Network Analysis
IP Address | Status | Action |
---|---|---|
117.18.232.200 | Active | Moloch |
142.250.66.67 | Active | Moloch |
142.251.220.45 | Active | Moloch |
142.251.220.78 | Active | Moloch |
157.240.215.35 | Active | Moloch |
164.124.101.2 | Active | Moloch |
172.217.24.227 | Active | Moloch |
172.217.27.36 | Active | Moloch |
172.217.31.10 | Active | Moloch |
193.233.255.73 | Active | Moloch |
77.91.124.1 | Active | Moloch |
77.91.124.86 | Active | Moloch |
51.68.143.81 | Active | Moloch |
- TCP Requests
-
-
192.168.56.101:49230 117.18.232.200:80
-
192.168.56.101:49213 142.250.66.67:443fonts.gstatic.com
-
192.168.56.101:49214 142.250.66.67:443fonts.gstatic.com
-
192.168.56.101:49215 142.250.66.67:443fonts.gstatic.com
-
192.168.56.101:49219 142.251.220.45:443accounts.google.com
-
192.168.56.101:49220 142.251.220.45:443accounts.google.com
-
192.168.56.101:49199 142.251.220.78:443www.youtube.com
-
192.168.56.101:49200 142.251.220.78:443www.youtube.com
-
192.168.56.101:49210 142.251.220.78:443www.youtube.com
-
192.168.56.101:49211 142.251.220.78:443www.youtube.com
-
192.168.56.101:49212 142.251.220.78:443www.youtube.com
-
192.168.56.101:49222 142.251.220.78:443www.youtube.com
-
192.168.56.101:49196 157.240.215.35:443www.facebook.com
-
192.168.56.101:49197 157.240.215.35:443www.facebook.com
-
192.168.56.101:49223 172.217.24.227:443ssl.gstatic.com
-
192.168.56.101:49224 172.217.24.227:443ssl.gstatic.com
-
192.168.56.101:49225 172.217.27.36:443www.google.com
-
192.168.56.101:49226 172.217.27.36:443www.google.com
-
192.168.56.101:49202 172.217.31.10:443fonts.googleapis.com
-
192.168.56.101:49208 172.217.31.10:443fonts.googleapis.com
-
192.168.56.101:49170 193.233.255.73:80
-
192.168.56.101:49174 193.233.255.73:80
-
192.168.56.101:49192 77.91.124.1:80
-
192.168.56.101:49228 77.91.124.1:80
-
192.168.56.101:49171 77.91.124.86:19084
-
51.68.143.81:14433 192.168.56.101:49191
-
- UDP Requests
-
-
192.168.56.101:52815 164.124.101.2:53
-
192.168.56.101:53004 164.124.101.2:53
-
192.168.56.101:53850 164.124.101.2:53
-
192.168.56.101:54148 164.124.101.2:53
-
192.168.56.101:54883 164.124.101.2:53
-
192.168.56.101:55146 164.124.101.2:53
-
192.168.56.101:59002 164.124.101.2:53
-
192.168.56.101:61950 164.124.101.2:53
-
192.168.56.101:137 192.168.56.255:137
-
192.168.56.101:54886 239.255.255.250:1900
-
192.168.56.103:137 192.168.56.101:137
-
GET
302
https://www.youtube.com/
REQUEST
RESPONSE
BODY
GET / HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: www.youtube.com
Connection: Keep-Alive
HTTP/1.1 302 Found
Content-Type: application/binary
X-Content-Type-Options: nosniff
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 23 Oct 2023 22:44:35 GMT
Location: https://www.youtube.com/supported_browsers?next_url=https%3A%2F%2Fwww.youtube.com%2F
Strict-Transport-Security: max-age=31536000
X-Frame-Options: SAMEORIGIN
Permissions-Policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
Report-To: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
Cross-Origin-Opener-Policy: same-origin-allow-popups; report-to="youtube_main"
Origin-Trial: AvC9UlR6RDk2crliDsFl66RWLnTbHrDbp+DiY6AYz/PNQ4G4tdUTjrHYr2sghbkhGQAVxb7jaPTHpEVBz0uzQwkAAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTcxOTUzMjc5OSwiaXNTdWJkb21haW4iOnRydWV9
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET
200
https://www.youtube.com/supported_browsers?next_url=https%3A%2F%2Fwww.youtube.com%2F
REQUEST
RESPONSE
BODY
GET /supported_browsers?next_url=https%3A%2F%2Fwww.youtube.com%2F HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: www.youtube.com
Connection: Keep-Alive
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-Content-Type-Options: nosniff
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 23 Oct 2023 22:44:35 GMT
Strict-Transport-Security: max-age=31536000
X-Frame-Options: SAMEORIGIN
Origin-Trial: AvC9UlR6RDk2crliDsFl66RWLnTbHrDbp+DiY6AYz/PNQ4G4tdUTjrHYr2sghbkhGQAVxb7jaPTHpEVBz0uzQwkAAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTcxOTUzMjc5OSwiaXNTdWJkb21haW4iOnRydWV9
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="youtube_main"
Permissions-Policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
Report-To: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
P3P: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=ko for more info."
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 0
Set-Cookie: hideBrowserUpgradeBox=true; Domain=.youtube.com; Expires=Mon, 06-Nov-2023 22:44:35 GMT; Path=/; Secure; HttpOnly
Set-Cookie: YSC=p8shmMbWVhQ; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
Set-Cookie: VISITOR_INFO1_LIVE=L90I21ewO_c; Domain=.youtube.com; Expires=Sat, 20-Apr-2024 22:44:35 GMT; Path=/; Secure; HttpOnly; SameSite=none
Set-Cookie: VISITOR_PRIVACY_METADATA=CgJLUhICGgA%3D; Domain=.youtube.com; Expires=Sat, 20-Apr-2024 22:44:35 GMT; Path=/; Secure; HttpOnly; SameSite=lax
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET
200
https://www.youtube.com/img/desktop/supported_browsers/dinosaur.png
REQUEST
RESPONSE
BODY
GET /img/desktop/supported_browsers/dinosaur.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Referer: https://www.youtube.com/supported_browsers?next_url=https%3A%2F%2Fwww.youtube.com%2F
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: www.youtube.com
Connection: Keep-Alive
Cookie: hideBrowserUpgradeBox=true; YSC=p8shmMbWVhQ; VISITOR_INFO1_LIVE=L90I21ewO_c; VISITOR_PRIVACY_METADATA=CgJLUhICGgA%3D
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="youtube-marketing"
Report-To: {"group":"youtube-marketing","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube-marketing"}]}
Content-Length: 59088
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 21 Oct 2023 22:03:38 GMT
Expires: Sun, 20 Oct 2024 22:03:38 GMT
Cache-Control: public, max-age=31536000
Age: 175257
Last-Modified: Wed, 16 Oct 2019 17:15:00 GMT
Content-Type: image/png
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET
200
https://www.youtube.com/img/desktop/supported_browsers/yt_logo_rgb_light.png
REQUEST
RESPONSE
BODY
GET /img/desktop/supported_browsers/yt_logo_rgb_light.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Referer: https://www.youtube.com/supported_browsers?next_url=https%3A%2F%2Fwww.youtube.com%2F
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: www.youtube.com
Connection: Keep-Alive
Cookie: hideBrowserUpgradeBox=true; YSC=p8shmMbWVhQ; VISITOR_INFO1_LIVE=L90I21ewO_c; VISITOR_PRIVACY_METADATA=CgJLUhICGgA%3D
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="youtube-marketing"
Report-To: {"group":"youtube-marketing","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube-marketing"}]}
Content-Length: 9171
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 21 Oct 2023 19:13:12 GMT
Expires: Sun, 20 Oct 2024 19:13:12 GMT
Cache-Control: public, max-age=31536000
Age: 185483
Last-Modified: Wed, 16 Oct 2019 17:15:00 GMT
Content-Type: image/png
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET
200
https://fonts.googleapis.com/css?family=YouTube+Sans:500
REQUEST
RESPONSE
BODY
GET /css?family=YouTube+Sans:500 HTTP/1.1
Accept: text/css
Referer: https://www.youtube.com/supported_browsers?next_url=https%3A%2F%2Fwww.youtube.com%2F
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: fonts.googleapis.com
Connection: Keep-Alive
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Mon, 23 Oct 2023 22:44:35 GMT
Date: Mon, 23 Oct 2023 22:44:35 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET
200
https://fonts.googleapis.com/css?family=Roboto:400,500
REQUEST
RESPONSE
BODY
GET /css?family=Roboto:400,500 HTTP/1.1
Accept: text/css
Referer: https://www.youtube.com/supported_browsers?next_url=https%3A%2F%2Fwww.youtube.com%2F
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: fonts.googleapis.com
Connection: Keep-Alive
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Mon, 23 Oct 2023 22:44:35 GMT
Date: Mon, 23 Oct 2023 22:44:35 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET
200
https://www.youtube.com/img/desktop/supported_browsers/chrome.png
REQUEST
RESPONSE
BODY
GET /img/desktop/supported_browsers/chrome.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Referer: https://www.youtube.com/supported_browsers?next_url=https%3A%2F%2Fwww.youtube.com%2F
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: www.youtube.com
Connection: Keep-Alive
Cookie: hideBrowserUpgradeBox=true; YSC=p8shmMbWVhQ; VISITOR_INFO1_LIVE=L90I21ewO_c; VISITOR_PRIVACY_METADATA=CgJLUhICGgA%3D
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="youtube-marketing"
Report-To: {"group":"youtube-marketing","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube-marketing"}]}
Content-Length: 6213
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 17 Oct 2023 19:18:36 GMT
Expires: Wed, 16 Oct 2024 19:18:36 GMT
Cache-Control: public, max-age=31536000
Age: 530762
Last-Modified: Sun, 25 Jun 2023 02:58:00 GMT
Content-Type: image/png
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET
200
https://www.youtube.com/img/desktop/supported_browsers/yt_logo_rgb_light.png
REQUEST
RESPONSE
BODY
GET /img/desktop/supported_browsers/yt_logo_rgb_light.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Referer: https://www.youtube.com/supported_browsers?next_url=https%3A%2F%2Fwww.youtube.com%2F
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: www.youtube.com
Connection: Keep-Alive
Cookie: hideBrowserUpgradeBox=true; YSC=p8shmMbWVhQ; VISITOR_INFO1_LIVE=L90I21ewO_c; VISITOR_PRIVACY_METADATA=CgJLUhICGgA%3D
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="youtube-marketing"
Report-To: {"group":"youtube-marketing","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube-marketing"}]}
Content-Length: 9171
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 21 Oct 2023 19:13:12 GMT
Expires: Sun, 20 Oct 2024 19:13:12 GMT
Cache-Control: public, max-age=31536000
Age: 185484
Last-Modified: Wed, 16 Oct 2019 17:15:00 GMT
Content-Type: image/png
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET
200
https://www.youtube.com/img/desktop/supported_browsers/dinosaur.png
REQUEST
RESPONSE
BODY
GET /img/desktop/supported_browsers/dinosaur.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Referer: https://www.youtube.com/supported_browsers?next_url=https%3A%2F%2Fwww.youtube.com%2F
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: www.youtube.com
Connection: Keep-Alive
Cookie: hideBrowserUpgradeBox=true; YSC=p8shmMbWVhQ; VISITOR_INFO1_LIVE=L90I21ewO_c; VISITOR_PRIVACY_METADATA=CgJLUhICGgA%3D
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="youtube-marketing"
Report-To: {"group":"youtube-marketing","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube-marketing"}]}
Content-Length: 59088
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 21 Oct 2023 22:03:38 GMT
Expires: Sun, 20 Oct 2024 22:03:38 GMT
Cache-Control: public, max-age=31536000
Age: 175258
Last-Modified: Wed, 16 Oct 2019 17:15:00 GMT
Content-Type: image/png
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET
200
https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc-.woff
REQUEST
RESPONSE
BODY
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc-.woff HTTP/1.1
Accept: */*
Referer: https://www.youtube.com/supported_browsers?next_url=https%3A%2F%2Fwww.youtube.com%2F
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Origin: https://www.youtube.com
Accept-Encoding: gzip, deflate
Host: fonts.gstatic.com
Connection: Keep-Alive
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 20544
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 21 Oct 2023 12:25:08 GMT
Expires: Sun, 20 Oct 2024 12:25:08 GMT
Cache-Control: public, max-age=31536000
Age: 209968
Last-Modified: Wed, 11 May 2022 19:24:44 GMT
Content-Type: font/woff
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET
200
https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxM.woff
REQUEST
RESPONSE
BODY
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxM.woff HTTP/1.1
Accept: */*
Referer: https://www.youtube.com/supported_browsers?next_url=https%3A%2F%2Fwww.youtube.com%2F
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Origin: https://www.youtube.com
Accept-Encoding: gzip, deflate
Host: fonts.gstatic.com
Connection: Keep-Alive
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 20344
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 21 Oct 2023 18:16:26 GMT
Expires: Sun, 20 Oct 2024 18:16:26 GMT
Cache-Control: public, max-age=31536000
Age: 188890
Last-Modified: Wed, 11 May 2022 19:24:42 GMT
Content-Type: font/woff
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET
302
https://accounts.google.com/
REQUEST
RESPONSE
BODY
GET / HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: accounts.google.com
Connection: Keep-Alive
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html; charset=UTF-8
Strict-Transport-Security: max-age=31536000; includeSubDomains
Set-Cookie: __Host-GAPS=1:I6Iz3i8X93klZA80J3oBAIB-XeuE2A:q0oU_dTMmIuWRlw-;Path=/;Expires=Wed, 22-Oct-2025 22:44:37 GMT;Secure;HttpOnly;Priority=HIGH
X-Frame-Options: DENY
Content-Security-Policy: script-src 'nonce-2nO-TxXc0gDcpKwsq9ngUA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
Location: https://accounts.google.com/ServiceLogin?passive=1209600&continue=https%3A%2F%2Faccounts.google.com%2F&followup=https%3A%2F%2Faccounts.google.com%2F
Content-Encoding: gzip
Date: Mon, 23 Oct 2023 22:44:37 GMT
Expires: Mon, 23 Oct 2023 22:44:37 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET
302
https://accounts.google.com/ServiceLogin?passive=1209600&continue=https%3A%2F%2Faccounts.google.com%2F&followup=https%3A%2F%2Faccounts.google.com%2F
REQUEST
RESPONSE
BODY
GET /ServiceLogin?passive=1209600&continue=https%3A%2F%2Faccounts.google.com%2F&followup=https%3A%2F%2Faccounts.google.com%2F HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: accounts.google.com
Connection: Keep-Alive
Cookie: __Host-GAPS=1:I6Iz3i8X93klZA80J3oBAIB-XeuE2A:q0oU_dTMmIuWRlw-
HTTP/1.1 302 Found
Content-Type: application/binary
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 23 Oct 2023 22:44:37 GMT
Location: https://accounts.google.com/InteractiveLogin?continue=https://accounts.google.com/&followup=https://accounts.google.com/&passive=1209600&ifkv=AVQVeyz5YVxzRBWdpyuUtppgdvRy2Tw194Av0LWqrv008iX9c7bZnoHLo250QAw7Iz6oyudGemXR1A
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport
Content-Security-Policy: script-src 'nonce-HT79yKKsZwlUaeQziX2CUw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self'
Permissions-Policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
Cross-Origin-Opener-Policy: unsafe-none
Cross-Origin-Resource-Policy: cross-origin
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Content-Type-Options: nosniff
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET
302
https://accounts.google.com/InteractiveLogin?continue=https://accounts.google.com/&followup=https://accounts.google.com/&passive=1209600&ifkv=AVQVeyz5YVxzRBWdpyuUtppgdvRy2Tw194Av0LWqrv008iX9c7bZnoHLo250QAw7Iz6oyudGemXR1A
REQUEST
RESPONSE
BODY
GET /InteractiveLogin?continue=https://accounts.google.com/&followup=https://accounts.google.com/&passive=1209600&ifkv=AVQVeyz5YVxzRBWdpyuUtppgdvRy2Tw194Av0LWqrv008iX9c7bZnoHLo250QAw7Iz6oyudGemXR1A HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: accounts.google.com
Connection: Keep-Alive
Cookie: __Host-GAPS=1:I6Iz3i8X93klZA80J3oBAIB-XeuE2A:q0oU_dTMmIuWRlw-
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html; charset=UTF-8
X-Frame-Options: DENY
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 23 Oct 2023 22:44:37 GMT
Location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Faccounts.google.com%2F&followup=https%3A%2F%2Faccounts.google.com%2F&ifkv=AVQVeyxQBLRrENNzDGU7Qlkoss48yKJ12ueLob1lnUSvITk9Wdk0c8W1-KA6F38Oypk5hTx5sGjsKg&passive=1209600&flowName=WebLiteSignIn&flowEntry=ServiceLogin&dsh=S470064247%3A1698101077522125
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'nonce-CGeViUGud1ElolDkZ9Mm4A' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
Content-Security-Policy: require-trusted-types-for 'script';report-uri /cspreport
Report-To: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="coop_gse_qebhlk"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET
200
https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Faccounts.google.com%2F&followup=https%3A%2F%2Faccounts.google.com%2F&ifkv=AVQVeyxQBLRrENNzDGU7Qlkoss48yKJ12ueLob1lnUSvITk9Wdk0c8W1-KA6F38Oypk5hTx5sGjsKg&passive=1209600&flowName=WebLiteSignIn&flowEntry=ServiceLogin&dsh=S470064247%3A1698101077522125
REQUEST
RESPONSE
BODY
GET /v3/signin/identifier?continue=https%3A%2F%2Faccounts.google.com%2F&followup=https%3A%2F%2Faccounts.google.com%2F&ifkv=AVQVeyxQBLRrENNzDGU7Qlkoss48yKJ12ueLob1lnUSvITk9Wdk0c8W1-KA6F38Oypk5hTx5sGjsKg&passive=1209600&flowName=WebLiteSignIn&flowEntry=ServiceLogin&dsh=S470064247%3A1698101077522125 HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: accounts.google.com
Connection: Keep-Alive
Cookie: __Host-GAPS=1:I6Iz3i8X93klZA80J3oBAIB-XeuE2A:q0oU_dTMmIuWRlw-
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-Frame-Options: DENY
Vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-auto-login: realm=com.google&args=continue%3Dhttps://accounts.google.com/
x-ua-compatible: IE=edge
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 23 Oct 2023 22:44:37 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Permissions-Policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
Report-To: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
Content-Security-Policy: script-src 'nonce-URUuKuhw1F96psTuYy4YIg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self'
Content-Security-Policy: require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
Cross-Origin-Resource-Policy: same-site
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="AccountsSignInUi"
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 0
X-Content-Type-Options: nosniff
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET
200
https://www.youtube.com/img/desktop/supported_browsers/edgium.png
REQUEST
RESPONSE
BODY
GET /img/desktop/supported_browsers/edgium.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Referer: https://www.youtube.com/supported_browsers?next_url=https%3A%2F%2Fwww.youtube.com%2F
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: www.youtube.com
Connection: Keep-Alive
Cookie: hideBrowserUpgradeBox=true; YSC=p8shmMbWVhQ; VISITOR_INFO1_LIVE=L90I21ewO_c; VISITOR_PRIVACY_METADATA=CgJLUhICGgA%3D
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="youtube-marketing"
Report-To: {"group":"youtube-marketing","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube-marketing"}]}
Content-Length: 7121
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 20 Oct 2023 10:16:01 GMT
Expires: Sat, 19 Oct 2024 10:16:01 GMT
Cache-Control: public, max-age=31536000
Age: 304117
Last-Modified: Wed, 12 Feb 2020 21:45:00 GMT
Content-Type: image/png
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET
200
https://www.youtube.com/img/desktop/supported_browsers/opera.png
REQUEST
RESPONSE
BODY
GET /img/desktop/supported_browsers/opera.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Referer: https://www.youtube.com/supported_browsers?next_url=https%3A%2F%2Fwww.youtube.com%2F
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: www.youtube.com
Connection: Keep-Alive
Cookie: hideBrowserUpgradeBox=true; YSC=p8shmMbWVhQ; VISITOR_INFO1_LIVE=L90I21ewO_c; VISITOR_PRIVACY_METADATA=CgJLUhICGgA%3D
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="youtube-marketing"
Report-To: {"group":"youtube-marketing","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube-marketing"}]}
Content-Length: 2375
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 19 Oct 2023 02:17:03 GMT
Expires: Fri, 18 Oct 2024 02:17:03 GMT
Cache-Control: public, max-age=31536000
Age: 419255
Last-Modified: Wed, 16 Oct 2019 17:15:00 GMT
Content-Type: image/png
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET
200
https://fonts.gstatic.com/s/youtubesans/v19/Qw3hZQNGEDjaO2m6tqIqX5E-AVS5_rSejo46_PCTRspJ0OosolrBEJL3HMXfxQASluL2m_dANVawBpSF.woff
REQUEST
RESPONSE
BODY
GET /s/youtubesans/v19/Qw3hZQNGEDjaO2m6tqIqX5E-AVS5_rSejo46_PCTRspJ0OosolrBEJL3HMXfxQASluL2m_dANVawBpSF.woff HTTP/1.1
Accept: */*
Referer: https://www.youtube.com/supported_browsers?next_url=https%3A%2F%2Fwww.youtube.com%2F
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Origin: https://www.youtube.com
Accept-Encoding: gzip, deflate
Host: fonts.gstatic.com
Connection: Keep-Alive
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 16064
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 19 Oct 2023 22:35:58 GMT
Expires: Fri, 18 Oct 2024 22:35:58 GMT
Cache-Control: public, max-age=31536000
Age: 346120
Last-Modified: Wed, 13 Sep 2023 22:42:27 GMT
Content-Type: font/woff
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET
200
https://www.youtube.com/img/desktop/supported_browsers/firefox.png
REQUEST
RESPONSE
BODY
GET /img/desktop/supported_browsers/firefox.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Referer: https://www.youtube.com/supported_browsers?next_url=https%3A%2F%2Fwww.youtube.com%2F
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: www.youtube.com
Connection: Keep-Alive
Cookie: hideBrowserUpgradeBox=true; YSC=p8shmMbWVhQ; VISITOR_INFO1_LIVE=L90I21ewO_c; VISITOR_PRIVACY_METADATA=CgJLUhICGgA%3D
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="youtube-marketing"
Report-To: {"group":"youtube-marketing","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube-marketing"}]}
Content-Length: 9291
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 21 Oct 2023 11:02:30 GMT
Expires: Sun, 20 Oct 2024 11:02:30 GMT
Cache-Control: public, max-age=31536000
Age: 214929
Last-Modified: Sun, 25 Jun 2023 02:58:00 GMT
Content-Type: image/png
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET
200
https://www.youtube.com/favicon.ico
REQUEST
RESPONSE
BODY
GET /favicon.ico HTTP/1.1
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Host: www.youtube.com
Connection: Keep-Alive
Cookie: hideBrowserUpgradeBox=true; YSC=p8shmMbWVhQ; VISITOR_INFO1_LIVE=L90I21ewO_c; VISITOR_PRIVACY_METADATA=CgJLUhICGgA%3D
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="youtube-marketing"
Report-To: {"group":"youtube-marketing","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube-marketing"}]}
Content-Length: 180
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 21 Oct 2023 09:23:03 GMT
Expires: Sun, 20 Oct 2024 09:23:03 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Sun, 25 Jun 2023 02:58:00 GMT
Content-Type: image/x-icon
Vary: Accept-Encoding
Age: 220896
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET
200
https://accounts.google.com/_/bscframe
REQUEST
RESPONSE
BODY
GET /_/bscframe HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Referer: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Faccounts.google.com%2F&followup=https%3A%2F%2Faccounts.google.com%2F&ifkv=AVQVeyxQBLRrENNzDGU7Qlkoss48yKJ12ueLob1lnUSvITk9Wdk0c8W1-KA6F38Oypk5hTx5sGjsKg&passive=1209600&flowName=WebLiteSignIn&flowEntry=ServiceLogin&dsh=S470064247%3A1698101077522125
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: accounts.google.com
Connection: Keep-Alive
Cookie: __Host-GAPS=1:I6Iz3i8X93klZA80J3oBAIB-XeuE2A:q0oU_dTMmIuWRlw-
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 23 Oct 2023 22:44:39 GMT
Content-Security-Policy: script-src 'unsafe-eval';require-trusted-types-for 'script';object-src 'none'
Strict-Transport-Security: max-age=31536000; includeSubDomains
Cross-Origin-Resource-Policy: same-site
Permissions-Policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="AccountsSignInSignUpUi"
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
Report-To: {"group":"AccountsSignInSignUpUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInSignUpUi"}]}
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 0
X-Content-Type-Options: nosniff
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET
200
https://ssl.gstatic.com/images/branding/googlelogo/2x/googlelogo_color_74x24dp.png
REQUEST
RESPONSE
BODY
GET /images/branding/googlelogo/2x/googlelogo_color_74x24dp.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Referer: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Faccounts.google.com%2F&followup=https%3A%2F%2Faccounts.google.com%2F&ifkv=AVQVeyxQBLRrENNzDGU7Qlkoss48yKJ12ueLob1lnUSvITk9Wdk0c8W1-KA6F38Oypk5hTx5sGjsKg&passive=1209600&flowName=WebLiteSignIn&flowEntry=ServiceLogin&dsh=S470064247%3A1698101077522125
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: ssl.gstatic.com
Connection: Keep-Alive
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="static-on-bigtable"
Report-To: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
Content-Length: 3240
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 21 Oct 2023 08:39:39 GMT
Expires: Sun, 20 Oct 2024 08:39:39 GMT
Cache-Control: public, max-age=31536000
Age: 223500
Last-Modified: Tue, 22 Oct 2019 18:15:00 GMT
Content-Type: image/png
Vary: Origin
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET
302
https://accounts.google.com/favicon.ico
REQUEST
RESPONSE
BODY
GET /favicon.ico HTTP/1.1
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Host: accounts.google.com
Connection: Keep-Alive
Cookie: __Host-GAPS=1:I6Iz3i8X93klZA80J3oBAIB-XeuE2A:q0oU_dTMmIuWRlw-
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html; charset=UTF-8
X-Frame-Options: DENY
Vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 23 Oct 2023 22:44:40 GMT
Location: https://www.google.com/favicon.ico
Strict-Transport-Security: max-age=31536000; includeSubDomains
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="coop_gse_qebhlk"
Content-Security-Policy: script-src 'nonce-azAbFbVx_NtYIlM3tISUeA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
Content-Security-Policy: require-trusted-types-for 'script';report-uri /cspreport
Report-To: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET
204
https://accounts.google.com/generate_204?6-E0fA
REQUEST
RESPONSE
BODY
GET /generate_204?6-E0fA HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Referer: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Faccounts.google.com%2F&followup=https%3A%2F%2Faccounts.google.com%2F&ifkv=AVQVeyxQBLRrENNzDGU7Qlkoss48yKJ12ueLob1lnUSvITk9Wdk0c8W1-KA6F38Oypk5hTx5sGjsKg&passive=1209600&flowName=WebLiteSignIn&flowEntry=ServiceLogin&dsh=S470064247%3A1698101077522125
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: accounts.google.com
Connection: Keep-Alive
Cookie: __Host-GAPS=1:I6Iz3i8X93klZA80J3oBAIB-XeuE2A:q0oU_dTMmIuWRlw-
HTTP/1.1 204 No Content
Content-Length: 0
Cross-Origin-Resource-Policy: cross-origin
Date: Mon, 23 Oct 2023 22:44:41 GMT
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET
200
https://www.google.com/favicon.ico
REQUEST
RESPONSE
BODY
GET /favicon.ico HTTP/1.1
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Host: www.google.com
Connection: Keep-Alive
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="static-on-bigtable"
Report-To: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
Content-Length: 1494
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 23 Oct 2023 11:07:43 GMT
Expires: Tue, 31 Oct 2023 11:07:43 GMT
Cache-Control: public, max-age=691200
Last-Modified: Tue, 22 Oct 2019 18:30:00 GMT
Content-Type: image/x-icon
Vary: Accept-Encoding
Age: 41818
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
POST
200
http://193.233.255.73/loghub/master
REQUEST
RESPONSE
BODY
POST /loghub/master HTTP/1.1
Content-Type: multipart/form-data; boundary=mouYkLbAyZ9uHj9UZFby
Content-Length: 213
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; InfoPath.1)
Host: 193.233.255.73
Connection: Keep-Alive
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 23 Oct 2023 22:44:15 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 8
Connection: keep-alive
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
POST
200
http://193.233.255.73/loghub/master
REQUEST
RESPONSE
BODY
POST /loghub/master HTTP/1.1
Content-Type: multipart/form-data; boundary=cAXFz5mbtWuRhctB3U7f
Content-Length: 213
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; InfoPath.1)
Host: 193.233.255.73
Connection: Keep-Alive
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 23 Oct 2023 22:44:26 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 8
Connection: keep-alive
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
POST
200
http://77.91.124.1/theme/index.php
REQUEST
RESPONSE
BODY
POST /theme/index.php HTTP/1.1
Content-Type: application/x-www-form-urlencoded
Host: 77.91.124.1
Content-Length: 90
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 23 Oct 2023 22:44:32 GMT
Server: Apache/2.4.41 (Ubuntu)
Content-Length: 6
Content-Type: text/html; charset=UTF-8
GET
404
http://77.91.124.1/theme/Plugins/cred64.dll
REQUEST
RESPONSE
BODY
GET /theme/Plugins/cred64.dll HTTP/1.1
Host: 77.91.124.1
HTTP/1.1 404 Not Found
Date: Mon, 23 Oct 2023 22:45:22 GMT
Server: Apache/2.4.41 (Ubuntu)
Content-Length: 273
Content-Type: text/html; charset=iso-8859-1
GET
200
http://77.91.124.1/theme/Plugins/clip64.dll
REQUEST
RESPONSE
BODY
GET /theme/Plugins/clip64.dll HTTP/1.1
Host: 77.91.124.1
HTTP/1.1 200 OK
Date: Mon, 23 Oct 2023 22:45:22 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 30 Sep 2023 10:50:50 GMT
ETag: "16400-60691507c5cc0"
Accept-Ranges: bytes
Content-Length: 91136
Content-Type: application/x-msdos-program
GET
200
http://ie9cvlist.ie.microsoft.com/IE9CompatViewList.xml
REQUEST
RESPONSE
BODY
GET /IE9CompatViewList.xml HTTP/1.1
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Host: ie9cvlist.ie.microsoft.com
If-Modified-Since: Thu, 21 Nov 2019 19:37:08 GMT
If-None-Match: 0x8D76EBA32AF0BC3
Connection: Keep-Alive
HTTP/1.1 200 OK
Content-Encoding: gzip
Age: 20123
Cache-Control: max-age=21600
Content-MD5: p9g4jsuZO6TaLMVAI9ujVg==
Content-Type: text/xml
Date: Mon, 23 Oct 2023 22:45:34 GMT
Etag: 0x8D9521D2D2DF1EC
Last-Modified: Wed, 28 Jul 2021 23:12:31 GMT
Server: ECAcc (tka/897A)
Vary: Accept-Encoding
X-Cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 368599f1-701e-00c0-1dd3-056746000000
x-ms-version: 2009-09-19
Content-Length: 13702
ICMP traffic
No ICMP traffic performed.
IRC traffic
No IRC requests performed.
Suricata Alerts
Suricata TLS
Flow | Issuer | Subject | Fingerprint |
---|---|---|---|
TLSv1 192.168.56.101:49197 157.240.215.35:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=*.facebook.com | 5a:be:42:29:56:06:ae:17:e2:b1:7f:0c:c6:30:b2:0d:71:3e:b5:d5 |
TLSv1 192.168.56.101:49196 157.240.215.35:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=*.facebook.com | 5a:be:42:29:56:06:ae:17:e2:b1:7f:0c:c6:30:b2:0d:71:3e:b5:d5 |
TLSv1 192.168.56.101:49202 172.217.31.10:443 |
C=US, O=Google Trust Services LLC, CN=GTS CA 1C3 | CN=upload.video.google.com | 28:23:2b:8b:2d:09:6c:bb:06:7a:35:80:95:bb:f8:03:41:c8:99:2c |
TLSv1 192.168.56.101:49213 142.250.66.67:443 |
C=US, O=Google Trust Services LLC, CN=GTS CA 1C3 | CN=*.gstatic.com | 55:7f:79:64:ed:7a:04:50:63:54:9c:32:2a:af:b7:95:17:d7:e0:33 |
TLSv1 192.168.56.101:49212 142.251.220.78:443 |
None | None | None |
TLSv1 192.168.56.101:49199 142.251.220.78:443 |
C=US, O=Google Trust Services LLC, CN=GTS CA 1C3 | CN=*.google.com | c9:4d:78:ad:ec:04:27:ee:f0:06:4c:c8:78:d8:9f:06:b5:cc:39:37 |
TLSv1 192.168.56.101:49200 142.251.220.78:443 |
C=US, O=Google Trust Services LLC, CN=GTS CA 1C3 | CN=*.google.com | c9:4d:78:ad:ec:04:27:ee:f0:06:4c:c8:78:d8:9f:06:b5:cc:39:37 |
TLSv1 192.168.56.101:49220 142.251.220.45:443 |
C=US, O=Google Trust Services LLC, CN=GTS CA 1C3 | CN=accounts.google.com | c3:ef:cc:c7:6c:fd:21:e8:b0:08:50:37:0f:ac:b1:dd:ab:1d:1e:ff |
TLSv1 192.168.56.101:49215 142.250.66.67:443 |
C=US, O=Google Trust Services LLC, CN=GTS CA 1C3 | CN=*.gstatic.com | 55:7f:79:64:ed:7a:04:50:63:54:9c:32:2a:af:b7:95:17:d7:e0:33 |
TLSv1 192.168.56.101:49222 142.251.220.78:443 |
None | None | None |
TLSv1 192.168.56.101:49219 142.251.220.45:443 |
C=US, O=Google Trust Services LLC, CN=GTS CA 1C3 | CN=accounts.google.com | c3:ef:cc:c7:6c:fd:21:e8:b0:08:50:37:0f:ac:b1:dd:ab:1d:1e:ff |
TLSv1 192.168.56.101:49211 142.251.220.78:443 |
None | None | None |
TLSv1 192.168.56.101:49225 172.217.27.36:443 |
C=US, O=Google Trust Services LLC, CN=GTS CA 1C3 | CN=www.google.com | 3d:4a:6b:fd:30:97:01:e9:c1:38:5f:67:2b:a6:a3:43:7b:2e:72:45 |
TLSv1 192.168.56.101:49226 172.217.27.36:443 |
C=US, O=Google Trust Services LLC, CN=GTS CA 1C3 | CN=www.google.com | 3d:4a:6b:fd:30:97:01:e9:c1:38:5f:67:2b:a6:a3:43:7b:2e:72:45 |
TLSv1 192.168.56.101:49214 142.250.66.67:443 |
C=US, O=Google Trust Services LLC, CN=GTS CA 1C3 | CN=*.gstatic.com | 55:7f:79:64:ed:7a:04:50:63:54:9c:32:2a:af:b7:95:17:d7:e0:33 |
TLSv1 192.168.56.101:49210 142.251.220.78:443 |
None | None | None |
TLSv1 192.168.56.101:49223 172.217.24.227:443 |
C=US, O=Google Trust Services LLC, CN=GTS CA 1C3 | CN=*.gstatic.com | 55:7f:79:64:ed:7a:04:50:63:54:9c:32:2a:af:b7:95:17:d7:e0:33 |
TLSv1 192.168.56.101:49208 172.217.31.10:443 |
C=US, O=Google Trust Services LLC, CN=GTS CA 1C3 | CN=upload.video.google.com | 28:23:2b:8b:2d:09:6c:bb:06:7a:35:80:95:bb:f8:03:41:c8:99:2c |
TLSv1 192.168.56.101:49224 172.217.24.227:443 |
C=US, O=Google Trust Services LLC, CN=GTS CA 1C3 | CN=*.gstatic.com | 55:7f:79:64:ed:7a:04:50:63:54:9c:32:2a:af:b7:95:17:d7:e0:33 |
Snort Alerts
No Snort Alerts