.74.78:443
Requested by https://www.youtube.com/embed/iBxSxVZ4kro
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint67:52:2F:AB:93:DE:39:DA:94:50:11:AE:8B:37:CB:88:8F:DC:56:7D
ValidityMon, 31 Mar 2025 08:54:37 GMT - Mon, 23 Jun 2025 08:54:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?n67Qww HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/iBxSxVZ4kro
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Thu, 24 Apr 2025 10:53:52 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET cs.money/_next/static/chunks/pages/faq-8d633d5e6462cf7a913e.js
104.20.18.108200 OK 21 kB URL GET cs.money/_next/static/chunks/pages/faq-8d633d5e6462cf7a913e.js
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type JavaScript source, ASCII text, with very long lines (21279), with no line terminators
Hash 9f16f27f8c84e5518c6266989f9a1cbe
202e55cfa84565263e563cadc816e3ee570376a2
27c0753a93aa2161a1048f3862386a12ceceaf2bbc2180205ba9ecb137f88dfc
GET /_next/static/chunks/pages/faq-8d633d5e6462cf7a913e.js HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:45 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Tue, 22 Apr 2025 08:41:45 GMT
etag: W/"531f-1965ca90d28"
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 178999
priority: u=3,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f073b80b4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET assets.cs.money/faq/ed373ea045500957d5e952d7f7dbba4900c4ac5588fcae544834d3a7363b5e19.png
104.20.18.108200 OK 200 kB URL GET assets.cs.money/faq/ed373ea045500957d5e952d7f7dbba4900c4ac5588fcae544834d3a7363b5e19.png
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type PNG image data, 1656 x 3552, 8-bit colormap, non-interlaced
Size 200 kB (199880 bytes)
Hash 986d75e7d919941a60c4636de9b0c84d
cbbd6f252a4b5f969a8044f866bbe8fdb5b790dd
53c703cbc295a5729d31078aafec58f9b77d393a149d5b6d53790298d5326ea4
GET /faq/ed373ea045500957d5e952d7f7dbba4900c4ac5588fcae544834d3a7363b5e19.png HTTP/1.1
Host: assets.cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:45 GMT
content-type: image/webp
content-length: 199880
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=406146
content-disposition: inline; filename="ed373ea045500957d5e952d7f7dbba4900c4ac5588fcae544834d3a7363b5e19.webp"
etag: "142a4ade3011339c929281812f128187"
last-modified: Thu, 13 Mar 2025 10:50:15 GMT
vary: Accept
cf-cache-status: HIT
age: 1286
accept-ranges: bytes
priority: u=4,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f080d1db4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET chimbachthanh.com/?param=value&1007633ds_dest_url=https://buff.163.com/%3Fparam%3Dvalue%26gad_source%3D1%26gbraid%3D0AAAAA_XaOG7FNF3kNmRp7NR96enMespWU&gclid=EAIaIQobChMI1s6RpvDvjAMVoYKDBx0MFQztEAAYASAAEgK3FfD_BwE&gclsrc=ds
104.21.16.1302 Found 508 kB URL User Request GET chimbachthanh.com/?param=value&1007633ds_dest_url=https://buff.163.com/%3Fparam%3Dvalue%26gad_source%3D1%26gbraid%3D0AAAAA_XaOG7FNF3kNmRp7NR96enMespWU&gclid=EAIaIQobChMI1s6RpvDvjAMVoYKDBx0MFQztEAAYASAAEgK3FfD_BwE&gclsrc=ds
IP 104.21.16.1:443
Certificate IssuerGoogle Trust Services
Subjectchimbachthanh.com
Fingerprint64:0A:5E:69:02:19:02:41:74:12:03:26:A8:6F:03:A4:EB:07:C2:B7
ValidityMon, 14 Apr 2025 13:44:14 GMT - Sun, 13 Jul 2025 14:42:44 GMT
Size 508 kB (508180 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert PhishTank phishing Steam
GET /?param=value&1007633ds_dest_url=https://buff.163.com/%3Fparam%3Dvalue%26gad_source%3D1%26gbraid%3D0AAAAA_XaOG7FNF3kNmRp7NR96enMespWU&gclid=EAIaIQobChMI1s6RpvDvjAMVoYKDBx0MFQztEAAYASAAEgK3FfD_BwE&gclsrc=ds HTTP/1.1
Host: chimbachthanh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 24 Apr 2025 10:53:44 GMT
content-type: text/html; charset=UTF-8
location: https://cs.money/faq/item-status/
server: cloudflare
cache-control: no-cache, no-store, must-revalidate, max-age=0
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
cf-ray: 93550f00cd507123-TLL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
OPTIONS metrics.cs.money/api/4/envelope/?sentry_key=b9549680c85c11eb9f5572ddd0708824&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.74.1
104.20.18.108204 No Content 0 B URL OPTIONS metrics.cs.money/api/4/envelope/?sentry_key=b9549680c85c11eb9f5572ddd0708824&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.74.1
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/4/envelope/?sentry_key=b9549680c85c11eb9f5572ddd0708824&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.74.1 HTTP/1.1
Host: metrics.cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://cs.money/
Origin: https://cs.money
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Thu, 24 Apr 2025 10:53:47 GMT
content-length: 0
access-control-allow-origin: https://cs.money
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-max-age: 1728000
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f165cb6712f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js
3.164.230.8200 OK 24 kB URL GET widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js
IP 3.164.230.8:443
Certificate IssuerAmazon
Subject*.trustpilot.com
Fingerprint5C:AB:2E:95:E4:51:10:BB:40:25:C7:8D:ED:DC:24:1E:43:F0:65:23
ValidityTue, 03 Dec 2024 00:00:00 GMT - Thu, 01 Jan 2026 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (23588)
Hash c43bf70191aaaffa3931cae06f621b10
5959464f9c301cb4e5a94d9bfe72d74891a93af3
c69de41dda83f00cc1b13dba90a57f25df046286ecd227bdd0c4d51d94947b61
GET /bootstrap/v5/tp.widget.bootstrap.min.js HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 7350
last-modified: Wed, 09 Oct 2024 12:04:38 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
date: Thu, 24 Apr 2025 00:16:16 GMT
cache-control: max-age=86400
etag: "7d4644d89e45fe92623bdd628e60e8dd"
x-cache: Hit from cloudfront
via: 1.1 cdd16a503d54c28f3f13bc34669e77be.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN53-P1
x-amz-cf-id: mtg2yERn7w51-pVF1rbbnI9hYY_fCAaMTy2jwy8_3E1cQC5-oNrgXw==
age: 38254
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
GET cs.money/svg/market_extension_pink.svg
104.20.18.108200 OK 522 B URL GET cs.money/svg/market_extension_pink.svg
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type SVG Scalable Vector Graphics image
Hash 807575bf3ef4cf2341536ee03239a0bc
c6c8aae05530d9ef9e34364ca70040c588d98ad7
978a987f7d64b9b592fee3ba591ac77a4153a9776c4836b6bee511ef3b0c2e26
GET /svg/market_extension_pink.svg HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:45 GMT
content-type: image/svg+xml
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=0
last-modified: Wed, 23 Apr 2025 14:08:53 GMT
etag: W/"20a-19662fae908"
content-encoding: gzip
cf-cache-status: HIT
age: 207
priority: u=4,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f079c12b4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET cs.money/_next/static/css/kqu-yk-ccda1cd88376420f500f.css
104.20.18.108200 OK 2.6 kB URL GET cs.money/_next/static/css/kqu-yk-ccda1cd88376420f500f.css
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type ASCII text, with very long lines (2617), with no line terminators
Hash e37aabbf08508c70607583bc9e7c4bb6
0c667bd16cd1bcbc0475786cca1655d14897af98
3574ae487b84c3c152d9ddbc844df5779a493016bd3085ec77310052ca0e3fca
GET /_next/static/css/kqu-yk-ccda1cd88376420f500f.css HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cs.money/no/faq/
sentry-trace: b548e82138cc4fc78241ee348d12ed81-b94b5c2c72555149-0
baggage: sentry-environment=production,sentry-release=kQU-ykOvR86abjyIFxSda,sentry-public_key=b9549680c85c11eb9f5572ddd0708824,sentry-trace_id=b548e82138cc4fc78241ee348d12ed81
DNT: 1
Connection: keep-alive
Cookie: registered_user=true; group_id=13df623f-d5e6-4315-addd-94f9a2d633f5; cf_clearance=6bDbgN6qcCaFO61t0DQfnYQEBdBt4nPq1.aFWfvRzOg-1745492030-1.2.1.1-on32X_A9WNHWVZe7ZzMFCxztK6f6pafk4kFUlBiwMl0Z2aZexUyhly8M.RZKcCFJ2RD1Cn267mfyz5VhOSYAXAlvjtdJ1QQKro9g9BFI7CxhFSuEZz2iEFcByb.fQYewdg2p1P0Btkd2gexWCm_bkJcjhmGUFIjLcUmgiGArFXxT8oFaoeKRFteGPS47jjeQrqTldcQ.CdqXZHf1AHF.NEXnPO0SZDLGUYYl17I6nxS6Fy5I7_iAvW4TAl7uPpBv0NzOgp063vDiYxQk.l35YGGjXBm2h6.uHQLLn7zhunjScugdqXkYOT.mwqc_9_Q0lGHl7XD61gTnmrPR5YgbvKIhZIhj.dUvsNRqNoWA5ZQ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:50 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Thu, 24 Apr 2025 10:39:36 GMT
etag: W/"a39-1966761aa40"
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 631
priority: u=4,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f26cd57b4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
POST metrics.cs.money/api/4/envelope/?sentry_key=b9549680c85c11eb9f5572ddd0708824&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.74.1
104.20.18.108200 OK 41 B URL POST metrics.cs.money/api/4/envelope/?sentry_key=b9549680c85c11eb9f5572ddd0708824&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.74.1
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
Hash e4407884618fd2dc2138e0729f2c17f0
6a12e7ab49ac47218283b37a665feab7f658c77d
b1cb825b6d9dc996dab22324376b1265dd3476ac726be38054d63da82798634e
POST /api/4/envelope/?sentry_key=b9549680c85c11eb9f5572ddd0708824&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.74.1 HTTP/1.1
Host: metrics.cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cs.money/
Content-Type: application/json
Content-Length: 5278
Origin: https://cs.money
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:49 GMT
content-type: application/json
content-length: 41
access-control-allow-origin: https://cs.money
vary: origin, access-control-request-method, access-control-request-headers
access-control-expose-headers: x-sentry-error,x-sentry-rate-limits,retry-after
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-max-age: 1728000
cf-cache-status: DYNAMIC
priority: u=4,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f20484db4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET cs.money/svg/google-btn.svg
104.20.18.108200 OK 880 B URL GET cs.money/svg/google-btn.svg
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type SVG Scalable Vector Graphics image
Hash e6a427bf169f0d4b42542f93142bc997
3bb607a3205f05711ca117d73477b2a71e7e4972
3385cdd204a67a60519900d1c4b12a457be3f5661e8ba422fdd173b86bc0f791
GET /svg/google-btn.svg HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:45 GMT
content-type: image/svg+xml
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=0
last-modified: Wed, 23 Apr 2025 14:08:53 GMT
etag: W/"370-19662fae908"
content-encoding: gzip
cf-cache-status: HIT
age: 206
priority: u=4,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f079c0db4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.youtube.com/s/player/6450230e/player_ias.vflset/en_US/remote.js
142.250.74.78200 OK 124 kB URL GET www.youtube.com/s/player/6450230e/player_ias.vflset/en_US/remote.js
IP 142.250.74.78:443
Requested by https://www.youtube.com/embed/iBxSxVZ4kro
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint67:52:2F:AB:93:DE:39:DA:94:50:11:AE:8B:37:CB:88:8F:DC:56:7D
ValidityMon, 31 Mar 2025 08:54:37 GMT - Mon, 23 Jun 2025 08:54:36 GMT
File type JavaScript source, ASCII text, with very long lines (543)
Size 124 kB (123985 bytes)
Hash 058494154babbbd0334051157f06b0ed
ec5ed43b9062256b903cd22fe4c9dc01afea287f
964ef4283985ba06cdf3024d13cf0837a2067885e19e4b4bdc7e5824a220a361
GET /s/player/6450230e/player_ias.vflset/en_US/remote.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/iBxSxVZ4kro
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 35822
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Apr 2025 07:36:38 GMT
expires: Tue, 21 Apr 2026 07:36:38 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Apr 2025 04:08:53 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 271034
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET cs.money/_next/static/chunks/pages/_app-343ccdd1660dca62636d.js
104.20.18.108200 OK 6.1 MB URL GET cs.money/_next/static/chunks/pages/_app-343ccdd1660dca62636d.js
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 6.1 MB (6122391 bytes)
Hash 437e67b5a8d9b1c2de3d29a55b515ca6
312323bab32aad58ba0bfa7214d9ba6bc1f88c72
3c34fbda7e2d6ceb67744959da29e0ff8dab8a12c4720e35748ec5564cfda8b9
GET /_next/static/chunks/pages/_app-343ccdd1660dca62636d.js HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:45 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Thu, 24 Apr 2025 10:39:36 GMT
etag: W/"5d6b97-1966761aa40"
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 628
priority: u=3,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f073b7ab4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET cs.money/_next/static/chunks/FeedbackModal.124433c13964e1208461.js
104.20.18.108200 OK 8.4 kB URL GET cs.money/_next/static/chunks/FeedbackModal.124433c13964e1208461.js
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type JavaScript source, ASCII text, with very long lines (8359), with no line terminators
Hash 98449dab3fcd1c26d82ef767c1b1f81d
bcffb1d98ac1606b76303e00bb8c3c14b1e2c59d
bffb7d6d64102e4a6cba99135f2e4d782d16440c5327d3238b68ddfbcc0b3e19
GET /_next/static/chunks/FeedbackModal.124433c13964e1208461.js HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true; group_id=13df623f-d5e6-4315-addd-94f9a2d633f5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:49 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 09 Apr 2025 11:00:26 GMT
etag: W/"20a7-1961a355910"
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 1141563
priority: u=3,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f1d9a42b4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
OPTIONS metrics.cs.money/api/4/envelope/?sentry_key=b9549680c85c11eb9f5572ddd0708824&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.74.1
104.20.18.108204 No Content 0 B URL OPTIONS metrics.cs.money/api/4/envelope/?sentry_key=b9549680c85c11eb9f5572ddd0708824&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.74.1
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/4/envelope/?sentry_key=b9549680c85c11eb9f5572ddd0708824&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.74.1 HTTP/1.1
Host: metrics.cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://cs.money/
Origin: https://cs.money
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 204 No Content
date: Thu, 24 Apr 2025 10:53:49 GMT
content-length: 0
access-control-allow-origin: https://cs.money
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-max-age: 1728000
cf-cache-status: DYNAMIC
priority: u=4,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f1f5e1eb4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET cs.money/_next/static/css/kqu-yk-514e4fb1f3b3f23359e3.css
104.20.18.108200 OK 781 kB URL GET cs.money/_next/static/css/kqu-yk-514e4fb1f3b3f23359e3.css
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 781 kB (780938 bytes)
Hash d9cda2bb1dcc53e279848922f0c77203
f0d751a019012d7583b618bc8db2f32ea0efbf1d
bdea67b644faa5f7724003b787fb3508f0d7019c2b36e802eb29b32ea7b73d91
GET /_next/static/css/kqu-yk-514e4fb1f3b3f23359e3.css HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:45 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Thu, 24 Apr 2025 10:39:36 GMT
etag: W/"bea8a-1966761aa40"
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 606
priority: u=2,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f071b33b4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
POST metrics.cs.money/api/4/envelope/?sentry_key=b9549680c85c11eb9f5572ddd0708824&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.74.1
104.20.18.108200 OK 41 B URL POST metrics.cs.money/api/4/envelope/?sentry_key=b9549680c85c11eb9f5572ddd0708824&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.74.1
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
Hash f17a706c1bb0f28f0110addd5416886f
d8c26d5e9bd775e891cc77af9c9f8b40b132ac5d
702f3070f0f93df979f72520306a738c9e01f1a1f370be9e717e3428746d78ed
POST /api/4/envelope/?sentry_key=b9549680c85c11eb9f5572ddd0708824&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.74.1 HTTP/1.1
Host: metrics.cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cs.money/
Content-Type: application/json
Content-Length: 4941
Origin: https://cs.money
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:49 GMT
content-type: application/json
content-length: 41
access-control-allow-origin: https://cs.money
vary: origin, access-control-request-method, access-control-request-headers
access-control-expose-headers: x-sentry-error,x-sentry-rate-limits,retry-after
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-max-age: 1728000
cf-cache-status: DYNAMIC
priority: u=4,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f1fffc2b4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
POST jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.178.106200 OK 100 kB URL POST jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.178.106:443
Requested by https://www.youtube.com/embed/iBxSxVZ4kro
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT
Hash 1582efaad8ba4cb2142793e2eba446ca
d911bfd3d5a9edc3d8cdf0b68406d9bb4a366307
24ebd19f86eaf682c95d79c50528ae977929b1fe66d6eb9ac97ff256e87fd1c4
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 24 Apr 2025 10:53:52 GMT
server: ESF
content-length: 45736
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
104.20.18.108200 OK 508 kB IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (65428), with no line terminators
Size 508 kB (508180 bytes)
Hash 9e79848aa07ae6eaf4c4d559ba60fe32
b089511bd86a65cd9f15c365874498dea1cb602b
d3ae4f201343c1035c376632934f30e7c2ce7ab2d9505a6266ff6d2440150529
GET /no/faq/ HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: registered_user=true
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:45 GMT
content-type: text/html; charset=utf-8
set-cookie: steamid=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT; httponly
region=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT
auction__faq_banner=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT
registered_user=true; path=/; expires=Fri, 24 Apr 2026 10:53:44 GMT
content-security-policy: script-src 'self' 'unsafe-eval' *.cs.money 'nonce-YT1zq5HyS4Dz2NCm5pDPZA==' https://owox.cs.money https://support.cs.money https://tagmanager.google.com https://connect.facebook.net https://analytics.tiktok.com https://metrics.hotjar.io https://bat.bing.com https://tr.snapchat.com https://gleam.io https://sc-static.net https://script.hotjar.com https://*.yandex.ru https://*.yandex.com;worker-src 'self' data: blob:;object-src;img-src 'self' https: data: blob:;default-src 'self';connect-src 'self' *.cs.money https://widget.trustpilot.com https://owox.cs.money https://api.amplitude.com https://esputnik.com https://analytics.tiktok.com https://analytics.pangle-ads.com https://bat.bing.com https://google.com https://*.googlesyndication.com https://*.doubleclick.net https://*.google.com https://*.esputnik.com https://*.snapchat.com https://*.yandex.ru https://*.yandex.com https://*.hotjar.io https://*.facebook.com https://*.google-analytics.com https://*.sentry.io https://*.grafana.net wss://*.hotjar.com wss://support.cs.money *.google.com *.google.ad *.google.ae *.google.com.af *.google.com.ag *.google.al *.google.am *.google.co.ao *.google.com.ar *.google.as *.google.at *.google.com.au *.google.az *.google.ba *.google.com.bd *.google.be *.google.bf *.google.bg *.google.com.bh *.google.bi *.google.bj *.google.com.bn *.google.com.bo *.google.com.br *.google.bs *.google.bt *.google.co.bw *.google.by *.google.com.bz *.google.ca *.google.cd *.google.cf *.google.cg *.google.ch *.google.ci *.google.co.ck *.google.cl *.google.cm *.google.cn *.google.com.co *.google.co.cr *.google.com.cu *.google.cv *.google.com.cy *.google.cz *.google.de *.google.dj *.google.dk *.google.dm *.google.com.do *.google.dz *.google.com.ec *.google.ee *.google.com.eg *.google.es *.google.com.et *.google.fi *.google.com.fj *.google.fm *.google.fr *.google.ga *.google.ge *.google.gg *.google.com.gh *.google.com.gi *.google.gl *.google.gm *.google.gr *.google.com.gt *.google.gy *.google.com.hk *.google.hn *.google.hr *.google.ht *.google.hu *.google.co.id *.google.ie *.google.co.il *.google.im *.google.co.in *.google.iq *.google.is *.google.it *.google.je *.google.com.jm *.google.jo *.google.co.jp *.google.co.ke *.google.com.kh *.google.ki *.google.kg *.google.co.kr *.google.com.kw *.google.kz *.google.la *.google.com.lb *.google.li *.google.lk *.google.co.ls *.google.lt *.google.lu *.google.lv *.google.com.ly *.google.co.ma *.google.md *.google.me *.google.mg *.google.mk *.google.ml *.google.com.mm *.google.mn *.google.com.mt *.google.mu *.google.mv *.google.mw *.google.com.mx *.google.com.my *.google.co.mz *.google.com.na *.google.com.ng *.google.com.ni *.google.ne *.google.nl *.google.no *.google.com.np *.google.nr *.google.nu *.google.co.nz *.google.com.om *.google.com.pa *.google.com.pe *.google.com.pg *.google.com.ph *.google.com.pk *.google.pl *.google.pn *.google.com.pr *.google.ps *.google.pt *.google.com.py *.google.com.qa *.google.ro *.google.ru *.google.rw *.google.com.sa *.google.com.sb *.google.sc *.google.se *.google.com.sg *.google.sh *.google.si *.google.sk *.google.com.sl *.google.sn *.google.so *.google.sm *.google.sr *.google.st *.google.com.sv *.google.td *.google.tg *.google.co.th *.google.com.tj *.google.tl *.google.tm *.google.tn *.google.to *.google.com.tr *.google.tt *.google.com.tw *.google.co.tz *.google.com.ua *.google.co.ug *.google.co.uk *.google.com.uy *.google.co.uz *.google.com.vc *.google.co.ve *.google.co.vi *.google.com.vn *.google.vu *.google.ws *.google.rs *.google.co.za *.google.co.zm *.google.co.zw *.google.cat;media-src 'self' https://www.googletagmanager.com https://assets.cs.money/ https://hl.xplay.cloud/ https://hl-dev.xplay.cloud;form-action 'self' https://facebook.com https://www.facebook.com;font-src 'self' https://fonts.gstatic.com;frame-ancestors 'self' https://*.cs.money https://*.yandex.ru https://*.yandex.com https://*.webvisor.com http://*.webvisor.com;frame-src https://www.youtube.com https://www.facebook.com/ https://cashier.bridgerpay.com/ https://widget.trustpilot.com https://gleam.io https://www.googletagmanager.com https://*.doubleclick.net https://*.snapchat.com https://*.sumsub.com https://*.yandex.ru https://*.yandex.com;base-uri 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
x-content-type-options: nosniff
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
vary: Accept-Encoding
cf-cache-status: DYNAMIC
priority: u=1,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 93550f02eb07b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7.woff2
142.250.74.35200 OK 48 kB URL GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7.woff2
IP 142.250.74.35:443
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1
ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT
File type Web Open Font Format (Version 2), TrueType, length 48444, version 1.0
Hash 8e433c0592f77beb6dc527d7b90be120
d7402416753ae1bb4cbd4b10d33a0c10517838bd
f052ee44c3728dfd23aba8a4567150bc314d23903026fbb6ad089422c2df56af
GET /s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cs.money
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48444
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 18 Apr 2025 02:16:17 GMT
expires: Sat, 18 Apr 2026 02:16:17 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 29 Jul 2024 22:51:01 GMT
content-type: font/woff2
age: 549449
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET cs.money/_next/static/chunks/pages/cookie-6b9d60458a009c228e29.js
104.20.18.108200 OK 4.3 kB URL GET cs.money/_next/static/chunks/pages/cookie-6b9d60458a009c228e29.js
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type JavaScript source, ASCII text, with very long lines (4262), with no line terminators
Hash b24ac51a13655398778013780cad475f
1f60d026f9ab1d9cec11eb32a7da3d64c810f097
05f26bbe3483f570b747a3c51660f5029ff4cfc9d71f161a0fd29427d688ffa4
GET /_next/static/chunks/pages/cookie-6b9d60458a009c228e29.js HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true; group_id=13df623f-d5e6-4315-addd-94f9a2d633f5; cf_clearance=6bDbgN6qcCaFO61t0DQfnYQEBdBt4nPq1.aFWfvRzOg-1745492030-1.2.1.1-on32X_A9WNHWVZe7ZzMFCxztK6f6pafk4kFUlBiwMl0Z2aZexUyhly8M.RZKcCFJ2RD1Cn267mfyz5VhOSYAXAlvjtdJ1QQKro9g9BFI7CxhFSuEZz2iEFcByb.fQYewdg2p1P0Btkd2gexWCm_bkJcjhmGUFIjLcUmgiGArFXxT8oFaoeKRFteGPS47jjeQrqTldcQ.CdqXZHf1AHF.NEXnPO0SZDLGUYYl17I6nxS6Fy5I7_iAvW4TAl7uPpBv0NzOgp063vDiYxQk.l35YGGjXBm2h6.uHQLLn7zhunjScugdqXkYOT.mwqc_9_Q0lGHl7XD61gTnmrPR5YgbvKIhZIhj.dUvsNRqNoWA5ZQ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:50 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 04 Apr 2025 13:59:48 GMT
etag: W/"10a6-1960119c420"
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 1697932
priority: u=3,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f26bd4eb4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700;800&display=swap
142.250.178.106200 OK 12 kB URL GET fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700;800&display=swap
IP 142.250.178.106:443
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT
Hash 00f093d221aeaff78788174c5808fbd3
cb18e829572ca63b66d8b6c56b0f627a1b4f9481
8976d1a827fb5c4e0edb429c40235cf22f57b1592f85787fd33c6676a18fee5d
GET /css2?family=Inter:wght@400;500;600;700;800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 24 Apr 2025 10:53:46 GMT
date: Thu, 24 Apr 2025 10:53:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa0ZL7SUc.woff2
142.250.74.35200 OK 19 kB URL GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa0ZL7SUc.woff2
IP 142.250.74.35:443
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1
ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT
File type Web Open Font Format (Version 2), TrueType, length 18740, version 1.0
Hash 06ab411342acdbfe3e746ee904e12cc5
d83a47942575eeb80d30ebc7bf9a5b6f83c930fb
62cc01daef72c3ea76a258445368d2f4ab8d05a91f91c53fd12f7c42e3325942
GET /s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa0ZL7SUc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cs.money
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Apr 2025 09:31:51 GMT
expires: Fri, 24 Apr 2026 09:31:51 GMT
cache-control: public, max-age=31536000
age: 4915
last-modified: Mon, 29 Jul 2024 22:47:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET cs.money/_next/static/kQU-ykOvR86abjyIFxSda/_buildManifest.js
104.20.18.108200 OK 3.5 kB URL GET cs.money/_next/static/kQU-ykOvR86abjyIFxSda/_buildManifest.js
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type ASCII text, with very long lines (3505), with no line terminators
Hash 4a04377094785a6f8d336d7d7fdf8308
9ec8c158445465f0d88d97b2249b8fd579a264ac
7175b3334e0ba3534fe7af878db9f158bd484f7eb2b8ac2690bc4385128f6554
GET /_next/static/kQU-ykOvR86abjyIFxSda/_buildManifest.js HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:45 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Thu, 24 Apr 2025 10:39:36 GMT
etag: W/"db1-1966761aa40"
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 628
priority: u=3,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f074b88b4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
OPTIONS jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.178.106200 OK 0 B URL OPTIONS jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.178.106:443
Requested by https://www.youtube.com/embed/iBxSxVZ4kro
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 24 Apr 2025 10:53:52 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET cs.money/work_statuses
104.20.18.108200 OK 241 B IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
Hash e2407cb47e4b82ebc02041a3202e7de5
2fca668ee0a6c097f6f5b69a4e7ae645c1ed5942
902863ecb0bacce110204696a3348ce1f262ededa24066df09596811fb5704c0
GET /work_statuses HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Client-App: web
traceparent: 00-597d00a681a70ed80a31508d1629f54f-63e3217fd58749f6-01
sentry-trace: b548e82138cc4fc78241ee348d12ed81-808c1555956f7706-0
baggage: sentry-environment=production,sentry-release=kQU-ykOvR86abjyIFxSda,sentry-public_key=b9549680c85c11eb9f5572ddd0708824,sentry-trace_id=b548e82138cc4fc78241ee348d12ed81,sentry-transaction=%2Ffaq,sentry-sampled=false
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true; group_id=13df623f-d5e6-4315-addd-94f9a2d633f5
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:49 GMT
content-type: application/json; charset=utf-8
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-encoding: gzip
cf-cache-status: DYNAMIC
vary: accept-encoding
priority: u=3,i=?0
server: cloudflare
cf-ray: 93550f203825b4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET wss://cs.money/ws
104.20.18.108101 Switching Protocols 0 B IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://cs.money
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: twcA5KZR7O+VQpUmuH4Fng==
DNT: 1
Connection: keep-alive, Upgrade
Cookie: registered_user=true
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Thu, 24 Apr 2025 10:53:48 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: F3R/am6/wn881ggVm+r0MQ3BLq0=
Access-Control-Allow-Origin: https://cs.money
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
Access-Control-Allow-Headers: Accept,DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,csrf-token,csrf-token,x-client-app,traceparent,sentry-trace,baggage
Access-Control-Max-Age: 1728000
cf-cache-status: DYNAMIC
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 93550f1bad1556ba-OSL
alt-svc: h3=":443"; ma=86400
GET cs.money/_next/static/css/kqu-yk-f81674b43a3f25835fbe.css
104.20.18.108200 OK 2.3 kB URL GET cs.money/_next/static/css/kqu-yk-f81674b43a3f25835fbe.css
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type ASCII text, with very long lines (2312), with no line terminators
Hash eb3dc2aaf4016ed95f70f2c1a7e3b64c
d276409966e32639af24e45af8d5cb680c6dea12
4a9bc206c967e065909a6cf9b249b42eb6d7c9933a73519d2772cbf88bfae5e3
GET /_next/static/css/kqu-yk-f81674b43a3f25835fbe.css HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true; group_id=13df623f-d5e6-4315-addd-94f9a2d633f5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:49 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Thu, 24 Apr 2025 10:39:36 GMT
etag: W/"908-1966761aa40"
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 637
priority: u=2,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f1d9a4cb4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7.woff2
142.250.74.35200 OK 48 kB URL GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7.woff2
IP 142.250.74.35:443
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1
ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT
File type Web Open Font Format (Version 2), TrueType, length 48444, version 1.0
Hash 8e433c0592f77beb6dc527d7b90be120
d7402416753ae1bb4cbd4b10d33a0c10517838bd
f052ee44c3728dfd23aba8a4567150bc314d23903026fbb6ad089422c2df56af
GET /s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cs.money
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48444
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 18 Apr 2025 02:16:17 GMT
expires: Sat, 18 Apr 2026 02:16:17 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 29 Jul 2024 22:51:01 GMT
content-type: font/woff2
age: 549449
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET cs.money/svg/logo_trade.svg
104.20.18.108200 OK 755 B URL GET cs.money/svg/logo_trade.svg
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type SVG Scalable Vector Graphics image
Hash 656f787f384524c18c1506c99f071357
2a87452ea007da7d8618af58e1f3ed4931c53049
51cfbdca15518e278d641155b11a84946ce41cb590eed8cda5aa201dddc3c5f8
GET /svg/logo_trade.svg HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:45 GMT
content-type: image/svg+xml
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=0
last-modified: Wed, 23 Apr 2025 14:08:53 GMT
etag: W/"2f3-19662fae908"
content-encoding: gzip
cf-cache-status: HIT
age: 200
priority: u=4,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f076bd0b4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET esputnik.com/scripts/v1/public/scripts?apiKey=eyJhbGciOiJSUzI1NiJ9.eyJzdWIiOiI0NTI0ZWZhYTJkYzI2MGRmYTM4YTE1NDBlMWFkZjE0ZGQ1YTMzMTA4M2M2ZWQ5ODA0MGE3NGY3MWQ3OWEwZTQxNjRhNWZhMmU0NWE0YTQyZjJkMmU3YWIyOGI3Zjg1NTE1NWIxYWQxMTE2NzMyM2ZhY2E2NDUyOWI2NzU4YmE0MWE3ZDZiZDcwNmYyODMzNDJhZjYwYjYyNmI3ODc0MTE0MDE4Y2U0OTA5MTFhMmMifQ.JfeK1G1B2idKctERXp-waMUgZR3GhOCCCP_FXlK-vsquAm0FSg6Rhfv_kXkmpi-c903cp4thVEoS9Z1AKwQH3Q&domain=8F73C8CC-9BFF-411F-B231-53C9097E4E0A
54.229.2.59200 OK 42 kB URL GET esputnik.com/scripts/v1/public/scripts?apiKey=eyJhbGciOiJSUzI1NiJ9.eyJzdWIiOiI0NTI0ZWZhYTJkYzI2MGRmYTM4YTE1NDBlMWFkZjE0ZGQ1YTMzMTA4M2M2ZWQ5ODA0MGE3NGY3MWQ3OWEwZTQxNjRhNWZhMmU0NWE0YTQyZjJkMmU3YWIyOGI3Zjg1NTE1NWIxYWQxMTE2NzMyM2ZhY2E2NDUyOWI2NzU4YmE0MWE3ZDZiZDcwNmYyODMzNDJhZjYwYjYyNmI3ODc0MTE0MDE4Y2U0OTA5MTFhMmMifQ.JfeK1G1B2idKctERXp-waMUgZR3GhOCCCP_FXlK-vsquAm0FSg6Rhfv_kXkmpi-c903cp4thVEoS9Z1AKwQH3Q&domain=8F73C8CC-9BFF-411F-B231-53C9097E4E0A
IP 54.229.2.59:443
Certificate IssuerSectigo Limited
Subject*.esputnik.com
FingerprintE5:B8:23:79:42:2E:89:F6:A9:AF:70:55:B0:A3:73:38:B5:86:28:5D
ValidityMon, 04 Nov 2024 00:00:00 GMT - Fri, 28 Nov 2025 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (852)
Hash 52c667896241eeee0578affddb783659
a14b24a784cf02398c25dae302333fc5518042fb
50beaa8214862bca8b02c65cf0b67a36e97b7b0d6ca1618d1eb044ae1f2a2c78
GET /scripts/v1/public/scripts?apiKey=eyJhbGciOiJSUzI1NiJ9.eyJzdWIiOiI0NTI0ZWZhYTJkYzI2MGRmYTM4YTE1NDBlMWFkZjE0ZGQ1YTMzMTA4M2M2ZWQ5ODA0MGE3NGY3MWQ3OWEwZTQxNjRhNWZhMmU0NWE0YTQyZjJkMmU3YWIyOGI3Zjg1NTE1NWIxYWQxMTE2NzMyM2ZhY2E2NDUyOWI2NzU4YmE0MWE3ZDZiZDcwNmYyODMzNDJhZjYwYjYyNmI3ODc0MTE0MDE4Y2U0OTA5MTFhMmMifQ.JfeK1G1B2idKctERXp-waMUgZR3GhOCCCP_FXlK-vsquAm0FSg6Rhfv_kXkmpi-c903cp4thVEoS9Z1AKwQH3Q&domain=8F73C8CC-9BFF-411F-B231-53C9097E4E0A HTTP/1.1
Host: esputnik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 24 Apr 2025 10:53:49 GMT
content-type: application/javascript; charset=utf-8
server: nginx
content-encoding: gzip
vary: Accept-Encoding
expires: Thu, 24 Apr 2025 10:58:49 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
GET www.youtube.com/embed/iBxSxVZ4kro
142.250.74.78200 OK 102 kB URL GET www.youtube.com/embed/iBxSxVZ4kro
IP 142.250.74.78:443
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint67:52:2F:AB:93:DE:39:DA:94:50:11:AE:8B:37:CB:88:8F:DC:56:7D
ValidityMon, 31 Mar 2025 08:54:37 GMT - Mon, 23 Jun 2025 08:54:36 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (57982)
Size 102 kB (102413 bytes)
Hash f27b9d5f1813b8c0620d78170b7a8f3e
b71fc1538792b09a23456b0c5174ca04ddf59892
3d77052a62200779ddd4a152c3fe8cc6249b9851dc69b9ceca5aca6a066677f7
GET /embed/iBxSxVZ4kro HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 24 Apr 2025 10:53:46 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
content-security-policy: require-trusted-types-for 'script'
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
origin-trial: AmhMBR6zCLzDDxpW+HfpP67BqwIknWnyMOXOQGfzYswFmJe+fgaI6XZgAzcxOrzNtP7hEDsOo1jdjFnVr2IdxQ4AAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=7PNIcJSt7go; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=lVA9FxBPGd8; Domain=.youtube.com; Expires=Tue, 21-Oct-2025 10:53:46 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxIhEh0SGwsMDg8QERITFBUWFxgZGhscHR4fICEiIyQlJiBR; Domain=.youtube.com; Expires=Tue, 21-Oct-2025 10:53:46 GMT; Path=/; Secure; HttpOnly; SameSite=none
__Secure-ROLLOUT_TOKEN=CJSd4vPwyNG_ugEQs9OrwcDwjAMYs9OrwcDwjAM%3D; Domain=youtube.com; Expires=Tue, 21-Oct-2025 10:53:46 GMT; Path=/; Secure; HttpOnly; SameSite=none; Partitioned
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET assets.cs.money/faq/28e8112027f6bb62afe8e01617cbbadf3029b8d8250394bc73208a170a0b303f.png
104.20.18.108200 OK 81 kB URL GET assets.cs.money/faq/28e8112027f6bb62afe8e01617cbbadf3029b8d8250394bc73208a170a0b303f.png
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type PNG image data, 1656 x 3552, 8-bit colormap, non-interlaced
Hash 412492e771679cf406d55b5db5786cbe
1c98d5523cead76c681110772201550812c92793
4a14f91580c3bd47103d424422a9259320241ab344fa1fff1d7d88557ebadc95
GET /faq/28e8112027f6bb62afe8e01617cbbadf3029b8d8250394bc73208a170a0b303f.png HTTP/1.1
Host: assets.cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:45 GMT
content-type: image/webp
content-length: 80903
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=100649
content-disposition: inline; filename="28e8112027f6bb62afe8e01617cbbadf3029b8d8250394bc73208a170a0b303f.webp"
etag: "adf1edabf025aa1f9c3ce4ea0db88469"
last-modified: Thu, 13 Mar 2025 10:50:14 GMT
vary: Accept
cf-cache-status: HIT
age: 1286
accept-ranges: bytes
priority: u=4,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f07fcf8b4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
OPTIONS metrics.cs.money/api/4/envelope/?sentry_key=b9549680c85c11eb9f5572ddd0708824&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.74.1
104.20.18.108204 No Content 0 B URL OPTIONS metrics.cs.money/api/4/envelope/?sentry_key=b9549680c85c11eb9f5572ddd0708824&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.74.1
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/4/envelope/?sentry_key=b9549680c85c11eb9f5572ddd0708824&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.74.1 HTTP/1.1
Host: metrics.cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://cs.money/
Origin: https://cs.money
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 204 No Content
date: Thu, 24 Apr 2025 10:53:49 GMT
content-length: 0
access-control-allow-origin: https://cs.money
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-max-age: 1728000
cf-cache-status: DYNAMIC
priority: u=4,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f1f4decb4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.youtube.com/s/player/6450230e/www-player.css
142.250.74.78200 OK 449 kB URL GET www.youtube.com/s/player/6450230e/www-player.css
IP 142.250.74.78:443
Requested by https://www.youtube.com/embed/iBxSxVZ4kro
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint67:52:2F:AB:93:DE:39:DA:94:50:11:AE:8B:37:CB:88:8F:DC:56:7D
ValidityMon, 31 Mar 2025 08:54:37 GMT - Mon, 23 Jun 2025 08:54:36 GMT
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size 449 kB (449314 bytes)
Hash 9b8d61d92e9d05d261bbe9285b73891d
2338b95d61c537e7edcb5bfa4b1167dd3e6be58b
7e35753981af0904e610e6d229a8e9537f360aa98e21da4042d1824d8c56c539
GET /s/player/6450230e/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/iBxSxVZ4kro
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 54300
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Apr 2025 07:22:58 GMT
expires: Tue, 21 Apr 2026 07:22:58 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Apr 2025 04:08:53 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 271852
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
POST metrics.cs.money/api/4/envelope/?sentry_key=b9549680c85c11eb9f5572ddd0708824&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.74.1
104.20.18.108200 OK 2 B URL POST metrics.cs.money/api/4/envelope/?sentry_key=b9549680c85c11eb9f5572ddd0708824&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.74.1
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /api/4/envelope/?sentry_key=b9549680c85c11eb9f5572ddd0708824&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.74.1 HTTP/1.1
Host: metrics.cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cs.money/
Content-Type: application/json
Content-Length: 429
Origin: https://cs.money
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 24 Apr 2025 10:53:48 GMT
content-type: application/json
content-length: 2
access-control-allow-origin: https://cs.money
vary: origin, access-control-request-method, access-control-request-headers
access-control-expose-headers: x-sentry-error,x-sentry-rate-limits,retry-after
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-max-age: 1728000
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f16ed9a712f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cs.money/_next/static/chunks/76.f209744e3d6ed53d38c4.js
104.20.18.108200 OK 25 kB URL GET cs.money/_next/static/chunks/76.f209744e3d6ed53d38c4.js
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type JavaScript source, ASCII text, with very long lines (24779), with no line terminators
Hash f4bd9d6bbddc7279757636d5ad851bc4
61773ae1f575909411ae967e78f25605b22cc048
92754c22e073f426ec09af465e02d13bc09fa6481dcf59461caabc393d29af5b
GET /_next/static/chunks/76.f209744e3d6ed53d38c4.js HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true; group_id=13df623f-d5e6-4315-addd-94f9a2d633f5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:49 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Mon, 24 Mar 2025 07:25:19 GMT
etag: W/"60cb-195c70aa718"
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 2690370
priority: u=3,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f1d9a4fb4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET cs.money/_next/static/chunks/pages/cookie-6b9d60458a009c228e29.js
104.20.18.108200 OK 4.3 kB URL GET cs.money/_next/static/chunks/pages/cookie-6b9d60458a009c228e29.js
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type JavaScript source, ASCII text, with very long lines (4262), with no line terminators
Hash b24ac51a13655398778013780cad475f
1f60d026f9ab1d9cec11eb32a7da3d64c810f097
05f26bbe3483f570b747a3c51660f5029ff4cfc9d71f161a0fd29427d688ffa4
GET /_next/static/chunks/pages/cookie-6b9d60458a009c228e29.js HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true; group_id=13df623f-d5e6-4315-addd-94f9a2d633f5
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:49 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 04 Apr 2025 13:59:48 GMT
etag: W/"10a6-1960119c420"
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 1697931
priority: u=4,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f230dc8b4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.35200 OK 16 kB URL GET fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.35:443
Requested by https://www.youtube.com/embed/iBxSxVZ4kro
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1
ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 18 Apr 2025 02:17:05 GMT
expires: Sat, 18 Apr 2026 02:17:05 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 549405
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET cs.money/_next/static/chunks/framework-3aeced5b4013f170b987.js
104.20.18.108200 OK 143 kB URL GET cs.money/_next/static/chunks/framework-3aeced5b4013f170b987.js
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 143 kB (142714 bytes)
Hash 738ce88d2886386a5fd3c851975cd24f
121098b8466e7fc9432675fc312fe86985a27d94
bbec80a093340972c9098ec42085b95ab94b2642c96529767ccbf062479a605d
GET /_next/static/chunks/framework-3aeced5b4013f170b987.js HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:45 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Thu, 19 Dec 2024 15:55:45 GMT
etag: W/"22d7a-193dfa1d3e8"
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 10691252
priority: u=3,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f071b4db4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.youtube.com/s/player/6450230e/www-embed-player.vflset/www-embed-player.js
142.250.74.78200 OK 346 kB URL GET www.youtube.com/s/player/6450230e/www-embed-player.vflset/www-embed-player.js
IP 142.250.74.78:443
Requested by https://www.youtube.com/embed/iBxSxVZ4kro
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint67:52:2F:AB:93:DE:39:DA:94:50:11:AE:8B:37:CB:88:8F:DC:56:7D
ValidityMon, 31 Mar 2025 08:54:37 GMT - Mon, 23 Jun 2025 08:54:36 GMT
File type JavaScript source, ASCII text, with very long lines (1179)
Size 346 kB (346209 bytes)
Hash 4d930dbe776742285344f98c51c6a654
24447a0b7fe863b9743753dc2543443adbe88c38
9be4a6e3749903ceb51a3aa0db5b25d6b863d79e89e3957267c143fb825221b0
GET /s/player/6450230e/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/iBxSxVZ4kro
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 102846
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Apr 2025 07:23:58 GMT
expires: Tue, 21 Apr 2026 07:23:58 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Apr 2025 04:08:53 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 271792
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET yt3.ggpht.com/9RClUFPIgsdgzyFb57Tae5JNdcvgMKqXG5v-O29V26wsY7MDKs4iSXdbsrjvEp6nObedxPA6NQ=s68-c-k-c0x00ffffff-no-rj
142.250.178.33200 OK 1.5 kB URL GET yt3.ggpht.com/9RClUFPIgsdgzyFb57Tae5JNdcvgMKqXG5v-O29V26wsY7MDKs4iSXdbsrjvEp6nObedxPA6NQ=s68-c-k-c0x00ffffff-no-rj
IP 142.250.178.33:443
Requested by https://www.youtube.com/embed/iBxSxVZ4kro
Certificate IssuerGoogle Trust Services
Subject*.googleusercontent.com
Fingerprint66:19:DE:95:18:3E:90:8D:7D:31:50:9A:E3:F7:2D:9D:D6:7D:A7:F8
ValidityMon, 31 Mar 2025 08:55:39 GMT - Mon, 23 Jun 2025 08:55:38 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3
Hash 560974bfc89e4132eb8bd8b7d396fe80
40c8bec54c4ed95f8632a61637ab181fefad8242
f6c5fdcae85c0986ffe804768b418d23f58f8c0ade6b25f129b1a228f90ec61f
GET /9RClUFPIgsdgzyFb57Tae5JNdcvgMKqXG5v-O29V26wsY7MDKs4iSXdbsrjvEp6nObedxPA6NQ=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
x-content-type-options: nosniff
server: fife
content-length: 1467
x-xss-protection: 0
date: Thu, 24 Apr 2025 10:53:48 GMT
expires: Fri, 25 Apr 2025 10:53:48 GMT
cache-control: public, max-age=86400, no-transform
age: 4
etag: "v1"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET cs.money/svg/new_logo.svg
104.20.18.108200 OK 4.4 kB URL GET cs.money/svg/new_logo.svg
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type SVG Scalable Vector Graphics image
Hash ac7b3e67465a997a2e12c274e7926f89
4f2ffc8ee3dc2d03573f182e35fb0ea89fc3717f
1959748de4e441488eafac628f9ba4607ad44699d5202569c12feac3ff0dceea
GET /svg/new_logo.svg HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:45 GMT
content-type: image/svg+xml
cache-control: public, max-age=0
last-modified: Wed, 23 Apr 2025 14:08:53 GMT
etag: W/"115a-19662fae908"
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 207
priority: u=4,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f076bc9b4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET assets.cs.money/faq/0e7e7e6b57ec3ac7c3ab60cdb5309104a1e6b0ca81709ef5dd1f3949de8d5938.png
104.20.18.108200 OK 134 kB URL GET assets.cs.money/faq/0e7e7e6b57ec3ac7c3ab60cdb5309104a1e6b0ca81709ef5dd1f3949de8d5938.png
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type PNG image data, 1656 x 3552, 8-bit/color RGBA, non-interlaced
Size 134 kB (133656 bytes)
Hash 6d17948b4beab3d01421d82f7298b412
23b0aeb9d2f6c2df6334bec85ff6b3cac196c55e
2e77d526a03c56f5eff8baea554a244324bc51106f074faeeb0770e70c8fdc74
GET /faq/0e7e7e6b57ec3ac7c3ab60cdb5309104a1e6b0ca81709ef5dd1f3949de8d5938.png HTTP/1.1
Host: assets.cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:45 GMT
content-type: image/png
content-length: 133656
cf-bgj: imgq:100,h2pri
cf-polished: origSize=163480, status=webp_bigger
etag: "ccfc061bc28ac1dc083d0978975780ae"
last-modified: Thu, 13 Mar 2025 10:50:14 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 1286
accept-ranges: bytes
priority: u=4,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f080d20b4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET cs.money/favorites-market/simple
104.20.18.108200 OK 11 B URL GET cs.money/favorites-market/simple
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
Hash a59040d4fc1c1abc98a5d5fd9a60bf01
2d17317bb8920091f924170d315c18dd809a3b01
20de034cf9146746b46540f25ebd138c0d917d13792ab71ad2fe3b9609d0d997
GET /favorites-market/simple HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Client-App: web
traceparent: 00-005674cac4887c0408d6bb51a1235be7-f41710b0173dda1e-01
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true; group_id=13df623f-d5e6-4315-addd-94f9a2d633f5
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:49 GMT
content-type: application/json; charset=utf-8
content-length: 11
x-powered-by: Express
etag: W/"b-LRcxe7iSAJH5JBcNMVwY3YCaOwE"
cf-cache-status: DYNAMIC
priority: u=3,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f203828b4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
OPTIONS traces.cs.money/v1/traces
104.20.18.108405 Method Not Allowed 0 B URL OPTIONS traces.cs.money/v1/traces
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/traces HTTP/1.1
Host: traces.cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://cs.money/
Origin: https://cs.money
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 405 Method Not Allowed
date: Thu, 24 Apr 2025 10:53:55 GMT
content-type: text/plain
content-length: 41
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f457db2712f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 15 kB URL GET fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:443
Requested by https://www.youtube.com/embed/iBxSxVZ4kro
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1
ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Apr 2025 09:35:39 GMT
expires: Fri, 24 Apr 2026 09:35:39 GMT
cache-control: public, max-age=31536000
age: 4691
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
OPTIONS jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.178.106200 OK 0 B URL OPTIONS jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.178.106:443
Requested by https://www.youtube.com/embed/iBxSxVZ4kro
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 24 Apr 2025 10:53:53 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET cs.money/fonts/DrukTextApp/druk-textbold-italic-app.woff2
104.20.18.108200 OK 56 kB URL GET cs.money/fonts/DrukTextApp/druk-textbold-italic-app.woff2
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type Web Open Font Format (Version 2), TrueType, length 56388, version 1.0
Hash 6b23dc1db17b39bf4939eb2b5a7bee5a
9273056267199a5a3d016e58cafeb73d613f579a
7180b605d707509766a01328b31073665eb1a8b91a0451ac3a20007e5cd690e2
GET /fonts/DrukTextApp/druk-textbold-italic-app.woff2 HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://cs.money/_next/static/css/kqu-yk-514e4fb1f3b3f23359e3.css
Cookie: registered_user=true
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:46 GMT
content-type: font/woff2
content-length: 56388
cache-control: public, max-age=0
last-modified: Mon, 07 Apr 2025 11:16:43 GMT
etag: W/"dc44-1960ff78978"
cf-cache-status: HIT
age: 1418293
accept-ranges: bytes
priority: u=4,i=?0
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f0dd99cb4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET cs.money/svg/main/footer_icons/master-card.svg
104.20.18.108200 OK 1.4 kB URL GET cs.money/svg/main/footer_icons/master-card.svg
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type SVG Scalable Vector Graphics image
Hash 635e6f9631f95e453a36460eeb9dbca8
3e2a8ae4f54564954657a7faca48ede4a881a56a
ff797f0b7fcde485fe7ba3926903e37669e57eccc13563da2bafb2e9b2758d35
GET /svg/main/footer_icons/master-card.svg HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:45 GMT
content-type: image/svg+xml
cache-control: public, max-age=0
last-modified: Wed, 23 Apr 2025 14:08:53 GMT
etag: W/"587-19662fae908"
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 205
priority: u=4,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f079c1cb4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET i.ytimg.com/vi/iBxSxVZ4kro/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AH-CYAC0AWKAgwIABABGCggTih_MA8=&rs=AOn4CLCOrgpB1OiPeQVL6IKcDEjpbsE70A
142.250.178.86200 OK 29 kB URL GET i.ytimg.com/vi/iBxSxVZ4kro/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AH-CYAC0AWKAgwIABABGCggTih_MA8=&rs=AOn4CLCOrgpB1OiPeQVL6IKcDEjpbsE70A
IP 142.250.178.86:443
Requested by https://www.youtube.com/embed/iBxSxVZ4kro
Certificate IssuerGoogle Trust Services
Subjectedgestatic.com
FingerprintD2:40:D1:AF:57:63:B3:44:20:46:41:E2:6B:C5:B2:6E:24:90:F8:96
ValidityMon, 31 Mar 2025 08:54:28 GMT - Mon, 23 Jun 2025 08:54:27 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x480, components 3
Hash 4c2604107c630ec2405d5e077463c05f
abb61867b8841a82af43c431cd2ed8378486de64
3da431550ee5eb596cc4c5b5977a9a86718e03d4f84b8cf324119973a5a833ea
GET /vi/iBxSxVZ4kro/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AH-CYAC0AWKAgwIABABGCggTih_MA8=&rs=AOn4CLCOrgpB1OiPeQVL6IKcDEjpbsE70A HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 29072
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Apr 2025 10:53:48 GMT
expires: Thu, 24 Apr 2025 12:53:48 GMT
cache-control: public, max-age=7200
age: 4
etag: "1701174737"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET assets.cs.money/faq/f7ecda3f9d7bd19bb80c21a2db9156f8de1850aff734d3ac0fd156d2d2184359.png
104.20.18.108200 OK 172 kB URL GET assets.cs.money/faq/f7ecda3f9d7bd19bb80c21a2db9156f8de1850aff734d3ac0fd156d2d2184359.png
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type PNG image data, 1656 x 3552, 8-bit/color RGBA, non-interlaced
Size 172 kB (172381 bytes)
Hash c7eedd7faf006dfc7636b90905a02c6d
ba4f1c680224a23263c764ab3b833ccf3ac688f7
88a64b750908eb5b66abc9e2002d6a989af55ad1a1171d48602137212ad4ff94
GET /faq/f7ecda3f9d7bd19bb80c21a2db9156f8de1850aff734d3ac0fd156d2d2184359.png HTTP/1.1
Host: assets.cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:45 GMT
content-type: image/png
content-length: 172381
cf-bgj: imgq:100,h2pri
cf-polished: origSize=208029, status=webp_bigger
etag: "2b0092c1ca01fba194346dc78039dcd2"
last-modified: Thu, 13 Mar 2025 10:50:14 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 1286
accept-ranges: bytes
priority: u=4,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f07fcf1b4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET cs.money/_next/static/chunks/743.35d40ab6866ce375e10d.js
104.20.18.108200 OK 310 B URL GET cs.money/_next/static/chunks/743.35d40ab6866ce375e10d.js
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type JavaScript source, ASCII text, with very long lines (310), with no line terminators
Hash 4c223ed17578ca3d18a07312a2ec12d1
7d187816962af179c7a32b1e3a5d7a80ec3943a5
774a1ccf39636b0722e5c997bd7b7898a6e0608c9d465489e68221ef1ad47ac5
GET /_next/static/chunks/743.35d40ab6866ce375e10d.js HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:48 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 09 Apr 2025 11:00:26 GMT
etag: W/"136-1961a355910"
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 1141562
priority: u=3,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f187f50b4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET cs.money/svg/antiscam.svg
104.20.18.108200 OK 590 B URL GET cs.money/svg/antiscam.svg
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type SVG Scalable Vector Graphics image
Hash 193414bfe8bf3e109cba8de418ec438a
39921ffda5d61422bad2dadcc5b32f9c2da2a524
6f133a6b918849959ebbf7d33843ce25653b47ec473b4ef7ab9ca25706a4f680
GET /svg/antiscam.svg HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:45 GMT
content-type: image/svg+xml
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=0
last-modified: Wed, 23 Apr 2025 14:08:53 GMT
etag: W/"24e-19662fae908"
content-encoding: gzip
cf-cache-status: HIT
age: 205
priority: u=4,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f079c18b4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa25L7SUc.woff2
142.250.74.35200 OK 74 kB URL GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa25L7SUc.woff2
IP 142.250.74.35:443
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1
ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT
File type Web Open Font Format (Version 2), TrueType, length 74328, version 1.0
Hash ad4eb06671be0ba6c91893d085122afd
ee0ebd2ef047937cd8ca547172229155813ff939
48f540fb71166bf65a0fe187a71fad500c43143d3e2e42038f527e38c786e90f
GET /s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa25L7SUc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cs.money
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 74328
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Apr 2025 09:16:55 GMT
expires: Fri, 24 Apr 2026 09:16:55 GMT
cache-control: public, max-age=31536000
age: 5812
last-modified: Mon, 29 Jul 2024 22:47:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa0ZL7SUc.woff2
142.250.74.35200 OK 19 kB URL GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa0ZL7SUc.woff2
IP 142.250.74.35:443
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1
ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT
File type Web Open Font Format (Version 2), TrueType, length 18740, version 1.0
Hash 06ab411342acdbfe3e746ee904e12cc5
d83a47942575eeb80d30ebc7bf9a5b6f83c930fb
62cc01daef72c3ea76a258445368d2f4ab8d05a91f91c53fd12f7c42e3325942
GET /s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa0ZL7SUc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cs.money
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Apr 2025 09:31:51 GMT
expires: Fri, 24 Apr 2026 09:31:51 GMT
cache-control: public, max-age=31536000
age: 4915
last-modified: Mon, 29 Jul 2024 22:47:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET cs.money/faq-page?language=no&url=%2Fhow-to-activate-authenticator
104.20.18.108200 OK 25 kB URL GET cs.money/faq-page?language=no&url=%2Fhow-to-activate-authenticator
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
Hash 729cb886627dc8f41cc8525b6b3b7b88
3336e43c531b01626ce5dd693ccc38888f84e4f6
c765b031e91f79d3c8f9b8c42618c2f9f89b2c633ccb9c01a12e27f06030bd05
GET /faq-page?language=no&url=%2Fhow-to-activate-authenticator HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Client-App: web
traceparent: 00-f4738621f292b0e9d4bea72fd89f8e29-6183c5dd919810a8-01
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true; group_id=13df623f-d5e6-4315-addd-94f9a2d633f5
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:49 GMT
content-type: application/json; charset=utf-8
x-powered-by: Express
etag: W/"606e-MzbkPFMbAWJs5d1pPMw4iI+E5PY"
content-encoding: gzip
cf-cache-status: DYNAMIC
vary: accept-encoding
priority: u=3,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f203833b4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET assets.cs.money/faq/c1e5fccd9c634f526757fd6661b1bfdd37faed5b80de71d21857e53e414ea29e.png
104.20.18.108200 OK 59 kB URL GET assets.cs.money/faq/c1e5fccd9c634f526757fd6661b1bfdd37faed5b80de71d21857e53e414ea29e.png
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type PNG image data, 1656 x 3552, 8-bit/color RGBA, non-interlaced
Hash 7e6841e1efe938b2a0a41d18be995815
8e1c13cdc5ae2f387b58565a048aa5548ae7eb68
cbbfe6b9925a3842453b969922a622dcb24706926f3dce345ce831015875ee20
GET /faq/c1e5fccd9c634f526757fd6661b1bfdd37faed5b80de71d21857e53e414ea29e.png HTTP/1.1
Host: assets.cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:45 GMT
content-type: image/png
content-length: 58979
cf-bgj: imgq:100,h2pri
cf-polished: origSize=64952, status=webp_bigger
etag: "419f0fd2761fa170f36a8ecb19bb1fd2"
last-modified: Thu, 13 Mar 2025 10:50:14 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 1286
accept-ranges: bytes
priority: u=4,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f07fcd8b4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
OPTIONS metrics.cs.money/api/4/envelope/?sentry_key=b9549680c85c11eb9f5572ddd0708824&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.74.1
104.20.18.108204 No Content 0 B URL OPTIONS metrics.cs.money/api/4/envelope/?sentry_key=b9549680c85c11eb9f5572ddd0708824&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.74.1
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/4/envelope/?sentry_key=b9549680c85c11eb9f5572ddd0708824&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.74.1 HTTP/1.1
Host: metrics.cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://cs.money/
Origin: https://cs.money
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 204 No Content
date: Thu, 24 Apr 2025 10:53:49 GMT
content-length: 0
access-control-allow-origin: https://cs.money
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-max-age: 1728000
cf-cache-status: DYNAMIC
priority: u=4,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f1fdf6ab4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET cs.money/svg/main/footer_icons/visa.svg
104.20.18.108200 OK 1.5 kB URL GET cs.money/svg/main/footer_icons/visa.svg
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type SVG Scalable Vector Graphics image
Hash 29cd39feace8aae4dd73994d23631cb4
8ce5999f520334d86a77d0a4a979c30d3e1b2f3e
8810d27df6380ffa3c03510776538e45616fa7ca195882e7e08a50743f95f6b6
GET /svg/main/footer_icons/visa.svg HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:45 GMT
content-type: image/svg+xml
cache-control: public, max-age=0
last-modified: Wed, 23 Apr 2025 14:08:53 GMT
etag: W/"5b3-19662fae908"
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 205
priority: u=4,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f079c27b4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET cs.money/svg/main/footer_icons/discover.svg
104.20.18.108200 OK 3.0 kB URL GET cs.money/svg/main/footer_icons/discover.svg
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type SVG Scalable Vector Graphics image
Hash ea2f8b4afd28310a9da5ae9a6d33edce
8575d8639924b9455dd40899dd458af7cdfc7d9f
415cc4f54ca1a125d0cad028b5d33b6d37bdeace8c6a2d141c7a4bac34527248
GET /svg/main/footer_icons/discover.svg HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:45 GMT
content-type: image/svg+xml
cache-control: public, max-age=0
last-modified: Wed, 23 Apr 2025 14:08:53 GMT
etag: W/"bc0-19662fae908"
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 205
priority: u=4,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f079c1fb4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
POST jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.178.106200 OK 90 B URL POST jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.178.106:443
Requested by https://www.youtube.com/embed/iBxSxVZ4kro
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT
Hash 813bee5f3cbd36e316ef615fe72c903a
e71f93eebac06c678b23d64206f147c47bab93f7
b462df34d693b1082e040e9f1b76fb819f94a0a7b9d3ae48ee4b50590ba02cd3
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1180
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 24 Apr 2025 10:53:53 GMT
server: ESF
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET cs.money/_next/static/kQU-ykOvR86abjyIFxSda/_ssgManifest.js
104.20.18.108200 OK 77 B URL GET cs.money/_next/static/kQU-ykOvR86abjyIFxSda/_ssgManifest.js
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type ASCII text, with no line terminators
Hash b6652df95db52feb4daf4eca35380933
65451d110137761b318c82d9071c042db80c4036
6f5b4aa00d2f8d6aed9935b471806bf7acef464d0c1d390260e5fe27f800c67e
GET /_next/static/kQU-ykOvR86abjyIFxSda/_ssgManifest.js HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:45 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Thu, 24 Apr 2025 10:39:36 GMT
etag: W/"4d-1966761aa40"
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 606
priority: u=3,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f075ba3b4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET cs.money/_next/static/css/kqu-yk-c5e711ff0bb9ad1beb7c.css
104.20.18.108200 OK 2.7 kB URL GET cs.money/_next/static/css/kqu-yk-c5e711ff0bb9ad1beb7c.css
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type ASCII text, with very long lines (2699), with no line terminators
Hash 14cb7118b5257995d99eaa41109cb906
7720476189ddc7ef07b926bf4db42aa806035511
83cd98b3deafce4391210bbe9a809fb818efe8624b76b481363483ff222d9fd2
GET /_next/static/css/kqu-yk-c5e711ff0bb9ad1beb7c.css HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true; group_id=13df623f-d5e6-4315-addd-94f9a2d633f5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:49 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Thu, 24 Apr 2025 10:39:36 GMT
etag: W/"a8b-1966761aa40"
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 633
priority: u=2,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f1d9a39b4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET cs.money/payments/1.0/steam-topup/deposit?currency=NOK
104.20.18.108200 OK 150 B URL GET cs.money/payments/1.0/steam-topup/deposit?currency=NOK
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
Hash a0838fe878d9479a885655dc75278790
0160ff8a349e5014fc70a3d462a53293108d5134
808c8d19f419bbfc76fdf367835877428e1692b1b80d82609a4b111bfb62f689
GET /payments/1.0/steam-topup/deposit?currency=NOK HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Client-App: web
traceparent: 00-8bd3074b106c8f9e8ac94b6dba6ec82f-0b028685c54a0223-01
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true; group_id=13df623f-d5e6-4315-addd-94f9a2d633f5
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:49 GMT
content-type: application/json; charset=utf-8
x-powered-by: Express
etag: W/"96-AWD/ijSeUBT8cKPUYqUykxCNUTQ"
content-encoding: gzip
cf-cache-status: DYNAMIC
vary: accept-encoding
priority: u=3,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f203835b4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET cs.money/cdn-cgi/challenge-platform/scripts/jsd/main.js
104.20.18.108302 Found 8.5 kB URL GET cs.money/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: registered_user=true; group_id=13df623f-d5e6-4315-addd-94f9a2d633f5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Thu, 24 Apr 2025 10:53:49 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/44e6f86df4dc/main.js?
cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=10800, public
access-control-allow-origin: *
priority: u=3,i=?0
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f219addb4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET cs.money/_next/static/chunks/webpack-54fb8c05c6d1c1937dbd.js
104.20.18.108200 OK 5.7 kB URL GET cs.money/_next/static/chunks/webpack-54fb8c05c6d1c1937dbd.js
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
File type JavaScript source, ASCII text, with very long lines (5707), with no line terminators
Hash 3512fca4d8912b764fefe42bc1d59369
59076285a088db2db17334226c96018a119c9d9c
424ac3565be2afaa01290a6437594afbc400dde57852cf84e3250374cbefeb87
GET /_next/static/chunks/webpack-54fb8c05c6d1c1937dbd.js HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:45 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Thu, 24 Apr 2025 10:39:36 GMT
etag: W/"164b-1966761aa40"
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 606
priority: u=3,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f071b4ab4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.youtube.com/embed/iBxSxVZ4kro
142.250.74.78200 OK 114 kB URL GET www.youtube.com/embed/iBxSxVZ4kro
IP 142.250.74.78:443
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint67:52:2F:AB:93:DE:39:DA:94:50:11:AE:8B:37:CB:88:8F:DC:56:7D
ValidityMon, 31 Mar 2025 08:54:37 GMT - Mon, 23 Jun 2025 08:54:36 GMT
File type HTML document, ASCII text, with very long lines (57984)
Size 114 kB (113607 bytes)
Hash 04bc9a885931bbecc95f8bc26e754de6
fb8f31657382d890fb6cac5f3e6a4ae97ce9f1e7
eac6b31083f6a67e18b848bee5a936ba92a14f207692d68664b729eb7bfaa78d
GET /embed/iBxSxVZ4kro HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs.money/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 24 Apr 2025 10:53:49 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
origin-trial: AmhMBR6zCLzDDxpW+HfpP67BqwIknWnyMOXOQGfzYswFmJe+fgaI6XZgAzcxOrzNtP7hEDsOo1jdjFnVr2IdxQ4AAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
content-security-policy: require-trusted-types-for 'script'
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=u3uzfTN2tZg; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
__Secure-ROLLOUT_TOKEN=COncyZDCo7-GBRDFhvPCwPCMAxjFhvPCwPCMAw%3D%3D; Domain=youtube.com; Expires=Tue, 21-Oct-2025 10:53:49 GMT; Path=/; Secure; HttpOnly; SameSite=none; Partitioned
VISITOR_INFO1_LIVE=-SgcIQEqto8; Domain=.youtube.com; Expires=Tue, 21-Oct-2025 10:53:49 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxIhEh0SGwsMDg8QERITFBUWFxgZGhscHR4fICEiIyQlJiAN; Domain=.youtube.com; Expires=Tue, 21-Oct-2025 10:53:49 GMT; Path=/; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
POST cs.money/cdn-cgi/challenge-platform/h/g/jsd/r/0.18777475995025608:1745490425:Cut_FeGl3YB6ILU8OSuVTZmylVn4VdApslpzUlWWGMo/93550f02eb07b4fa
104.20.18.108200 OK 0 B URL POST cs.money/cdn-cgi/challenge-platform/h/g/jsd/r/0.18777475995025608:1745490425:Cut_FeGl3YB6ILU8OSuVTZmylVn4VdApslpzUlWWGMo/93550f02eb07b4fa
IP 104.20.18.108:443
Certificate IssuerLet's Encrypt
Subjectcs.money
FingerprintF0:DA:06:8F:F0:CE:C0:A2:02:52:53:48:EE:A1:24:C2:18:C4:E6:9A
ValidityThu, 27 Feb 2025 22:17:56 GMT - Wed, 28 May 2025 22:17:55 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/challenge-platform/h/g/jsd/r/0.18777475995025608:1745490425:Cut_FeGl3YB6ILU8OSuVTZmylVn4VdApslpzUlWWGMo/93550f02eb07b4fa HTTP/1.1
Host: cs.money
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 12046
Origin: https://cs.money
DNT: 1
Connection: keep-alive
Referer: https://cs.money/no/faq/
Cookie: registered_user=true; group_id=13df623f-d5e6-4315-addd-94f9a2d633f5
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Apr 2025 10:53:50 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=6bDbgN6qcCaFO61t0DQfnYQEBdBt4nPq1.aFWfvRzOg-1745492030-1.2.1.1-on32X_A9WNHWVZe7ZzMFCxztK6f6pafk4kFUlBiwMl0Z2aZexUyhly8M.RZKcCFJ2RD1Cn267mfyz5VhOSYAXAlvjtdJ1QQKro9g9BFI7CxhFSuEZz2iEFcByb.fQYewdg2p1P0Btkd2gexWCm_bkJcjhmGUFIjLcUmgiGArFXxT8oFaoeKRFteGPS47jjeQrqTldcQ.CdqXZHf1AHF.NEXnPO0SZDLGUYYl17I6nxS6Fy5I7_iAvW4TAl7uPpBv0NzOgp063vDiYxQk.l35YGGjXBm2h6.uHQLLn7zhunjScugdqXkYOT.mwqc_9_Q0lGHl7XD61gTnmrPR5YgbvKIhZIhj.dUvsNRqNoWA5ZQ; HttpOnly; SameSite=None; Partitioned; Secure; Path=/; Domain=cs.money; Expires=Fri, 24 Apr 2026 10:53:50 GMT
priority: u=3,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 93550f25ab2fb4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.youtube.com/s/player/6450230e/player_ias.vflset/en_US/embed.js
142.250.74.78200 OK 34 kB URL GET www.youtube.com/s/player/6450230e/player_ias.vflset/en_US/embed.js
IP 142.250.74.78:443
Requested by https://www.youtube.com/embed/iBxSxVZ4kro
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint67:52:2F:AB:93:DE:39:DA:94:50:11:AE:8B:37:CB:88:8F:DC:56:7D
ValidityMon, 31 Mar 2025 08:54:37 GMT - Mon, 23 Jun 2025 08:54:36 GMT
File type JavaScript source, ASCII text, with very long lines (3391)
Hash 0784d9e292648e5bd53486e1acbaede8
dd1bd740909fa4d0a48732be2dffd73b6f84669b
9431340e66a094ccaff4fca9c4626dbc7ef33763258b38453bf913cf0f6bdb09
GET /s/player/6450230e/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/iBxSxVZ4kro
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 9527
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Apr 2025 07:29:13 GMT
expires: Tue, 21 Apr 2026 07:29:13 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Apr 2025 04:08:53 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 271477
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7.woff2
142.250.74.35200 OK 48 kB URL GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7.woff2
IP 142.250.74.35:443
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1
ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT
File type Web Open Font Format (Version 2), TrueType, length 48444, version 1.0
Hash 8e433c0592f77beb6dc527d7b90be120
d7402416753ae1bb4cbd4b10d33a0c10517838bd
f052ee44c3728dfd23aba8a4567150bc314d23903026fbb6ad089422c2df56af
GET /s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cs.money
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48444
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 18 Apr 2025 02:16:17 GMT
expires: Sat, 18 Apr 2026 02:16:17 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 29 Jul 2024 22:51:01 GMT
content-type: font/woff2
age: 549449
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2