Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
148s -
max time network
136s -
platform
windows7_x64 -
resource
win7-20231129-en -
resource tags
-
submitted
11/01/2024, 04:08 UTC
General
-
Target
527df15a0655ab660522d36b53c78e18.html
-
Size
57KB
-
MD5
527df15a0655ab660522d36b53c78e18
-
SHA1
b8270fdae00a7ca2506531a0604a5353f1504a3f
-
SHA256
e6688344f0e99a066cc2c4f4422a704482ec261b4e9a738c0c3868e9f7c13052
-
SHA512
4c12d3a59aa1968f76ec101b08163ecacd976faac9fa2f9b024d4e93df0a2cc61659ab1c1d5468c0fac3f36551539344002c1d1d635bf0ca60b609b9e2b0765b
-
SSDEEP
1536:ijEQvK8OPHdyAco2vgyHJv0owbd6zKD6CDK2RVro/ZwpDK2RVy:ijnOPHdy+2vgyHJutDK2RVro/ZwpDK2m
Score
1/10
Malware Config
Signatures
-
Modifies Internet Explorer settings 1 TTPs 59 IoCs
-
Suspicious use of FindShellTrayWindow 1 IoCs
-
Suspicious use of SetWindowsHookEx 6 IoCs
-
Suspicious use of WriteProcessMemory 4 IoCs
Processes
-
C:\Program Files\Internet Explorer\iexplore.exe"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\527df15a0655ab660522d36b53c78e18.html1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
-
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1972 CREDAT:275457 /prefetch:22⤵
- Modifies Internet Explorer settings
- Suspicious use of SetWindowsHookEx
-
Network
-
DNStiwolfly.free.frRemote address:8.8.8.8:53Requesttiwolfly.free.frIN AResponse -
DNSi59.photobucket.comRemote address:8.8.8.8:53Requesti59.photobucket.comIN AResponsei59.photobucket.comIN A3.162.20.109i59.photobucket.comIN A3.162.20.23i59.photobucket.comIN A3.162.20.24i59.photobucket.comIN A3.162.20.115
-
DNSmyykza.free.frRemote address:8.8.8.8:53Requestmyykza.free.frIN AResponse
-
DNSzoom.ind.free.frRemote address:8.8.8.8:53Requestzoom.ind.free.frIN AResponse
-
GEThttp://pagead2.googlesyndication.com/pagead/show_ads.jsRemote address:142.250.187.194:80RequestGET /pagead/show_ads.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: pagead2.googlesyndication.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Thu, 11 Jan 2024 04:08:25 GMT
Expires: Thu, 11 Jan 2024 04:08:25 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 1637724566802958675
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 14549
X-XSS-Protection: 0
-
GEThttp://i59.photobucket.com/albums/g320/Blizzardtje/XIII/XIIIFreaky.jpgRemote address:3.162.20.109:80RequestGET /albums/g320/Blizzardtje/XIII/XIIIFreaky.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: i59.photobucket.com
Connection: Keep-Alive
ResponseHTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Thu, 11 Jan 2024 04:08:25 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i59.photobucket.com/albums/g320/Blizzardtje/XIII/XIIIFreaky.jpg
X-Cache: Redirect from cloudfront
Via: 1.1 4de62e0f8bb36f486176ce5d831470b4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: MAN51-P3
X-Amz-Cf-Id: 4TUMtlQuQTUYP8IYmEAGW2hy_JbmBCJsY21NrnnmJpeCYspHnHqW0g==
Vary: Origin
-
GEThttps://i59.photobucket.com/albums/g320/Blizzardtje/XIII/XIIIFreaky.jpgRemote address:3.162.20.109:443RequestGET /albums/g320/Blizzardtje/XIII/XIIIFreaky.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: i59.photobucket.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 7650
Connection: keep-alive
Date: Thu, 04 Jan 2024 02:29:35 GMT
Cache-Control: max-age=31536000, public
Content-Disposition: inline; filename="XIIIFreaky.jpg"
Content-Security-Policy: script-src 'none'
Expires: Fri, 03 Jan 2025 02:29:35 GMT
Server: photobucket
X-Amzn-Trace-Id: Root=1-6596180e-0bd656a640deb57f5d738e06
X-Request-Id: q7mMuvBtllUz63skgE_GP
Vary: Accept
X-Cache: Hit from cloudfront
Via: 1.1 5e78f2621e7d58b55b3512cec178f586.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: MAN51-P3
X-Amz-Cf-Id: taB9YswS-phXW9mNFEj3stOOMt7iqyxgqIdx4I5B4DqMyIdoUwLKcw==
Age: 610736
Vary: Origin
-
DNSwww.dailymotion.comRemote address:8.8.8.8:53Requestwww.dailymotion.comIN AResponsewww.dailymotion.comIN CNAMEdmwww.geo.dmcdn.netdmwww.geo.dmcdn.netIN CNAMEfp.ix7.dailymotion.comfp.ix7.dailymotion.comIN A188.65.124.92
-
GEThttp://www.dailymotion.com/videozap/ykza?rows=3&skin=myYKZARemote address:188.65.124.92:80RequestGET /videozap/ykza?rows=3&skin=myYKZA HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.dailymotion.com
Connection: Keep-Alive
ResponseHTTP/1.1 301 Moved Permanently
Content-Length: 0
Content-Type: text/html
Date: Thu, 11 Jan 2024 04:08:25 GMT
Location: https://dailymotion.com/videozap/ykza?rows=3&skin=myYKZA
Set-Cookie: ts=799184; Path=/; Domain=dailymotion.com; Expires=Tue, 11 Feb 2025 04:08:26 GMT; Max-Age=34300799; Secure; SameSite=None
Set-Cookie: v1st=ad9ddd2c-78d6-4962-b9e3-2aa8cec06a96; Path=/; Domain=dailymotion.com; Expires=Tue, 11 Feb 2025 04:08:26 GMT; Max-Age=34300799; Secure; SameSite=None
-
DNSdailymotion.comRemote address:8.8.8.8:53Requestdailymotion.comIN AResponsedailymotion.comIN A195.8.215.136
-
GEThttps://dailymotion.com/videozap/ykza?rows=3&skin=myYKZARemote address:195.8.215.136:443RequestGET /videozap/ykza?rows=3&skin=myYKZA HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: dailymotion.com
Connection: Keep-Alive
Cookie: ts=799184; v1st=ad9ddd2c-78d6-4962-b9e3-2aa8cec06a96
ResponseHTTP/1.1 301 Moved Permanently
Server: DMS/1.0.42
Content-Type: text/html
Strict-Transport-Security: max-age=31708800; includeSubDomains; preload
Date: Thu, 11 Jan 2024 04:08:28 GMT
Server-Timing: total;dur=1, dc;desc="ix7"
Location: https://www.dailymotion.com/videozap/ykza?rows=3&skin=myYKZA
Timing-Allow-Origin: *
Connection: Keep-Alive
Content-Length: 0
-
DNSpki.googRemote address:8.8.8.8:53Requestpki.googIN AResponsepki.googIN A216.239.32.29
-
GEThttp://pki.goog/gsr1/gsr1.crtRemote address:216.239.32.29:80RequestGET /gsr1/gsr1.crt HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/6.1
Host: pki.goog
ResponseHTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/cacerts
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="cacerts"
Report-To: {"group":"cacerts","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/cacerts"}]}
Content-Length: 889
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 11 Jan 2024 03:23:09 GMT
Expires: Thu, 11 Jan 2024 04:13:09 GMT
Cache-Control: public, max-age=3000
Age: 2717
Last-Modified: Wed, 20 May 2020 16:45:00 GMT
Content-Type: application/pkix-cert
Vary: Accept-Encoding
-
DNSwww.microsoft.comRemote address:8.8.8.8:53Requestwww.microsoft.comIN AResponsewww.microsoft.comIN CNAMEwww.microsoft.com-c-3.edgekey.netwww.microsoft.com-c-3.edgekey.netIN CNAMEwww.microsoft.com-c-3.edgekey.net.globalredir.akadns.netwww.microsoft.com-c-3.edgekey.net.globalredir.akadns.netIN CNAMEe13678.dscb.akamaiedge.nete13678.dscb.akamaiedge.netIN A92.123.241.137
-
GEThttps://www.dailymotion.com/videozap/ykza?rows=3&skin=myYKZARemote address:188.65.124.92:443RequestGET /videozap/ykza?rows=3&skin=myYKZA HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Cookie: ts=799184; v1st=ad9ddd2c-78d6-4962-b9e3-2aa8cec06a96
Connection: Keep-Alive
Host: www.dailymotion.com
ResponseHTTP/1.1 404 Not Found
Cache-Control: no-cache
Content-Encoding: gzip
Content-Length: 8090
Content-Security-Policy: upgrade-insecure-requests
Content-Security-Policy-Report-Only: default-src https: blob: wss: data: android-webview-video-poster: android-webview: chrome-extension: safari-extension: 'unsafe-eval' 'unsafe-inline'; report-uri https://www.dailymotion.com/content_security_policy_report_uri
Content-Type: text/html; charset=utf-8
Date: Thu, 11 Jan 2024 04:08:29 GMT
Referrer-Policy: no-referrer-when-downgrade
Server: DMS/1.0.42
Server-Timing: total;dur=31, dc;desc="ix7"
Set-Cookie: dmvk=659f69bde3247; path=/; domain=.dailymotion.com; Secure; SameSite=none;
Strict-Transport-Security: max-age=31708800; includeSubDomains; preload
Timing-Allow-Origin: *
Vary: X-DM-SSL
Vary: Accept-Encoding
-
DNSstatic1.dmcdn.netRemote address:8.8.8.8:53Requeststatic1.dmcdn.netIN AResponsestatic1.dmcdn.netIN CNAMEstatic1.geo.dmcdn.netstatic1.geo.dmcdn.netIN CNAMEdmotion.s.llnwi.netdmotion.s.llnwi.netIN A87.248.204.1
-
DNSgoogleads.g.doubleclick.netRemote address:8.8.8.8:53Requestgoogleads.g.doubleclick.netIN AResponsegoogleads.g.doubleclick.netIN A172.217.169.34
-
GEThttps://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5352517596134377&output=html&h=600&slotname=7060071897&adk=2494640328&adf=1869645044&pi=t.ma~as.7060071897&w=120&lmt=1701280044&url=file%3A%2F%2FC%3A%5CUsers%5CAdmin%5CAppData%5CLocal%5CTemp%5C527df15a0655ab660522d36b53c78e18.html&ea=0&wgl=1&dt=1704946104988&bpp=5737&bdt=392&idt=6148&shv=r20240109&mjsv=m202401020101&ptt=5&saldr=sd&abxe=1&prev_slotnames=7060071897&correlator=2982232098633&frm=20&pv=1&ga_vid=477108432.1704946111&ga_sid=1704946111&ga_hid=103003919&ga_fc=0&u_tz=0&u_his=1&u_h=720&u_w=1280&u_ah=680&u_aw=1280&u_cd=24&u_sd=1&adx=229&ady=2532&biw=1263&bih=626&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C95320892%2C31080324&oid=2&pvsid=584447095869438&tmod=1340356491&nvt=1&top=file%3A%2F%2F%2FC%3A%2FUsers%2FAdmin%2FAppData%2FLocal%2FTemp%2F527df15a0655ab660522d36b53c78e18.html&fc=896&docm=11&brdim=0%2C54%2C-8%2C-8%2C1280%2C%2C1296%2C696%2C1280%2C626&vis=1&rsz=d%7C%7CeEbr%7C&abl=CS&pfx=0&fu=0&bc=1&ifi=2&uci=a!2&btvi=2&dtd=6159Remote address:172.217.169.34:443RequestGET /pagead/ads?client=ca-pub-5352517596134377&output=html&h=600&slotname=7060071897&adk=2494640328&adf=1869645044&pi=t.ma~as.7060071897&w=120&lmt=1701280044&url=file%3A%2F%2FC%3A%5CUsers%5CAdmin%5CAppData%5CLocal%5CTemp%5C527df15a0655ab660522d36b53c78e18.html&ea=0&wgl=1&dt=1704946104988&bpp=5737&bdt=392&idt=6148&shv=r20240109&mjsv=m202401020101&ptt=5&saldr=sd&abxe=1&prev_slotnames=7060071897&correlator=2982232098633&frm=20&pv=1&ga_vid=477108432.1704946111&ga_sid=1704946111&ga_hid=103003919&ga_fc=0&u_tz=0&u_his=1&u_h=720&u_w=1280&u_ah=680&u_aw=1280&u_cd=24&u_sd=1&adx=229&ady=2532&biw=1263&bih=626&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C95320892%2C31080324&oid=2&pvsid=584447095869438&tmod=1340356491&nvt=1&top=file%3A%2F%2F%2FC%3A%2FUsers%2FAdmin%2FAppData%2FLocal%2FTemp%2F527df15a0655ab660522d36b53c78e18.html&fc=896&docm=11&brdim=0%2C54%2C-8%2C-8%2C1280%2C%2C1296%2C696%2C1280%2C626&vis=1&rsz=d%7C%7CeEbr%7C&abl=CS&pfx=0&fu=0&bc=1&ifi=2&uci=a!2&btvi=2&dtd=6159 HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: googleads.g.doubleclick.net
Connection: Keep-Alive
ResponseHTTP/1.1 403 Forbidden
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Thu, 11 Jan 2024 04:08:32 GMT
Server: cafe
Cache-Control: private
X-XSS-Protection: 0
Set-Cookie: test_cookie=CheckForPermission; expires=Thu, 11-Jan-2024 04:23:32 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
-
GEThttps://googleads.g.doubleclick.net/pagead/html/r20240109/r20190131/zrt_lookup.htmlRemote address:172.217.169.34:443RequestGET /pagead/html/r20240109/r20190131/zrt_lookup.html HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: googleads.g.doubleclick.net
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Server: cafe
Content-Length: 4646
X-XSS-Protection: 0
Date: Wed, 10 Jan 2024 19:43:03 GMT
Expires: Wed, 24 Jan 2024 19:43:03 GMT
Cache-Control: public, max-age=1209600
ETag: 14902866265712643852
Content-Type: text/html; charset=UTF-8
Vary: Accept-Encoding
Age: 30328
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
-
GEThttps://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5352517596134377&output=html&h=600&slotname=7060071897&adk=2494640328&adf=1772163198&pi=t.ma~as.7060071897&w=120&lmt=1701280044&url=file%3A%2F%2FC%3A%5CUsers%5CAdmin%5CAppData%5CLocal%5CTemp%5C527df15a0655ab660522d36b53c78e18.html&ea=0&wgl=1&dt=1704946104974&bpp=5750&bdt=380&idt=6084&shv=r20240109&mjsv=m202401020101&ptt=5&saldr=sd&abxe=1&correlator=2982232098633&frm=20&pv=2&ga_vid=477108432.1704946111&ga_sid=1704946111&ga_hid=103003919&ga_fc=0&u_tz=0&u_his=1&u_h=720&u_w=1280&u_ah=680&u_aw=1280&u_cd=24&u_sd=1&adx=229&ady=1928&biw=1263&bih=626&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C95320892%2C31080324&oid=2&pvsid=584447095869438&tmod=1340356491&nvt=1&top=file%3A%2F%2F%2FC%3A%2FUsers%2FAdmin%2FAppData%2FLocal%2FTemp%2F527df15a0655ab660522d36b53c78e18.html&fc=896&docm=11&brdim=0%2C54%2C-8%2C-8%2C1280%2C%2C1296%2C696%2C1280%2C626&vis=1&rsz=d%7C%7CeEbr%7C&abl=CS&pfx=0&fu=0&bc=1&ifi=1&uci=a!1&btvi=1&dtd=6153Remote address:172.217.169.34:443RequestGET /pagead/ads?client=ca-pub-5352517596134377&output=html&h=600&slotname=7060071897&adk=2494640328&adf=1772163198&pi=t.ma~as.7060071897&w=120&lmt=1701280044&url=file%3A%2F%2FC%3A%5CUsers%5CAdmin%5CAppData%5CLocal%5CTemp%5C527df15a0655ab660522d36b53c78e18.html&ea=0&wgl=1&dt=1704946104974&bpp=5750&bdt=380&idt=6084&shv=r20240109&mjsv=m202401020101&ptt=5&saldr=sd&abxe=1&correlator=2982232098633&frm=20&pv=2&ga_vid=477108432.1704946111&ga_sid=1704946111&ga_hid=103003919&ga_fc=0&u_tz=0&u_his=1&u_h=720&u_w=1280&u_ah=680&u_aw=1280&u_cd=24&u_sd=1&adx=229&ady=1928&biw=1263&bih=626&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C95320892%2C31080324&oid=2&pvsid=584447095869438&tmod=1340356491&nvt=1&top=file%3A%2F%2F%2FC%3A%2FUsers%2FAdmin%2FAppData%2FLocal%2FTemp%2F527df15a0655ab660522d36b53c78e18.html&fc=896&docm=11&brdim=0%2C54%2C-8%2C-8%2C1280%2C%2C1296%2C696%2C1280%2C626&vis=1&rsz=d%7C%7CeEbr%7C&abl=CS&pfx=0&fu=0&bc=1&ifi=1&uci=a!1&btvi=1&dtd=6153 HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: googleads.g.doubleclick.net
Connection: Keep-Alive
ResponseHTTP/1.1 403 Forbidden
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Thu, 11 Jan 2024 04:08:31 GMT
Server: cafe
Cache-Control: private
X-XSS-Protection: 0
Set-Cookie: test_cookie=CheckForPermission; expires=Thu, 11-Jan-2024 04:23:31 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
-
GEThttps://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5352517596134377&output=html&h=60&slotname=8688294634&adk=2350469425&adf=436000470&pi=t.ma~as.8688294634&w=468&lmt=1701280044&url=file%3A%2F%2FC%3A%5CUsers%5CAdmin%5CAppData%5CLocal%5CTemp%5C527df15a0655ab660522d36b53c78e18.html&ea=0&wgl=1&dt=1704946105086&bpp=5640&bdt=490&idt=6063&shv=r20240109&mjsv=m202401020101&ptt=5&saldr=sd&abxe=1&prev_slotnames=7060071897%2C7060071897&correlator=2982232098633&frm=20&pv=1&ga_vid=477108432.1704946111&ga_sid=1704946111&ga_hid=103003919&ga_fc=0&u_tz=0&u_his=1&u_h=720&u_w=1280&u_ah=680&u_aw=1280&u_cd=24&u_sd=1&adx=387&ady=477&biw=1263&bih=626&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C95320892%2C31080324&oid=2&pvsid=584447095869438&tmod=1340356491&nvt=1&top=file%3A%2F%2F%2FC%3A%2FUsers%2FAdmin%2FAppData%2FLocal%2FTemp%2F527df15a0655ab660522d36b53c78e18.html&fc=896&docm=11&brdim=0%2C54%2C-8%2C-8%2C1280%2C%2C1296%2C696%2C1280%2C626&vis=1&rsz=d%7C%7CeE%7C&abl=CS&pfx=0&fu=0&bc=1&ifi=3&uci=a!3&dtd=6068Remote address:172.217.169.34:443RequestGET /pagead/ads?client=ca-pub-5352517596134377&output=html&h=60&slotname=8688294634&adk=2350469425&adf=436000470&pi=t.ma~as.8688294634&w=468&lmt=1701280044&url=file%3A%2F%2FC%3A%5CUsers%5CAdmin%5CAppData%5CLocal%5CTemp%5C527df15a0655ab660522d36b53c78e18.html&ea=0&wgl=1&dt=1704946105086&bpp=5640&bdt=490&idt=6063&shv=r20240109&mjsv=m202401020101&ptt=5&saldr=sd&abxe=1&prev_slotnames=7060071897%2C7060071897&correlator=2982232098633&frm=20&pv=1&ga_vid=477108432.1704946111&ga_sid=1704946111&ga_hid=103003919&ga_fc=0&u_tz=0&u_his=1&u_h=720&u_w=1280&u_ah=680&u_aw=1280&u_cd=24&u_sd=1&adx=387&ady=477&biw=1263&bih=626&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C95320892%2C31080324&oid=2&pvsid=584447095869438&tmod=1340356491&nvt=1&top=file%3A%2F%2F%2FC%3A%2FUsers%2FAdmin%2FAppData%2FLocal%2FTemp%2F527df15a0655ab660522d36b53c78e18.html&fc=896&docm=11&brdim=0%2C54%2C-8%2C-8%2C1280%2C%2C1296%2C696%2C1280%2C626&vis=1&rsz=d%7C%7CeE%7C&abl=CS&pfx=0&fu=0&bc=1&ifi=3&uci=a!3&dtd=6068 HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: googleads.g.doubleclick.net
Connection: Keep-Alive
ResponseHTTP/1.1 403 Forbidden
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Thu, 11 Jan 2024 04:08:32 GMT
Server: cafe
Cache-Control: private
X-XSS-Protection: 0
Set-Cookie: test_cookie=CheckForPermission; expires=Thu, 11-Jan-2024 04:23:32 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
-
GEThttps://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5352517596134377&output=html&adk=1812271804&adf=3025194257&lmt=1701280044&plat=1%3A1049600%2C2%3A1049600%2C3%3A3145728%2C4%3A3145728%2C8%3A4194304%2C9%3A134250504%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&format=0x0&url=file%3A%2F%2FC%3A%5CUsers%5CAdmin%5CAppData%5CLocal%5CTemp%5C527df15a0655ab660522d36b53c78e18.html&ea=0&pra=7&wgl=1&easpi=0&asro=0&asiscm=1&aslmt=0.4&asamt=-1&asedf=0&asefa=1&aseiel=1~2~4~6&aslcwct=150&asacwct=25&aslmct=0.5&asamct=0.5&dt=1704946110740&bpp=4&bdt=6146&idt=415&shv=r20240109&mjsv=m202401020101&ptt=9&saldr=aa&abxe=1&prev_slotnames=7060071897%2C7060071897%2C8688294634&nras=1&correlator=2982232098633&frm=20&pv=1&ga_vid=477108432.1704946111&ga_sid=1704946111&ga_hid=103003919&ga_fc=0&u_tz=0&u_his=1&u_h=720&u_w=1280&u_ah=680&u_aw=1280&u_cd=24&u_sd=1&adx=-12245933&ady=-12245933&biw=1263&bih=626&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C95320892&oid=2&pvsid=584447095869438&tmod=1340356491&nvt=1&fsapi=1&top=file%3A%2F%2F%2FC%3A%2FUsers%2FAdmin%2FAppData%2FLocal%2FTemp%2F527df15a0655ab660522d36b53c78e18.html&fc=896&docm=11&brdim=0%2C54%2C-8%2C-8%2C1280%2C%2C1296%2C696%2C1280%2C626&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=1&ifi=4&uci=a!4&dtd=434Remote address:172.217.169.34:443RequestGET /pagead/ads?client=ca-pub-5352517596134377&output=html&adk=1812271804&adf=3025194257&lmt=1701280044&plat=1%3A1049600%2C2%3A1049600%2C3%3A3145728%2C4%3A3145728%2C8%3A4194304%2C9%3A134250504%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&format=0x0&url=file%3A%2F%2FC%3A%5CUsers%5CAdmin%5CAppData%5CLocal%5CTemp%5C527df15a0655ab660522d36b53c78e18.html&ea=0&pra=7&wgl=1&easpi=0&asro=0&asiscm=1&aslmt=0.4&asamt=-1&asedf=0&asefa=1&aseiel=1~2~4~6&aslcwct=150&asacwct=25&aslmct=0.5&asamct=0.5&dt=1704946110740&bpp=4&bdt=6146&idt=415&shv=r20240109&mjsv=m202401020101&ptt=9&saldr=aa&abxe=1&prev_slotnames=7060071897%2C7060071897%2C8688294634&nras=1&correlator=2982232098633&frm=20&pv=1&ga_vid=477108432.1704946111&ga_sid=1704946111&ga_hid=103003919&ga_fc=0&u_tz=0&u_his=1&u_h=720&u_w=1280&u_ah=680&u_aw=1280&u_cd=24&u_sd=1&adx=-12245933&ady=-12245933&biw=1263&bih=626&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C95320892&oid=2&pvsid=584447095869438&tmod=1340356491&nvt=1&fsapi=1&top=file%3A%2F%2F%2FC%3A%2FUsers%2FAdmin%2FAppData%2FLocal%2FTemp%2F527df15a0655ab660522d36b53c78e18.html&fc=896&docm=11&brdim=0%2C54%2C-8%2C-8%2C1280%2C%2C1296%2C696%2C1280%2C626&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=1&ifi=4&uci=a!4&dtd=434 HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: googleads.g.doubleclick.net
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
Date: Thu, 11 Jan 2024 04:08:32 GMT
Server: cafe
Content-Length: 0
X-XSS-Protection: 0
Set-Cookie: test_cookie=CheckForPermission; expires=Thu, 11-Jan-2024 04:23:32 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Expires: Thu, 11 Jan 2024 04:08:32 GMT
Cache-Control: private
-
DNSapi.dailymotion.comRemote address:8.8.8.8:53Requestapi.dailymotion.comIN AResponseapi.dailymotion.comIN CNAMEdmapi.geo.dmcdn.netdmapi.geo.dmcdn.netIN CNAMEfp.ix7.dailymotion.comfp.ix7.dailymotion.comIN A188.65.124.92
-
GEThttps://api.dailymotion.com/videos?fields%5B%5D=id&fields%5B%5D=uri&fields%5B%5D=duration&fields%5B%5D=record_status&fields%5B%5D=duration_formatted&fields%5B%5D=title&fields%5B%5D=onair&fields%5B%5D=views_total&fields%5B%5D=created_time&fields%5B%5D=thumbnail_120_url&fields%5B%5D=thumbnail_180_url&fields%5B%5D=thumbnail_240_url&fields%5B%5D=thumbnail_360_url&fields%5B%5D=thumbnail_480_url&limit=20&thumbnail_ratio=widescreen&list=what-to-watch&sort=random&ssl_assets=1&context=&localization=en_ZHRemote address:188.65.124.92:443RequestGET /videos?fields%5B%5D=id&fields%5B%5D=uri&fields%5B%5D=duration&fields%5B%5D=record_status&fields%5B%5D=duration_formatted&fields%5B%5D=title&fields%5B%5D=onair&fields%5B%5D=views_total&fields%5B%5D=created_time&fields%5B%5D=thumbnail_120_url&fields%5B%5D=thumbnail_180_url&fields%5B%5D=thumbnail_240_url&fields%5B%5D=thumbnail_360_url&fields%5B%5D=thumbnail_480_url&limit=20&thumbnail_ratio=widescreen&list=what-to-watch&sort=random&ssl_assets=1&context=&localization=en_ZH HTTP/1.1
Referer: https://www.dailymotion.com/videozap/ykza?rows=3&skin=myYKZA
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Host: api.dailymotion.com
Connection: Keep-Alive
Cookie: ts=799184; v1st=ad9ddd2c-78d6-4962-b9e3-2aa8cec06a96; dmvk=659f69bde3247
ResponseHTTP/1.1 200 OK
Access-Control-Allow-Headers: Content-Type, Authorization
Access-Control-Allow-Methods: GET, POST, DELETE
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Date, X-DM-BackNode-Response-Time, X-DM-Edge, X-DM-Cache-Status, X-Served-By
Cache-Control: public, max-age=900
Content-Encoding: gzip
Content-Length: 2624
Content-Security-Policy: upgrade-insecure-requests
Content-Security-Policy-Report-Only: default-src https: blob: wss: data: android-webview-video-poster: android-webview: chrome-extension: safari-extension: 'unsafe-eval' 'unsafe-inline'; report-uri https://www.dailymotion.com/content_security_policy_report_uri
Content-Type: application/json; charset=UTF-8
Date: Thu, 11 Jan 2024 04:08:33 GMT
Etag: W/"FtKOY0lrNTftjxxkSxuR4Q-gzip"
Last-Modified: Thu, 11 Jan 2024 04:08:33 GMT
Referrer-Policy: no-referrer-when-downgrade
Server: DMS/1.0.42
Server-Timing: total;dur=164, dc;desc="ix7"
Timing-Allow-Origin: *
Vary: X-DM-SSL,Accept-Encoding
X-Frame-Options: DENY
X-Robots-Tag: noindex
-
DNShelphomecare.atRemote address:8.8.8.8:53Requesthelphomecare.atIN AResponsehelphomecare.atIN A45.33.20.235helphomecare.atIN A45.56.79.23helphomecare.atIN A45.33.23.183helphomecare.atIN A45.33.2.79helphomecare.atIN A198.58.118.167helphomecare.atIN A96.126.123.244helphomecare.atIN A45.79.19.196helphomecare.atIN A72.14.185.43helphomecare.atIN A45.33.18.44helphomecare.atIN A72.14.178.174helphomecare.atIN A173.255.194.134helphomecare.atIN A45.33.30.197
-
DNStpc.googlesyndication.comRemote address:8.8.8.8:53Requesttpc.googlesyndication.comIN AResponsetpc.googlesyndication.comIN A142.250.180.1
-
GEThttps://tpc.googlesyndication.com/sodar/sodar2.jsRemote address:142.250.180.1:443RequestGET /sodar/sodar2.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: tpc.googlesyndication.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="adspam-signals-scs"
Report-To: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
Date: Thu, 11 Jan 2024 04:08:33 GMT
Expires: Thu, 11 Jan 2024 04:08:33 GMT
Cache-Control: private, max-age=3000
ETag: "1637097310169751"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
-
GEThttps://tpc.googlesyndication.com/sodar/sodar2/225/runner.htmlRemote address:142.250.180.1:443RequestGET /sodar/sodar2/225/runner.html HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: tpc.googlesyndication.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="adspam-signals-scs"
Report-To: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
Content-Length: 5046
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 09 Jan 2024 05:34:57 GMT
Expires: Wed, 08 Jan 2025 05:34:57 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 21 Jun 2021 20:47:05 GMT
Content-Type: text/html
Vary: Accept-Encoding
Age: 167616
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
-
GEThttps://tpc.googlesyndication.com/generate_204?4Md5gARemote address:142.250.180.1:443RequestGET /generate_204?4Md5gA HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Referer: https://tpc.googlesyndication.com/sodar/sodar2/225/runner.html
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: tpc.googlesyndication.com
Connection: Keep-Alive
ResponseHTTP/1.1 204 No Content
Content-Length: 0
Cross-Origin-Resource-Policy: cross-origin
Date: Thu, 11 Jan 2024 04:08:33 GMT
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
-
DNSwww.google.comRemote address:8.8.8.8:53Requestwww.google.comIN AResponsewww.google.comIN A142.250.200.4
-
GEThttps://www.google.com/recaptcha/api2/aframeRemote address:142.250.200.4:443RequestGET /recaptcha/api2/aframe HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.google.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Embedder-Policy: require-corp
Report-To: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
Expires: Thu, 11 Jan 2024 04:08:34 GMT
Date: Thu, 11 Jan 2024 04:08:34 GMT
Cache-Control: private, max-age=300
Content-Security-Policy: script-src 'nonce-mM4ewpm2Yn84BGvVf4_-6Q' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
-
DNSs1.dmcdn.netRemote address:8.8.8.8:53Requests1.dmcdn.netIN AResponses1.dmcdn.netIN CNAMEstatic1.geo.dmcdn.netstatic1.geo.dmcdn.netIN CNAMEdmotion.s.llnwi.netdmotion.s.llnwi.netIN A87.248.205.1
-
DNSc.s-microsoft.comRemote address:8.8.8.8:53Requestc.s-microsoft.comIN AResponsec.s-microsoft.comIN CNAMEc-s.cms.ms.akadns.netc-s.cms.ms.akadns.netIN CNAMEc.s-microsoft.com-c.edgekey.netc.s-microsoft.com-c.edgekey.netIN CNAMEe13678.dscg.akamaiedge.nete13678.dscg.akamaiedge.netIN A96.16.110.13
-
DNSc.s-microsoft.comRemote address:8.8.8.8:53Requestc.s-microsoft.comIN A
-
DNSs2.dmcdn.netRemote address:8.8.8.8:53Requests2.dmcdn.netIN AResponses2.dmcdn.netIN CNAMEstatic2.geo.dmcdn.netstatic2.geo.dmcdn.netIN CNAMEapi.dmcdn.net.edgesuite.netapi.dmcdn.net.edgesuite.netIN CNAMEa1968.d.akamai.neta1968.d.akamai.netIN A88.221.134.32a1968.d.akamai.netIN A88.221.134.66
-
DNSs2.dmcdn.netRemote address:8.8.8.8:53Requests2.dmcdn.netIN A
-
DNSfe0.google.comRemote address:8.8.8.8:53Requestfe0.google.comIN AResponse
-
DNSfe0.google.comRemote address:8.8.8.8:53Requestfe0.google.comIN A
-
DNSpq-direct.revsci.netRemote address:8.8.8.8:53Requestpq-direct.revsci.netIN AResponsepq-direct.revsci.netIN A142.132.202.70
-
DNSjs.revsci.netRemote address:8.8.8.8:53Requestjs.revsci.netIN AResponsejs.revsci.netIN A142.132.202.70
-
DNSapps.identrust.comRemote address:8.8.8.8:53Requestapps.identrust.comIN AResponseapps.identrust.comIN CNAMEidentrust.edgesuite.netidentrust.edgesuite.netIN CNAMEa1952.dscq.akamai.neta1952.dscq.akamai.netIN A96.17.179.205a1952.dscq.akamai.netIN A96.17.179.182
-
GEThttp://apps.identrust.com/roots/dstrootcax3.p7cRemote address:96.17.179.205:80RequestGET /roots/dstrootcax3.p7c HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/6.1
Host: apps.identrust.com
ResponseHTTP/1.1 200 OK
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
Referrer-Policy: same-origin
Last-Modified: Fri, 13 Oct 2023 16:28:31 GMT
ETag: "37d-6079b8c0929c0"
Accept-Ranges: bytes
Content-Length: 893
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Type: application/pkcs7-mime
Cache-Control: max-age=3600
Expires: Thu, 11 Jan 2024 05:08:34 GMT
Date: Thu, 11 Jan 2024 04:08:34 GMT
Connection: keep-alive
-
DNSconnect.facebook.netRemote address:8.8.8.8:53Requestconnect.facebook.netIN AResponseconnect.facebook.netIN CNAMEscontent.xx.fbcdn.netscontent.xx.fbcdn.netIN A163.70.147.23
-
GEThttps://s2.dmcdn.net/v/Rb36h1aOpTcRUW9QP/427x240Remote address:88.221.134.32:443RequestGET /v/Rb36h1aOpTcRUW9QP/427x240 HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Referer: https://www.dailymotion.com/videozap/ykza?rows=3&skin=myYKZA
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: s2.dmcdn.net
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 38643
Last-Modified: Wed, 10 Jan 2024 08:56:25 GMT
timing-allow-origin: *
Server-Timing: total;dur=1, dc;desc="ix7"
Server: DMS/2
Expires: Thu, 11 Jan 2024 18:45:42 GMT
Date: Thu, 11 Jan 2024 04:08:35 GMT
Connection: keep-alive
Access-Control-Allow-Headers: Range
Access-Control-Allow-Origin: *
Cache-Control: max-age=86400
-
GEThttps://s2.dmcdn.net/v/VPK_t1bKcoSr2Xz-A/427x240Remote address:88.221.134.32:443RequestGET /v/VPK_t1bKcoSr2Xz-A/427x240 HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Referer: https://www.dailymotion.com/videozap/ykza?rows=3&skin=myYKZA
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: s2.dmcdn.net
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 16266
Last-Modified: Tue, 09 Jan 2024 09:52:20 GMT
timing-allow-origin: *
Server-Timing: total;dur=3, dc;desc="ix7"
Server: DMS/2
Expires: Thu, 11 Jan 2024 07:16:31 GMT
Date: Thu, 11 Jan 2024 04:08:53 GMT
Connection: keep-alive
Access-Control-Allow-Headers: Range
Access-Control-Allow-Origin: *
Cache-Control: max-age=86400
-
GEThttps://s2.dmcdn.net/v/RZqLc1bKoC4jRvUPm/427x240Remote address:88.221.134.32:443RequestGET /v/RZqLc1bKoC4jRvUPm/427x240 HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Referer: https://www.dailymotion.com/videozap/ykza?rows=3&skin=myYKZA
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: s2.dmcdn.net
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 26069
Last-Modified: Wed, 10 Jan 2024 06:24:00 GMT
timing-allow-origin: *
Server-Timing: total;dur=1, dc;desc="ix7"
Server: DMS/2
Expires: Thu, 11 Jan 2024 19:31:05 GMT
Date: Thu, 11 Jan 2024 04:09:13 GMT
Connection: keep-alive
Access-Control-Allow-Headers: Range
Access-Control-Allow-Origin: *
Cache-Control: max-age=86400
-
GEThttps://s2.dmcdn.net/v/VPK-z1bKbNq6yuWmV/427x240Remote address:88.221.134.32:443RequestGET /v/VPK-z1bKbNq6yuWmV/427x240 HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Referer: https://www.dailymotion.com/videozap/ykza?rows=3&skin=myYKZA
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: s2.dmcdn.net
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 31111
Last-Modified: Wed, 10 Jan 2024 03:14:47 GMT
timing-allow-origin: *
Server-Timing: total;dur=1, dc;desc="ix7"
Server: DMS/2
Expires: Thu, 11 Jan 2024 10:26:26 GMT
Date: Thu, 11 Jan 2024 04:08:53 GMT
Connection: keep-alive
Access-Control-Allow-Headers: Range
Access-Control-Allow-Origin: *
Cache-Control: max-age=86400
-
GEThttps://s2.dmcdn.net/v/RZJEd1bLnd9OZhxw-/427x240Remote address:88.221.134.32:443RequestGET /v/RZJEd1bLnd9OZhxw-/427x240 HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Referer: https://www.dailymotion.com/videozap/ykza?rows=3&skin=myYKZA
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: s2.dmcdn.net
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 33649
Last-Modified: Wed, 10 Jan 2024 08:01:11 GMT
timing-allow-origin: *
Server-Timing: total;dur=1, dc;desc="dc3"
Server: DMS/2
Expires: Thu, 11 Jan 2024 13:50:12 GMT
Date: Thu, 11 Jan 2024 04:09:13 GMT
Connection: keep-alive
Access-Control-Allow-Headers: Range
Access-Control-Allow-Origin: *
Cache-Control: max-age=86400
-
GEThttps://s2.dmcdn.net/v/RajJ61bLSmiN8uYCU/427x240Remote address:88.221.134.32:443RequestGET /v/RajJ61bLSmiN8uYCU/427x240 HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Referer: https://www.dailymotion.com/videozap/ykza?rows=3&skin=myYKZA
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: s2.dmcdn.net
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 38475
Last-Modified: Wed, 10 Jan 2024 16:48:05 GMT
timing-allow-origin: *
Server-Timing: total;dur=1, dc;desc="ix7"
Server: DMS/2
Expires: Thu, 11 Jan 2024 20:44:40 GMT
Date: Thu, 11 Jan 2024 04:09:53 GMT
Connection: keep-alive
Access-Control-Allow-Headers: Range
Access-Control-Allow-Origin: *
Cache-Control: max-age=86400
-
GEThttps://connect.facebook.net/en_GB/sdk.jsRemote address:163.70.147.23:443RequestGET /en_GB/sdk.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Referer: https://www.dailymotion.com/videozap/ykza?rows=3&skin=myYKZA
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: connect.facebook.net
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Expose-Headers: X-FB-Content-MD5
x-fb-content-md5: f9569f57ccaddaf8e63e9cd9769e1bfe
ETag: "43a59a4e19ff179a3f7d2dc105924ec7"
Content-Type: application/x-javascript; charset=utf-8
timing-allow-origin: *
Access-Control-Allow-Origin: *
cross-origin-resource-policy: cross-origin
Expires: Thu, 11 Jan 2024 04:09:58 GMT
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
permissions-policy-report-only: autoplay=(), clipboard-read=(), clipboard-write=(), display-capture=(), encrypted-media=(), fullscreen=(), keyboard-map=(), picture-in-picture=(), xr-spatial-tracking=()
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-opener-policy: same-origin-allow-popups
X-Content-Type-Options: nosniff
reporting-endpoints:
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
content-md5: MopCpiYY+TnfpebQIs0Yzg==
X-FB-Debug: N+C7TNNKNU6Okkj6FCNQHaQSCt/ZeZ1L7O02zEbw8JAby23bjKZhcogGLdCg9qumcbIZauQxaHXqyNUmGGbvmA==
Date: Thu, 11 Jan 2024 04:08:35 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 1686
-
GEThttps://connect.facebook.net/en_GB/sdk.js?hash=ee1c386325a8ac61f3bc9f5a29d94efbRemote address:163.70.147.23:443RequestGET /en_GB/sdk.js?hash=ee1c386325a8ac61f3bc9f5a29d94efb HTTP/1.1
Accept: application/javascript, */*;q=0.8
Referer: https://www.dailymotion.com/videozap/ykza?rows=3&skin=myYKZA
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: connect.facebook.net
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Expose-Headers: X-FB-Content-MD5
x-fb-content-md5: 8c59e2fde126c397ed9f6ebede5da9b4
ETag: "f612a6ad38eac439f5ed7f4fdc9e9055"
Content-Type: application/x-javascript; charset=utf-8
timing-allow-origin: *
Access-Control-Allow-Origin: *
cross-origin-resource-policy: cross-origin
Expires: Fri, 10 Jan 2025 03:01:16 GMT
Cache-Control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
permissions-policy-report-only: autoplay=(), clipboard-read=(), clipboard-write=(), display-capture=(), encrypted-media=(), fullscreen=(), keyboard-map=(), picture-in-picture=(), xr-spatial-tracking=()
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-opener-policy: same-origin-allow-popups
X-Content-Type-Options: nosniff
reporting-endpoints:
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
content-md5: pqMEFR7BGgHAcyEE77E/Qw==
X-FB-Debug: zBX7WnFK9k8Mg6/7PyYG0ZkCH4xGalQ7RZoCSeHXltwAFpIEuEjM2ogS2MiLnpJmwMDbmyZTf5xtRBrz58ALKQ==
Date: Thu, 11 Jan 2024 04:08:35 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 88393
-
GEThttp://www.bing.com/favicon.icoRemote address:92.123.128.167:80RequestGET /favicon.ico HTTP/1.1
Accept: */*
UA-CPU: AMD64
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; Trident/7.0; rv:11.0) like Gecko
Host: www.bing.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Cache-Control: public, max-age=15552000
Content-Length: 4286
Content-Type: image/x-icon
Last-Modified: Mon, 01 Jan 1601 00:00:00 GMT
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-MSEdge-Ref: Ref A: 0FD04CFC1A1E485B9EBD8B31934F6D09 Ref B: LTSEDGE0810 Ref C: 2022-12-09T13:31:02Z
Date: Thu, 11 Jan 2024 04:08:40 GMT
Connection: keep-alive
X-CDN-TraceID: 0.a7777b5c.1704946120.1609c834
-
DNSRemote address:92.123.128.167:80ResponseHTTP/1.0 408 Request Time-out
Server: AkamaiGHost
Mime-Version: 1.0
Date: Thu, 11 Jan 2024 04:09:14 GMT
Content-Type: text/html
Content-Length: 218
Expires: Thu, 11 Jan 2024 04:09:14 GMT
-
142.250.187.194:80http://pagead2.googlesyndication.com/pagead/show_ads.jshttp
HTTP Request
GET http://pagead2.googlesyndication.com/pagead/show_ads.jsHTTP Response
200 -
3.162.20.109:80http://i59.photobucket.com/albums/g320/Blizzardtje/XIII/XIIIFreaky.jpghttp
HTTP Request
GET http://i59.photobucket.com/albums/g320/Blizzardtje/XIII/XIIIFreaky.jpgHTTP Response
301 -
3.162.20.109:80i59.photobucket.com
-
142.250.187.194:80pagead2.googlesyndication.com
-
3.162.20.109:443https://i59.photobucket.com/albums/g320/Blizzardtje/XIII/XIIIFreaky.jpgtls, http
HTTP Request
GET https://i59.photobucket.com/albums/g320/Blizzardtje/XIII/XIIIFreaky.jpgHTTP Response
200 -
188.65.124.92:80http://www.dailymotion.com/videozap/ykza?rows=3&skin=myYKZAhttp
HTTP Request
GET http://www.dailymotion.com/videozap/ykza?rows=3&skin=myYKZAHTTP Response
301 -
188.65.124.92:80www.dailymotion.com
-
195.8.215.136:443https://dailymotion.com/videozap/ykza?rows=3&skin=myYKZAtls, http
HTTP Request
GET https://dailymotion.com/videozap/ykza?rows=3&skin=myYKZAHTTP Response
301 -
195.8.215.136:443dailymotion.comtls
-
216.239.32.29:80http://pki.goog/gsr1/gsr1.crthttp
HTTP Request
GET http://pki.goog/gsr1/gsr1.crtHTTP Response
200 -
188.65.124.92:443https://www.dailymotion.com/videozap/ykza?rows=3&skin=myYKZAtls, http
HTTP Request
GET https://www.dailymotion.com/videozap/ykza?rows=3&skin=myYKZAHTTP Response
404 -
87.248.204.1:443static1.dmcdn.nettls
-
87.248.204.1:443static1.dmcdn.nettls
-
87.248.204.1:443static1.dmcdn.nettls
-
87.248.204.1:443static1.dmcdn.nettls
-
87.248.204.1:443static1.dmcdn.nettls
-
172.217.169.34:443https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5352517596134377&output=html&h=600&slotname=7060071897&adk=2494640328&adf=1869645044&pi=t.ma~as.7060071897&w=120&lmt=1701280044&url=file%3A%2F%2FC%3A%5CUsers%5CAdmin%5CAppData%5CLocal%5CTemp%5C527df15a0655ab660522d36b53c78e18.html&ea=0&wgl=1&dt=1704946104988&bpp=5737&bdt=392&idt=6148&shv=r20240109&mjsv=m202401020101&ptt=5&saldr=sd&abxe=1&prev_slotnames=7060071897&correlator=2982232098633&frm=20&pv=1&ga_vid=477108432.1704946111&ga_sid=1704946111&ga_hid=103003919&ga_fc=0&u_tz=0&u_his=1&u_h=720&u_w=1280&u_ah=680&u_aw=1280&u_cd=24&u_sd=1&adx=229&ady=2532&biw=1263&bih=626&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C95320892%2C31080324&oid=2&pvsid=584447095869438&tmod=1340356491&nvt=1&top=file%3A%2F%2F%2FC%3A%2FUsers%2FAdmin%2FAppData%2FLocal%2FTemp%2F527df15a0655ab660522d36b53c78e18.html&fc=896&docm=11&brdim=0%2C54%2C-8%2C-8%2C1280%2C%2C1296%2C696%2C1280%2C626&vis=1&rsz=d%7C%7CeEbr%7C&abl=CS&pfx=0&fu=0&bc=1&ifi=2&uci=a!2&btvi=2&dtd=6159tls, http
HTTP Request
GET https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5352517596134377&output=html&h=600&slotname=7060071897&adk=2494640328&adf=1869645044&pi=t.ma~as.7060071897&w=120&lmt=1701280044&url=file%3A%2F%2FC%3A%5CUsers%5CAdmin%5CAppData%5CLocal%5CTemp%5C527df15a0655ab660522d36b53c78e18.html&ea=0&wgl=1&dt=1704946104988&bpp=5737&bdt=392&idt=6148&shv=r20240109&mjsv=m202401020101&ptt=5&saldr=sd&abxe=1&prev_slotnames=7060071897&correlator=2982232098633&frm=20&pv=1&ga_vid=477108432.1704946111&ga_sid=1704946111&ga_hid=103003919&ga_fc=0&u_tz=0&u_his=1&u_h=720&u_w=1280&u_ah=680&u_aw=1280&u_cd=24&u_sd=1&adx=229&ady=2532&biw=1263&bih=626&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C95320892%2C31080324&oid=2&pvsid=584447095869438&tmod=1340356491&nvt=1&top=file%3A%2F%2F%2FC%3A%2FUsers%2FAdmin%2FAppData%2FLocal%2FTemp%2F527df15a0655ab660522d36b53c78e18.html&fc=896&docm=11&brdim=0%2C54%2C-8%2C-8%2C1280%2C%2C1296%2C696%2C1280%2C626&vis=1&rsz=d%7C%7CeEbr%7C&abl=CS&pfx=0&fu=0&bc=1&ifi=2&uci=a!2&btvi=2&dtd=6159HTTP Response
403 -
172.217.169.34:443https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5352517596134377&output=html&adk=1812271804&adf=3025194257&lmt=1701280044&plat=1%3A1049600%2C2%3A1049600%2C3%3A3145728%2C4%3A3145728%2C8%3A4194304%2C9%3A134250504%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&format=0x0&url=file%3A%2F%2FC%3A%5CUsers%5CAdmin%5CAppData%5CLocal%5CTemp%5C527df15a0655ab660522d36b53c78e18.html&ea=0&pra=7&wgl=1&easpi=0&asro=0&asiscm=1&aslmt=0.4&asamt=-1&asedf=0&asefa=1&aseiel=1~2~4~6&aslcwct=150&asacwct=25&aslmct=0.5&asamct=0.5&dt=1704946110740&bpp=4&bdt=6146&idt=415&shv=r20240109&mjsv=m202401020101&ptt=9&saldr=aa&abxe=1&prev_slotnames=7060071897%2C7060071897%2C8688294634&nras=1&correlator=2982232098633&frm=20&pv=1&ga_vid=477108432.1704946111&ga_sid=1704946111&ga_hid=103003919&ga_fc=0&u_tz=0&u_his=1&u_h=720&u_w=1280&u_ah=680&u_aw=1280&u_cd=24&u_sd=1&adx=-12245933&ady=-12245933&biw=1263&bih=626&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C95320892&oid=2&pvsid=584447095869438&tmod=1340356491&nvt=1&fsapi=1&top=file%3A%2F%2F%2FC%3A%2FUsers%2FAdmin%2FAppData%2FLocal%2FTemp%2F527df15a0655ab660522d36b53c78e18.html&fc=896&docm=11&brdim=0%2C54%2C-8%2C-8%2C1280%2C%2C1296%2C696%2C1280%2C626&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=1&ifi=4&uci=a!4&dtd=434tls, http
HTTP Request
GET https://googleads.g.doubleclick.net/pagead/html/r20240109/r20190131/zrt_lookup.htmlHTTP Response
200HTTP Request
GET https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5352517596134377&output=html&h=600&slotname=7060071897&adk=2494640328&adf=1772163198&pi=t.ma~as.7060071897&w=120&lmt=1701280044&url=file%3A%2F%2FC%3A%5CUsers%5CAdmin%5CAppData%5CLocal%5CTemp%5C527df15a0655ab660522d36b53c78e18.html&ea=0&wgl=1&dt=1704946104974&bpp=5750&bdt=380&idt=6084&shv=r20240109&mjsv=m202401020101&ptt=5&saldr=sd&abxe=1&correlator=2982232098633&frm=20&pv=2&ga_vid=477108432.1704946111&ga_sid=1704946111&ga_hid=103003919&ga_fc=0&u_tz=0&u_his=1&u_h=720&u_w=1280&u_ah=680&u_aw=1280&u_cd=24&u_sd=1&adx=229&ady=1928&biw=1263&bih=626&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C95320892%2C31080324&oid=2&pvsid=584447095869438&tmod=1340356491&nvt=1&top=file%3A%2F%2F%2FC%3A%2FUsers%2FAdmin%2FAppData%2FLocal%2FTemp%2F527df15a0655ab660522d36b53c78e18.html&fc=896&docm=11&brdim=0%2C54%2C-8%2C-8%2C1280%2C%2C1296%2C696%2C1280%2C626&vis=1&rsz=d%7C%7CeEbr%7C&abl=CS&pfx=0&fu=0&bc=1&ifi=1&uci=a!1&btvi=1&dtd=6153HTTP Response
403HTTP Request
GET https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5352517596134377&output=html&h=60&slotname=8688294634&adk=2350469425&adf=436000470&pi=t.ma~as.8688294634&w=468&lmt=1701280044&url=file%3A%2F%2FC%3A%5CUsers%5CAdmin%5CAppData%5CLocal%5CTemp%5C527df15a0655ab660522d36b53c78e18.html&ea=0&wgl=1&dt=1704946105086&bpp=5640&bdt=490&idt=6063&shv=r20240109&mjsv=m202401020101&ptt=5&saldr=sd&abxe=1&prev_slotnames=7060071897%2C7060071897&correlator=2982232098633&frm=20&pv=1&ga_vid=477108432.1704946111&ga_sid=1704946111&ga_hid=103003919&ga_fc=0&u_tz=0&u_his=1&u_h=720&u_w=1280&u_ah=680&u_aw=1280&u_cd=24&u_sd=1&adx=387&ady=477&biw=1263&bih=626&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C95320892%2C31080324&oid=2&pvsid=584447095869438&tmod=1340356491&nvt=1&top=file%3A%2F%2F%2FC%3A%2FUsers%2FAdmin%2FAppData%2FLocal%2FTemp%2F527df15a0655ab660522d36b53c78e18.html&fc=896&docm=11&brdim=0%2C54%2C-8%2C-8%2C1280%2C%2C1296%2C696%2C1280%2C626&vis=1&rsz=d%7C%7CeE%7C&abl=CS&pfx=0&fu=0&bc=1&ifi=3&uci=a!3&dtd=6068HTTP Response
403HTTP Request
GET https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5352517596134377&output=html&adk=1812271804&adf=3025194257&lmt=1701280044&plat=1%3A1049600%2C2%3A1049600%2C3%3A3145728%2C4%3A3145728%2C8%3A4194304%2C9%3A134250504%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&format=0x0&url=file%3A%2F%2FC%3A%5CUsers%5CAdmin%5CAppData%5CLocal%5CTemp%5C527df15a0655ab660522d36b53c78e18.html&ea=0&pra=7&wgl=1&easpi=0&asro=0&asiscm=1&aslmt=0.4&asamt=-1&asedf=0&asefa=1&aseiel=1~2~4~6&aslcwct=150&asacwct=25&aslmct=0.5&asamct=0.5&dt=1704946110740&bpp=4&bdt=6146&idt=415&shv=r20240109&mjsv=m202401020101&ptt=9&saldr=aa&abxe=1&prev_slotnames=7060071897%2C7060071897%2C8688294634&nras=1&correlator=2982232098633&frm=20&pv=1&ga_vid=477108432.1704946111&ga_sid=1704946111&ga_hid=103003919&ga_fc=0&u_tz=0&u_his=1&u_h=720&u_w=1280&u_ah=680&u_aw=1280&u_cd=24&u_sd=1&adx=-12245933&ady=-12245933&biw=1263&bih=626&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C95320892&oid=2&pvsid=584447095869438&tmod=1340356491&nvt=1&fsapi=1&top=file%3A%2F%2F%2FC%3A%2FUsers%2FAdmin%2FAppData%2FLocal%2FTemp%2F527df15a0655ab660522d36b53c78e18.html&fc=896&docm=11&brdim=0%2C54%2C-8%2C-8%2C1280%2C%2C1296%2C696%2C1280%2C626&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=1&ifi=4&uci=a!4&dtd=434HTTP Response
200 -
195.8.215.136:443dailymotion.comtls
-
172.217.169.34:443googleads.g.doubleclick.nettls
-
172.217.169.34:443googleads.g.doubleclick.nettls
-
87.248.204.1:443static1.dmcdn.nettls
-
188.65.124.92:443https://api.dailymotion.com/videos?fields%5B%5D=id&fields%5B%5D=uri&fields%5B%5D=duration&fields%5B%5D=record_status&fields%5B%5D=duration_formatted&fields%5B%5D=title&fields%5B%5D=onair&fields%5B%5D=views_total&fields%5B%5D=created_time&fields%5B%5D=thumbnail_120_url&fields%5B%5D=thumbnail_180_url&fields%5B%5D=thumbnail_240_url&fields%5B%5D=thumbnail_360_url&fields%5B%5D=thumbnail_480_url&limit=20&thumbnail_ratio=widescreen&list=what-to-watch&sort=random&ssl_assets=1&context=&localization=en_ZHtls, http
HTTP Request
GET https://api.dailymotion.com/videos?fields%5B%5D=id&fields%5B%5D=uri&fields%5B%5D=duration&fields%5B%5D=record_status&fields%5B%5D=duration_formatted&fields%5B%5D=title&fields%5B%5D=onair&fields%5B%5D=views_total&fields%5B%5D=created_time&fields%5B%5D=thumbnail_120_url&fields%5B%5D=thumbnail_180_url&fields%5B%5D=thumbnail_240_url&fields%5B%5D=thumbnail_360_url&fields%5B%5D=thumbnail_480_url&limit=20&thumbnail_ratio=widescreen&list=what-to-watch&sort=random&ssl_assets=1&context=&localization=en_ZHHTTP Response
200 -
188.65.124.92:443api.dailymotion.comtls
-
45.33.20.235:8080helphomecare.at
-
45.33.20.235:8080helphomecare.at
-
142.250.180.1:443https://tpc.googlesyndication.com/generate_204?4Md5gAtls, http
HTTP Request
GET https://tpc.googlesyndication.com/sodar/sodar2.jsHTTP Response
200HTTP Request
GET https://tpc.googlesyndication.com/sodar/sodar2/225/runner.htmlHTTP Response
200HTTP Request
GET https://tpc.googlesyndication.com/generate_204?4Md5gAHTTP Response
204 -
142.250.180.1:443tpc.googlesyndication.comtls
-
142.250.200.4:443www.google.comtls
-
142.250.200.4:443https://www.google.com/recaptcha/api2/aframetls, http
HTTP Request
GET https://www.google.com/recaptcha/api2/aframeHTTP Response
200 -
87.248.205.1:443s1.dmcdn.nettls
-
87.248.205.1:443s1.dmcdn.nettls
-
87.248.205.1:443s1.dmcdn.nettls
-
87.248.205.1:443s1.dmcdn.nettls
-
87.248.205.1:443s1.dmcdn.nettls
-
142.132.202.70:443pq-direct.revsci.nettls -
142.132.202.70:443pq-direct.revsci.nettls
-
142.132.202.70:443js.revsci.nettls
-
142.132.202.70:443js.revsci.nettls
-
142.132.202.70:443js.revsci.nettls
-
142.132.202.70:443js.revsci.nettls
-
96.17.179.205:80http://apps.identrust.com/roots/dstrootcax3.p7chttp
HTTP Request
GET http://apps.identrust.com/roots/dstrootcax3.p7cHTTP Response
200 -
142.132.202.70:443js.revsci.nettls
-
142.132.202.70:443js.revsci.nettls
-
142.132.202.70:443js.revsci.net
-
142.132.202.70:443js.revsci.net
-
96.16.110.13:443c.s-microsoft.comtls
-
96.16.110.13:443c.s-microsoft.comtls
-
88.221.134.32:443https://s2.dmcdn.net/v/RZqLc1bKoC4jRvUPm/427x240tls, http
HTTP Request
GET https://s2.dmcdn.net/v/Rb36h1aOpTcRUW9QP/427x240HTTP Response
200HTTP Request
GET https://s2.dmcdn.net/v/VPK_t1bKcoSr2Xz-A/427x240HTTP Response
200HTTP Request
GET https://s2.dmcdn.net/v/RZqLc1bKoC4jRvUPm/427x240HTTP Response
200 -
88.221.134.32:443s2.dmcdn.nettls
-
88.221.134.32:443https://s2.dmcdn.net/v/RajJ61bLSmiN8uYCU/427x240tls, http
HTTP Request
GET https://s2.dmcdn.net/v/VPK-z1bKbNq6yuWmV/427x240HTTP Response
200HTTP Request
GET https://s2.dmcdn.net/v/RZJEd1bLnd9OZhxw-/427x240HTTP Response
200HTTP Request
GET https://s2.dmcdn.net/v/RajJ61bLSmiN8uYCU/427x240HTTP Response
200 -
163.70.147.23:443https://connect.facebook.net/en_GB/sdk.js?hash=ee1c386325a8ac61f3bc9f5a29d94efbtls, http
HTTP Request
GET https://connect.facebook.net/en_GB/sdk.jsHTTP Response
200HTTP Request
GET https://connect.facebook.net/en_GB/sdk.js?hash=ee1c386325a8ac61f3bc9f5a29d94efbHTTP Response
200 -
163.70.147.23:443connect.facebook.nettls
-
142.132.202.70:443pq-direct.revsci.nettls
-
96.16.110.13:443c.s-microsoft.comtls
-
92.123.128.167:80http://www.bing.com/favicon.icohttp
HTTP Request
GET http://www.bing.com/favicon.icoHTTP Response
200 -
92.123.128.167:80www.bing.comhttp
HTTP Response
408 -
45.56.79.23:8080helphomecare.at
-
45.56.79.23:8080helphomecare.at
-
45.33.23.183:8080helphomecare.at
-
45.33.23.183:8080helphomecare.at
-
204.79.197.200:443ieonline.microsoft.comtls
-
204.79.197.200:443ieonline.microsoft.comtls
-
45.33.2.79:8080helphomecare.at
-
45.33.2.79:8080helphomecare.at
-
204.79.197.200:443ieonline.microsoft.comtls
-
198.58.118.167:8080helphomecare.at
-
198.58.118.167:8080helphomecare.at
-
8.8.8.8:53tiwolfly.free.frdns
DNS Request
tiwolfly.free.fr
-
8.8.8.8:53i59.photobucket.comdns
DNS Request
i59.photobucket.com
DNS Response
3.162.20.1093.162.20.233.162.20.243.162.20.115
-
8.8.8.8:53myykza.free.frdns
DNS Request
myykza.free.fr
-
8.8.8.8:53zoom.ind.free.frdns
DNS Request
zoom.ind.free.fr
-
8.8.8.8:53www.dailymotion.comdns
DNS Request
www.dailymotion.com
DNS Response
188.65.124.92
-
8.8.8.8:53dailymotion.comdns
DNS Request
dailymotion.com
DNS Response
195.8.215.136
-
8.8.8.8:53pki.googdns
DNS Request
pki.goog
DNS Response
216.239.32.29
-
8.8.8.8:53www.microsoft.comdns
DNS Request
www.microsoft.com
DNS Response
92.123.241.137
-
8.8.8.8:53static1.dmcdn.netdns
DNS Request
static1.dmcdn.net
DNS Response
87.248.204.1
-
8.8.8.8:53googleads.g.doubleclick.netdns
DNS Request
googleads.g.doubleclick.net
DNS Response
172.217.169.34
-
8.8.8.8:53api.dailymotion.comdns
DNS Request
api.dailymotion.com
DNS Response
188.65.124.92
-
8.8.8.8:53helphomecare.atdns
DNS Request
helphomecare.at
DNS Response
45.33.20.23545.56.79.2345.33.23.18345.33.2.79198.58.118.16796.126.123.24445.79.19.19672.14.185.4345.33.18.4472.14.178.174173.255.194.13445.33.30.197
-
8.8.8.8:53tpc.googlesyndication.comdns
DNS Request
tpc.googlesyndication.com
DNS Response
142.250.180.1
-
8.8.8.8:53www.google.comdns
DNS Request
www.google.com
DNS Response
142.250.200.4
-
8.8.8.8:53s1.dmcdn.netdns
DNS Request
s1.dmcdn.net
DNS Response
87.248.205.1
-
8.8.8.8:53c.s-microsoft.comdns
DNS Request
c.s-microsoft.com
DNS Request
c.s-microsoft.com
DNS Response
96.16.110.13
-
8.8.8.8:53s2.dmcdn.netdns
DNS Request
s2.dmcdn.net
DNS Request
s2.dmcdn.net
DNS Response
88.221.134.3288.221.134.66
-
8.8.8.8:53fe0.google.comdns
DNS Request
fe0.google.com
DNS Request
fe0.google.com
-
8.8.8.8:53pq-direct.revsci.netdns
DNS Request
pq-direct.revsci.net
DNS Response
142.132.202.70
-
8.8.8.8:53js.revsci.netdns
DNS Request
js.revsci.net
DNS Response
142.132.202.70
-
8.8.8.8:53apps.identrust.comdns
DNS Request
apps.identrust.com
DNS Response
96.17.179.20596.17.179.182
-
8.8.8.8:53connect.facebook.netdns
DNS Request
connect.facebook.net
DNS Response
163.70.147.23
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
914B
MD5e4a68ac854ac5242460afd72481b2a44
SHA1df3c24f9bfd666761b268073fe06d1cc8d4f82a4
SHA256cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f
SHA5125622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5
-
Filesize
5B
MD55bfa51f3a417b98e7443eca90fc94703
SHA18c015d80b8a23f780bdd215dc842b0f5551f63bd
SHA256bebe2853a3485d1c2e5c5be4249183e0ddaff9f87de71652371700a89d937128
SHA5124cd03686254bb28754cbaa635ae1264723e2be80ce1dd0f78d1ab7aee72232f5b285f79e488e9c5c49ff343015bd07bb8433d6cee08ae3cea8c317303e3ac399
-
Filesize
65KB
MD5ac05d27423a85adc1622c714f2cb6184
SHA1b0fe2b1abddb97837ea0195be70ab2ff14d43198
SHA256c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d
SHA5126d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d
-
Filesize
727B
MD50eb081e6a4e87db5bbf4eaf7dc200de5
SHA1f591529241232d94f4d0532c35a82b271c7cab2c
SHA256e695d80e39ae2345d951f8efd13612a1468ef86aeedc6cc51043ddecb8f2f5b2
SHA51292e740bed81719870df226c01b96da275d07766a2350e3edd19669b3e89aa37d91f9ea475ddd1bda9c535dcd2ffc7d8347a84307c2cb1d8cf710adcfdcc49277
-
Filesize
1KB
MD5a266bb7dcc38a562631361bbf61dd11b
SHA13b1efd3a66ea28b16697394703a72ca340a05bd5
SHA256df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e
SHA5120da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc
-
Filesize
252B
MD53c5b58f8956b9b7578995ac2147bb737
SHA16868ef56df3f8bf9b2d6d1955a06f68acd5fda68
SHA25657996b6805c120fb69a3682a474bb866e8c0f5c508b79f52f17aa06c77d38fc9
SHA512da543b83e0a40a6dd779c2e5022d13d1eeef3ffa297f0a7a9e3b0cea94e979cfb5cfed5da40ad4f3fca839651392c7f1d0a3e3366d4493c58ddc7828fb367180
-
Filesize
414B
MD501870f5e21e83df83777f17846237c41
SHA111047f98e9e158218275fae0df091f193f4f0fda
SHA2566abd5d8be6b4185d98babd7f648e1ee2f2d3a596920a0344745a8855fa007f35
SHA512c090205416a0840a229e84a06f6a917d3e3c94c94794b2c90f946b7180c0be91388cda634defbf8627bb15cf1f4007c1abb995e0b8abd3c0aff330f96cd62f6a
-
Filesize
344B
MD591ab26c684dc342eef5c3d8aebb56b8e
SHA1bf25da06dfea5fa049f8e77166269e429bf5f165
SHA25669de6af7479dea2d2f1ccf48fbc441fe50126a6dbd3dfa7258f5dedd4a4215bb
SHA51239599a43c8ae89ac654437dc56d1b1122858b58a4fbf29b54854deb9d0dd85711f8f91946a5fee3fd376050e395f625fbb2f0f264ad459a0bc438786bbdccfde
-
Filesize
344B
MD582747b18da188e3c05eb57c3bb579625
SHA1199f0f2d972a9790bfc37d562487ca2de2eee981
SHA2568ac76652362008d18b7e71bda0ebe4e09bbdb3135e948921a86357cc22257194
SHA5129243eced6e8bb48e3554ae59c90c1fdfef6c257f3dfa172f1ad3c938830771b42231b976d3a6c40178c2324d8a6b8dbd4b894160a9000f9ae307b6dc75e358fe
-
Filesize
344B
MD513f3732a3590a5453a4b1317822d2ef7
SHA172bf3356cb0588a921e4ee7c3e2b6e4b5b7f6d21
SHA25634ca0544b6b3147b2f0259206859d0020152c4460d758f808a496b5a29bc09a9
SHA512c17cbe5f6941c4c54db9dd7734d305259b527c61bd593f267ff5e82b8ea03e29de62c08a088efb1174606d6900508b6e24c0195aaf15450bd64ac1a0e222463a
-
Filesize
344B
MD56a6d0647c25f22f0bad0e12e9d020b0d
SHA178afb2e2e1c45b8e33919134d1bbc613b366c335
SHA256aadf51052397beca2c8dc70e9ba96a0f7dd24e722003838722234f1837e2982b
SHA512bafc658fb4646b04abd2a79b4b36c5e695048e7d0780108a5990573b615e4f18cd215283128a0c022734888e1f003147fada3e0d0b9bfb5bf0d744ca06fb806c
-
Filesize
344B
MD53f83438409bb38432c116eabe1350735
SHA17f1084901538071d8d1b6a555678e9d1c46e90d2
SHA256147e5fb76fe88d9c025fbef8c571afec04723710a5d7defcbbc0930e3ac77c14
SHA512f5393f1d3483e2849d581da7d5e7d5a4b38a2a7b87aa2882023e9616894a57d4bc2dbd8d5596371a4ef1730c0e56937de21985be4181fae5335f327b9985e7ce
-
Filesize
344B
MD5257bdf1f608a631e9e83a176e26a23fb
SHA1e01a2b78bca95650d1aab74c0f1788b79449a196
SHA256de7d7c2ae4ef8eaf7a70e7d4b2d438237828df9e5a704e18937d26953d630a46
SHA512c0e75d3ee06ad4873bf8f61c9fce059c3fa4b0086a8d157a68a681f726bf6788e9dfbd7308dc5e163543bc498a680263a1389f5f8f7ca5fdadcce3755c4a704e
-
Filesize
344B
MD5c28d0214fc47f29a3ebbde6a73f0774b
SHA18f882b19d7207f32fdb11ee526a716619ec33954
SHA2569c283aaba059c80d04b01927aa7527a594a577fb82f14d7da767f74f5843eef3
SHA51230e05b50c9548385028f6f4261527aa69533204a632c581edf886b4e4af783ec9587286434e552752f01d99ed6f6824ebf781b025b9cca823c1dea42374dbf24
-
Filesize
344B
MD599203561c72734bed4431e1ba400ca1e
SHA10d0ae5cf1394bf1bb02f3f67330cd6c94be6d6ff
SHA256ad8382c9d5484759dec2527626a75a2f398172f13195b1008fc88893b6addcab
SHA512a299bdf2b56b97ba0a2dbdf1075df06a66278a391694a7579cdc13a5ba190ae6673887bd2e1a564850402c00c6903f3136500727ab4ac982969eff1f8730daf3
-
Filesize
344B
MD5e14a359ccbc7b95f83f148bc0d6bad9a
SHA1902396490bf8ea2da550a5f7d79cc2e1a4a2249f
SHA256e6a7b115fa2fbfa45722d25ff0084f8595201e8271abe51fd43aaa06ca32564d
SHA512e3a8502182336d6a51d2c2ef771c7dc70c61888645fd6061031a3a1b5cd1fb47f2e4bf57e9671e5f16def7e9fe7a5dace0b287c20b1a2c1ba212e17d45c8832f
-
Filesize
344B
MD56cfd1b267bc55007be032a1590bbff38
SHA16cbf7c30b1198d8c4dd46ebfb2a28c8f9c33f8cc
SHA256cd914799134944df0cb7526f92b8404bff16b20b4177af8aeb791a7036d54484
SHA512f7d1b41bd60e8953c6c965201d708652889add14a615c78d1a6068f86a1c255a9c0ca6cd6e0503075e13d4b0b5064808445ba32e3ad52f95593e892324bfd74a
-
Filesize
344B
MD5db94d27fe09155ee0035c9c64020456e
SHA1f18802407743a0041b3e6c4bb95d93ab95037902
SHA256d3cedb22ee871da63a2753a829dc705722383034c425d188413180dacbe71991
SHA51235cdd6a2adfb9b95d8dcef8128603abcb5288fa66774edcdfee024177cc7d30ac1718e0d74211c7a7c763d18e8c4183149ff6fb634ef5230b17c6d6eccfd617d
-
Filesize
344B
MD5890d5a8c4a907e89b921fa10b6b57c28
SHA1686a600c1f561fcc8535dd817244ddc0c2a58951
SHA256befbbd3ff47a7a8f8cc196b38a95a670938f693411d2cc7859adb08f80ac9306
SHA5121fb8fd08044ca71572640ed8915a7f46c329b019a148c63f1ba436ee814a4095fb248ee5fcc2df6d1c23ddb489d0d2e6f5b9bd4e849684267764635f6ced81dd
-
Filesize
344B
MD5ff1d5c22926739b33d6077188110af2a
SHA1386b993c0399a95aa9cb595938d35fc99b38db84
SHA25645c94586683824e64a6ca7d8efca204c0aac687168bd656207be167c8d8d29e6
SHA5128a2940721db046fbe6f230c9787f503413acfadd34f32c8848a2db003e98b7fc7f34efeaac4d82e2cf85645d2151bd2c5c56cf21c730df977c8009e4da969e25
-
Filesize
344B
MD5de71a7efc372e9c8d448fc580cb3b552
SHA12752ef4de63a49c78cf388520bcfa329c419dd0f
SHA256d55f30a756a4c43001138854cb143d593a854c91e98124d6e55d598a45196d91
SHA51235f4e4c4da1fb85a9a65700ac9dc7ff93b66c9582ec230aaccf039b60c565586fb6a647c3a36b4c466fa9de1f4d5643c534e5d5b9cf7b7216998bcee430d4cff
-
Filesize
344B
MD5ad0145876270f096a1afd60b40ecc7fe
SHA10e4957b89149be207661964c973db5d3244402cb
SHA256d04de6d8e1ea2b565f15b545381576d95f0a939605ed3b4d037a19904fad3d0f
SHA512b32ef23ac831fe3ddba03ac841dc787dcf001ed5fe0d4b3bc2b7592dc2a426124210ac72ab9406912062842b94f3accc964ba593ffd47cc2402a2b3a88ebc7d9
-
Filesize
344B
MD5f076161655814d5224bbd260ccea54a1
SHA1b9c7e81c7d56aed6213b9ff9fa839a2b7d6a25de
SHA256bb1870cfe013a8dd8ffed53d0418dc262ecdc026b6833e22580a737c9794569a
SHA5121740ab8328e19dcdea90aa52c2e7fa4ca41f6d0115e87b4d1b1ca96240893e5784a32d46ecf21e3aed5f7322761866a3ab022b35d2273cac239be6e012b172b2
-
Filesize
344B
MD52eb9122fa3d75ad8b2c87cbfd97b6ee5
SHA1873a09c21a2029130057176843c8772c8adc5f52
SHA2566759cb0f8f88890c2c53321a83e0527a4f6f13b0e9741f92af3849eae79ac471
SHA512216d020c49dbe1f8a117ae2a1bee8fd4c21adbe4d0f949a95da539f46b68aa8e78cfb5af68bdbeaa288f6cc2bd4923e6552c5ecd3fc11adc200de7739a6694b1
-
Filesize
344B
MD5ca0f836344542c212a215f530fbfc1cf
SHA13b623167ee55de5ceda257b6680cfe7aeafc5f3e
SHA2565ebdbf0ee5e6077daac8670b0b081e39a8ac625486d3d169b77bc4232c3dd295
SHA5121d2027089a3ba75ac98e1fad35107d2188e7f547128822d94e5f8438ac17ce94485eb61366f16e47d2d74ced39bd96eff756295cb93205de7ac412cfd987eca2
-
Filesize
344B
MD52928512ea7b82d6474f776d2687aec90
SHA19ac9d676f12f737d57590dfcb10cb8c62a2f1730
SHA256e7ecc9b3d7ea0fdf198f14726317a164cddb9389342c1df8697f1deb371de404
SHA512ee150c30f7d336ce0266a2b818a68ed335cbb7448624792692d9dfcc2fb6cf924318f53ffb32cd2c252009fb37f34326b970c819da5075ae4c34342692a6d059
-
Filesize
344B
MD518db82e712923e2cf36174da1a785210
SHA1203bd28dc01b037e7ae28bd57006d34366489814
SHA25653d6e6d0df5d93af9a19b30c863a53073ce8260fed1c289843e271ae13789806
SHA5122a15ed8acf32250bdaa20155e0e000747a713f6520f7d13ef78d6eeedcee8b8ba61631cdcc53a6565bd9a3a99b05017dcdfa7a881b2502503b6ae7e18d7d4def
-
Filesize
344B
MD5af68cce5915510f18541e74dfcce3d2c
SHA1683944c21aac1a339af058f13ebf1cba846727e9
SHA2563d85a44bbf3545371f6970622066c90a8c0095dfb6e9f263801ebd90eafcdcab
SHA5122606514f51cbca2ecfdf378fd5b69c4fd17c5d85e4d36c0a6bb6e4c8b7806d92155e9bb4f22f2e33245220c3d52f889fa303dea8b105c2ed6f4dad18095998f3
-
Filesize
344B
MD5db9e9546e2fa6b47b5394181445118c6
SHA1fbe2da270e18f8b302d3af618d4daf5adb24b317
SHA256dd55d04d734043d5e148e9b57fb5f61c4842c8ece0d16095ab036eb348a3701d
SHA51260d01cd3827d4b471c488c08bc3439f21b68f5fce525b79da6a442f5a783dad21ada7099295ea967b1d6fd9ccd5133802b0a9182b1ba15494dccbb0304df719c
-
Filesize
344B
MD5ab1304f9019476c8eda48301dd22eadb
SHA154742d475b38681b386536ebfcdaa5425f86dff0
SHA2560f335a624b9ebe246ff6fb275d41f340ab0516435d59b65dc9ce6cd5fe050a5b
SHA512b4fd3ddf25b4652a6a8e8a14d91b15cfa89ee94dcf9e00baaa7589cda80c2b2552b8edae1673954640b3ea7b05ca6164725d49b75b4803f908ca0dd17f537b9c
-
Filesize
344B
MD513c638348a70d7216d79f0db1c08dc28
SHA1bcdc4282013ad04b8d85f24bc665f9a7c17e61cd
SHA25630d198875585381dfd69d598c84e88eead8753bb03c78cc028d9e05016784811
SHA512463c863c1056b73c5f328e2f788c3edee6f3910d423f76c808b61a647e58b8c1214cd43c23e0cf4fce97f367280abbf182e39afd346b76ba9861f6e3c66cc441
-
Filesize
344B
MD5703c6300a3c357745180755dca32b4ed
SHA15eb5600047194ca9ad95cc831844f8791f402e34
SHA25628ad6dabc0f71ceb4ab0a095dc800acf78f3c2f6358cea0eb9f833a555a0ff7e
SHA512282538f71373e1438b6d16a66edc989b1419d94ef70e804b6a419f834b9fd9d62e2e68d455e2e8360ea5ccf93c9f4657c0f4cbc2f96ffd84e3af70142577e6cb
-
Filesize
344B
MD5d5a4398c2e2bd8afb7693ef950d4f434
SHA169365327252f23f07fc7e7a07f851323437a6b96
SHA256ff2f2e3ab5d51cf69ccdfa2b073f0bf5c78c6ee802e99a28f4efd78b0b9a9966
SHA512cd83ca8cd6541720a7c367d58606468207cae7902168232d2f8c5723aab77441a7862a82683b5e5c0a3fc991e333f444c9b62819b8bcef88db1c3732910073bf
-
Filesize
344B
MD50893915ff2e88ad6b0b414e4ab5d67fb
SHA16d788ccdbe9ac93145c0a876c5a5eaf8f2df82e2
SHA2567a7b98efe6f373d9aa4e38a800b94cc431308c418ce65ce3d40b902289725ba0
SHA51257578a66e07d3fda0d345dd9e0d197af462f92242e471c0d7e1a72e81f2f136bf5e14f7a50d4bc4bec439cd8dc14368df51415d03f7acb1d83c10ac531edeb5e
-
Filesize
344B
MD5c8480cabbee8d661fa30e0853354822e
SHA108b45eec54d8e7769ab106a819667c14d6ce9922
SHA256559466b2841cdc9c1e3eb903657efdc8e5f88c9aa307630fed8e3633a765e21b
SHA51209470cb2a6b9302a88aaa9ed813aea7c1f915b2ba26ab83a478a477fab873ecce0a03828603adf8df628638ae25eb13214da867faa1733c64fc543a1817657e4
-
Filesize
344B
MD56010f8ab037f802eceea28ba00c39c96
SHA14706564cb32b8987ec4425311b6c14bc1a27e5c0
SHA256a8b7b5dc517e50005b5224edf629e4aaab4810738d1014bc538d91f7a311f52d
SHA512c6bb0cb35f16666071ef1346e2aae0ae2de224119ff492c9f0d98c3c1c3af294f15e490e08c4ee89da1593a6bf46b2e0101bba2f9b1bd6fbb28041ecc1b2668b
-
Filesize
344B
MD5b5054cafc4cb7fa3b9a60e27722556cb
SHA1672219428bd9e4ec37af5f55dd27ae4c5f482cdc
SHA2564ab239b0b431429ea8b73cbf47d1de803aebd511480a8420e2f5268caf27b560
SHA512d0d976aae7cb3432043eeb8e84feb6c65904834f4e1f40b9ab9f2a1fa9a67076f1308bdd29ea90c11183aff478d2d313ed30fccd4ad2b0c195298e3aa52e6f8c
-
Filesize
344B
MD52b6d166e5c0ac86be57664655aa7bcec
SHA1e9cb1051091e988ed25a8e1af6a2fc312620ad5b
SHA256862a3b3eb605910126cb072048e245237322ecbedfa7c70976d01f594a791043
SHA512dc9d4a9f1ce4754b4dd9b46709b37089bf42914cf470205c067d3e18be15513663893d14c97fc5b5421201bce019604e917840830dd2f933fc3be9fe09dcf634
-
Filesize
344B
MD541d1d47ae2b5200fecb99222a1c99ff9
SHA1163d3578e5e8e92013b3f67794d57e9c26fac178
SHA256dfbe43db3c3f29c9e6ad8bb05142a93fb55d1247e0e503adb5b97ab55a444d5b
SHA512e15ae627df407b8f925360ca9edf4059c61e418e647549165ab30b6e6c3f748e3bc94e51a48b7a63ad35f34f791601a0def778016e933ae0b8ba427dfaa57ce9
-
Filesize
344B
MD5be36a0c3e591d922b1fdb42b42a3b042
SHA1e721287a40a825596f9f0431236fd05431617254
SHA2562072b67b2e876a76f94e31f220247f0d9593ebc341a3badc23a2bea431a204a4
SHA51276821a161a959a10653dd788802bf3c9524646fa24690e63ffbeeb682e57b23ba92792586b811746471c1465d9b64058a2c6c5408840a7f46af9a49cca0626a4
-
Filesize
344B
MD59a86ca83d8ce5b523d03bf2653ce2762
SHA19653175f9e97c70fa3ff0a9befd36594eca12a1c
SHA25606790bc448b8f53bc046a4a9fe6a91ac72f221ac3d14a31ff8e4a8320cdffa1c
SHA51274e5e5e5e3cdd8e5529f8368bb7eddbebd9ddd24285d9b3510e5fdb2052a3392f24991910708db54703c0b1d08bee2759f43b91e48d760897cae3e98ac74e2da
-
Filesize
242B
MD5f86f8bf11a7d89ec7069dae7fc4312fb
SHA1f9b9f6af2c599538b317df2aa1d9c88b7d523770
SHA25648e023d0f71a847749bf1353d4e2c7013fbd699982742b639c860a1426263cdc
SHA512929df4e20fd73f976a15ecbcb2880095702bb76709f7e169e337b730a979a754cddb131358a0a3a1a0ba2fd0ac90d4db19f3126cad74c2ea7777dfa5bf22cd87
-
Filesize
4KB
MD5da597791be3b6e732f0bc8b20e38ee62
SHA11125c45d285c360542027d7554a5c442288974de
SHA2565b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07
SHA512d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e
-
Filesize
13B
MD5c1ddea3ef6bbef3e7060a1a9ad89e4c5
SHA135e3224fcbd3e1af306f2b6a2c6bbea9b0867966
SHA256b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db
SHA5126be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed
-
Filesize
166B
MD51addebb2f7a2b2a1a46214d0a2a48494
SHA1bb4b25323bab4359521d047333abc2930ca9107d
SHA256a4f5d80baac967c757e6877819948147458c1ae115a74953294449e9a2f57494
SHA512caec76486e7667331b3b11a52950ea9d86627948434e541f8e6b4afd47cff65095dcb95cf3fe1b793862bb273ee93ff59f73416957b1b4407fff4cfb8d63a515
-
Filesize
36KB
MD5bcd75d9d4c44b84e98287704fcb6a6bb
SHA150c430d6ef0a015eb7246440c13f2f8635dcd791
SHA256d82da80a7f3267e9ce5f4162dc03a52a7692fc5a1846eb3e50f952c5f332feb2
SHA512b5ed74032c964478f141981a1028bcf7c287577bd2997a2b2ee99563851c3e06690401294859e2cb2eb7502b8eb92b0f2182606d6ef230be26c2d42407eddce7
-
Filesize
171KB
MD59c0c641c06238516f27941aa1166d427
SHA164cd549fb8cf014fcd9312aa7a5b023847b6c977
SHA2564276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f
SHA512936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06