| | 157.245.147.26 | 301 Moved Permanently | 178 B |
URL User Request GET HTTP/1.1IP157.245.147.26:80 ASN#14061 DIGITALOCEAN-ASN
File typeHTML document, ASCII text, with CRLF line terminators Hashbd2695f4b079c71dbddde3436286fb9c 733c05da132193d6cf1d8e242d12e2525c03bab4 2e04a18ff185ba5b16f762a0538339bc4049aceaef9738edd43af77d2ceb788b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 157.245.147.26
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 01 May 2024 21:38:44 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: http://wikiweightwatcher.com/
|
|
| | 104.26.12.43 | 301 Moved Permanently | 7.8 kB |
URL User Request GET HTTP/2IP104.26.12.43:443
CertificateIssuerGoogle Trust Services LLC Subjectwikiweightwatcher.com FingerprintA4:3C:E4:2C:D7:7D:85:0A:FD:ED:29:E4:34:2A:8C:51:BC:88:95:64 ValiditySun, 31 Mar 2024 20:47:45 GMT - Sat, 29 Jun 2024 20:47:44 GMT
Hash0352aecaccce757cd81e7b94507807f7 7159c137f07ed7b21e32d42f9c18fff6eca4bf00 d0ba96ccc7242293de0d6285d692298cf18ccfc6786687a5788ba01838b51895
GET / HTTP/1.1
Host: wikiweightwatcher.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Wed, 01 May 2024 21:38:45 GMT
content-type: text/html; charset=iso-8859-1
location: https://167.99.29.16/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=srv%2BVdnUad7LsoQ8yz1V2iCViMRKXGqfMxpYCO9RurZtbVDYsmWDZUTLA93AjK%2BbuuCL%2Fe4lK1JnDHC3hwUSGe4HFtWSdU5QA09fmYXfEyRX%2F%2FtHAtB7%2F8i2hUAQ8aUmqp9bGCpa8g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d2eb95cdecb4fa-OSL
X-Firefox-Spdy: h2
|
|
| zerossl.ocsp.sectigo.com/ | 104.18.38.233 | | 728 B |
URL zerossl.ocsp.sectigo.com/ IP104.18.38.233:0
Hashd329cac71700f5a028c6423901816261 eb94fc0c1d5501000f412c546a08462e74620a71 19670b5c99b275a602006efd6eca4468b03610327db12d2f53483a5cc14151d5
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 May 2024 21:38:45 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Wed, 01 May 2024 18:10:03 GMT
Expires: Wed, 08 May 2024 18:10:02 GMT
Etag: "eb94fc0c1d5501000f412c546a08462e74620a71"
Cache-Control: max-age=591676,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 87d2eb9c185156b5-OSL
|
|
| | 167.99.29.16 | 200 OK | 6.2 kB |
URL User Request GET HTTP/1.1IP167.99.29.16:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerZeroSSL Subject167.99.29.16 Fingerprint36:AF:04:01:BD:27:A8:93:0E:06:25:14:DF:32:1A:16:F5:6E:A1:5C ValidityTue, 06 Feb 2024 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT
File typeHTML document, Unicode text, UTF-8 text Hasha9189dd2f638eebb1f51a12af3839992 4ca7eb3ac84393e4f21a0c025128a64bf3ecccb1 6fe39578bc4df6436804b08820d4b64a68cfbeee06813853dc133c162a85297e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 167.99.29.16
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Wed, 01 May 2024 21:38:46 GMT
Content-Type: text/html
Content-Length: 6189
Last-Modified: Thu, 07 Mar 2024 03:12:54 GMT
Connection: keep-alive
ETag: "65e930b6-182d"
Accept-Ranges: bytes
|
|
| cdn.ampproject.org/v0/amp-analytics-0.1.js | 142.250.74.65 | 200 OK | 32 kB |
URL GET HTTP/2cdn.ampproject.org/v0/amp-analytics-0.1.js IP142.250.74.65:443
CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.google.com Fingerprint13:C7:40:78:3B:C5:3E:4C:BF:6E:15:DC:37:54:F1:48:24:A2:83:80 ValidityMon, 08 Apr 2024 06:40:27 GMT - Mon, 01 Jul 2024 06:40:26 GMT
File typeJavaScript source, ASCII text, with very long lines (65534) Hashc088c38b18e8f8a71eeeb166c5fc89fa c5ef5cce82e28a9283306145548220c1ace15cea f300f31439769fa7a25c341766e400cd91aee840b5fc102c96f1f3819f6425bf
GET /v0/amp-analytics-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://167.99.29.16/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 32189
date: Wed, 01 May 2024 21:38:46 GMT
expires: Wed, 01 May 2024 21:38:46 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "ce054afa61053a1d"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.ampproject.org/v0/amp-carousel-0.1.js | 142.250.74.65 | 200 OK | 12 kB |
URL GET HTTP/2cdn.ampproject.org/v0/amp-carousel-0.1.js IP142.250.74.65:443
CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.google.com Fingerprint13:C7:40:78:3B:C5:3E:4C:BF:6E:15:DC:37:54:F1:48:24:A2:83:80 ValidityMon, 08 Apr 2024 06:40:27 GMT - Mon, 01 Jul 2024 06:40:26 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (38616) Hash125af872dcac7bd01ef55254b977fa0f 7a44ab82dc3105d52ab7004a818e9001987a93a0 07a9ec3741d1a5a82fea35cc0dd0f694f98a7b3df40fd16bab7a63c1ecce2c63
GET /v0/amp-carousel-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://167.99.29.16/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 11488
date: Wed, 01 May 2024 21:38:46 GMT
expires: Wed, 01 May 2024 21:38:46 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "3c5fa826bbd87f24"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.ampproject.org/v0/amp-lightbox-0.1.js | 142.250.74.65 | 200 OK | 8.5 kB |
URL GET HTTP/2cdn.ampproject.org/v0/amp-lightbox-0.1.js IP142.250.74.65:443
CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.google.com Fingerprint13:C7:40:78:3B:C5:3E:4C:BF:6E:15:DC:37:54:F1:48:24:A2:83:80 ValidityMon, 08 Apr 2024 06:40:27 GMT - Mon, 01 Jul 2024 06:40:26 GMT
File typeJavaScript source, ASCII text, with very long lines (26547) Hash152ddab1cfbf1232be4b9f4e03da73c3 585a70a5ebc554bae2453745390989ecac66f848 c50cd4403b134099e1ef67bb26c1e444df0f0f241431c72f7d223a6e0c037ed1
GET /v0/amp-lightbox-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://167.99.29.16/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 8549
date: Wed, 01 May 2024 21:38:46 GMT
expires: Wed, 01 May 2024 21:38:46 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "2e7fd01aa4ffd4cd"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.ampproject.org/v0/amp-anim-0.1.js | 142.250.74.65 | 200 OK | 2.5 kB |
URL GET HTTP/2cdn.ampproject.org/v0/amp-anim-0.1.js IP142.250.74.65:443
CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.google.com Fingerprint13:C7:40:78:3B:C5:3E:4C:BF:6E:15:DC:37:54:F1:48:24:A2:83:80 ValidityMon, 08 Apr 2024 06:40:27 GMT - Mon, 01 Jul 2024 06:40:26 GMT
File typeJavaScript source, ASCII text, with very long lines (6054) Hash663350d63eae51fae313dab8aa66e056 72491e6cbca8e974b8d54d41c30b0aa5bb5afd1d f9d3edef50684ca0ffa8ddd8bd6338a604543989570d0b39cae64617f09843f1
GET /v0/amp-anim-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://167.99.29.16/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 2474
date: Wed, 01 May 2024 21:38:46 GMT
expires: Wed, 01 May 2024 21:38:46 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "3384521943677ade"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.ampproject.org/v0/amp-sidebar-0.1.js | 142.250.74.65 | 200 OK | 9.6 kB |
URL GET HTTP/2cdn.ampproject.org/v0/amp-sidebar-0.1.js IP142.250.74.65:443
CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.google.com Fingerprint13:C7:40:78:3B:C5:3E:4C:BF:6E:15:DC:37:54:F1:48:24:A2:83:80 ValidityMon, 08 Apr 2024 06:40:27 GMT - Mon, 01 Jul 2024 06:40:26 GMT
File typeJavaScript source, ASCII text, with very long lines (31247) Hash2d1a75e10d249ab0c28b5f3262af1b4c b355aeaae3720f1658d52c77866cbab62d68b4dd 919f101268e78b5b6abb55fbd23a69440aceb70f5b317b33732ad7886bcb24c6
GET /v0/amp-sidebar-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://167.99.29.16/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 9634
date: Wed, 01 May 2024 21:38:46 GMT
expires: Wed, 01 May 2024 21:38:46 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "818095d23d3a02c9"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.ampproject.org/v0.js | 142.250.74.65 | 200 OK | 73 kB |
IP142.250.74.65:443
CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.google.com Fingerprint13:C7:40:78:3B:C5:3E:4C:BF:6E:15:DC:37:54:F1:48:24:A2:83:80 ValidityMon, 08 Apr 2024 06:40:27 GMT - Mon, 01 Jul 2024 06:40:26 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (64654) Hash86b80d7bd5cbbcb64d6352cebe49087a ddaa6d9bbbf6c21a6ebf5afd53321a53db3741d1 729cf39187bda4533a392944f2802d8f8b9e8a0048676ec6481bf35a98713a43
GET /v0.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://167.99.29.16/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 73092
date: Wed, 01 May 2024 21:38:46 GMT
expires: Wed, 01 May 2024 21:38:46 GMT
cache-control: private, max-age=3000, stale-while-revalidate=1206600
etag: "1e5bf2819ff421fa"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.ampproject.org/v0/amp-iframe-0.1.js | 142.250.74.65 | 200 OK | 8.9 kB |
URL GET HTTP/2cdn.ampproject.org/v0/amp-iframe-0.1.js IP142.250.74.65:443
CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.google.com Fingerprint13:C7:40:78:3B:C5:3E:4C:BF:6E:15:DC:37:54:F1:48:24:A2:83:80 ValidityMon, 08 Apr 2024 06:40:27 GMT - Mon, 01 Jul 2024 06:40:26 GMT
File typeJavaScript source, ASCII text, with very long lines (25617) Hash09f888e8f40d3f79d9e04de418a9cc2e 0eab07e0e3a67c652f4db9a0fc8c9574d0d00c28 8c1d82c3e5fd23090cda5c222720adb7e13079a9d95e4ba064719518d141c7bd
GET /v0/amp-iframe-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://167.99.29.16/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 8942
date: Wed, 01 May 2024 21:38:46 GMT
expires: Wed, 01 May 2024 21:38:46 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "80464111fe233b41"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| files.sitestatic.net/banners/uG2e9uoH1VDrMEDyIbvfS9rx2EK0BUPxCavToH6G.jpeg | 154.83.2.16 | 200 OK | 266 kB |
URL GET HTTP/2files.sitestatic.net/banners/uG2e9uoH1VDrMEDyIbvfS9rx2EK0BUPxCavToH6G.jpeg IP154.83.2.16:443 ASN#209242 Cloudflare London, LLC
CertificateIssuerCloudflare, Inc. Subjectsitestatic.net Fingerprint49:CF:13:F2:9A:FF:DB:F5:42:EE:AD:F0:D3:5B:E3:44:5E:AA:F3:53 ValidityTue, 19 Dec 2023 00:00:00 GMT - Wed, 18 Dec 2024 23:59:59 GMT
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x430, components 3 Size266 kB (265809 bytes) Hashaa920664848a999d59d988187139eeb3 f259b5387139cab86654acf1b9d2443c66c0525a e6485835ea24e55b10277a68eb753bbf5cedebcea890dccfa001e8cdbbe64840
GET /banners/uG2e9uoH1VDrMEDyIbvfS9rx2EK0BUPxCavToH6G.jpeg HTTP/1.1
Host: files.sitestatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://167.99.29.16/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 01 May 2024 21:38:47 GMT
content-type: image/jpeg
content-length: 265809
x-amz-id-2: WwClEiiLd1zY9EvFbOqN5WC/epnxsCDAP0VR65cKrj236Uo91/AvrN75kmd83pSv/BBL7zvTKc4B2vZ5FITRDw==
x-amz-request-id: VMHWJMF3K432Z0PK
last-modified: Mon, 15 May 2023 06:47:45 GMT
etag: "aa920664848a999d59d988187139eeb3"
x-amz-server-side-encryption: AES256
x-amz-version-id: XYsCNnEPntPOhl8Z2AIM9L_iRM0VCibd
cf-cache-status: MISS
expires: Thu, 01 May 2025 21:38:47 GMT
cache-control: public, max-age=31536000
accept-ranges: bytes
set-cookie: __cf_bm=KyVArSqzbfIsGsftZhpf2iWAMo6fi3C0nCZCQeNbi7I-1714599527-1.0.1.1-nfUUcux.CaKZCcDrpkle1Izz30QwsQQuRVFyS0a3l2PFDTZiLJ824l1tLFThZv_yFYDqSwmrbzFHFvg1zCHsXg; path=/; expires=Wed, 01-May-24 22:08:47 GMT; domain=.sitestatic.net; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d2eba2ad2fb521-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/notosans/v36/o-0bIpQlx3QUlC5A4PNB6Ryti20_6n1iPHjc5a7duw.woff2 | 142.250.74.131 | 200 OK | 39 kB |
URL GET HTTP/2fonts.gstatic.com/s/notosans/v36/o-0bIpQlx3QUlC5A4PNB6Ryti20_6n1iPHjc5a7duw.woff2 IP142.250.74.131:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 39412, version 1.0 Hashf00895393a31c17c1d38b3ca7a0c803f fa19070e138b46a2d4234af45cce46f0aa769ad9 91c01ec0de315f973f4c00041b7ae25e1a790cedff79a6fbb56c571bba379142
GET /s/notosans/v36/o-0bIpQlx3QUlC5A4PNB6Ryti20_6n1iPHjc5a7duw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://167.99.29.16
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 39412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 17:54:27 GMT
expires: Fri, 25 Apr 2025 17:54:27 GMT
cache-control: public, max-age=31536000
age: 531861
last-modified: Wed, 14 Feb 2024 22:43:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/notosans/v36/o-0bIpQlx3QUlC5A4PNB6Ryti20_6n1iPHjc5a7duw.woff2 | 142.250.74.131 | 200 OK | 39 kB |
URL GET HTTP/2fonts.gstatic.com/s/notosans/v36/o-0bIpQlx3QUlC5A4PNB6Ryti20_6n1iPHjc5a7duw.woff2 IP142.250.74.131:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 39412, version 1.0 Hashf00895393a31c17c1d38b3ca7a0c803f fa19070e138b46a2d4234af45cce46f0aa769ad9 91c01ec0de315f973f4c00041b7ae25e1a790cedff79a6fbb56c571bba379142
GET /s/notosans/v36/o-0bIpQlx3QUlC5A4PNB6Ryti20_6n1iPHjc5a7duw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://167.99.29.16
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 39412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 17:54:27 GMT
expires: Fri, 25 Apr 2025 17:54:27 GMT
cache-control: public, max-age=31536000
age: 531861
last-modified: Wed, 14 Feb 2024 22:43:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.ampproject.org/rtv/012404181825000/v0/amp-auto-lightbox-0.1.js | 142.250.74.65 | 200 OK | 3.0 kB |
URL GET HTTP/2cdn.ampproject.org/rtv/012404181825000/v0/amp-auto-lightbox-0.1.js IP142.250.74.65:443
CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.google.com Fingerprint13:C7:40:78:3B:C5:3E:4C:BF:6E:15:DC:37:54:F1:48:24:A2:83:80 ValidityMon, 08 Apr 2024 06:40:27 GMT - Mon, 01 Jul 2024 06:40:26 GMT
File typeJavaScript source, ASCII text, with very long lines (7690) Hash656bf7bf1304fab13624e0b2550c312e 25afd50fb250a09c7d5e89397173344db0530dc6 b765500a58cc93374829c9d2b1510d617fcc5aada2849d4efdd1f301a7253d8b
GET /rtv/012404181825000/v0/amp-auto-lightbox-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://167.99.29.16
DNT: 1
Connection: keep-alive
Referer: https://167.99.29.16/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 2974
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Apr 2024 20:51:33 GMT
expires: Wed, 30 Apr 2025 20:51:33 GMT
cache-control: public, max-age=31536000
etag: "663cf6dca8295d04"
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 89235
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.ampproject.org/rtv/012404181825000/v0/amp-loader-0.1.js | 142.250.74.65 | 200 OK | 3.9 kB |
URL GET HTTP/2cdn.ampproject.org/rtv/012404181825000/v0/amp-loader-0.1.js IP142.250.74.65:443
CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.google.com Fingerprint13:C7:40:78:3B:C5:3E:4C:BF:6E:15:DC:37:54:F1:48:24:A2:83:80 ValidityMon, 08 Apr 2024 06:40:27 GMT - Mon, 01 Jul 2024 06:40:26 GMT
File typeJavaScript source, ASCII text, with very long lines (12614) Hasha6b8d507d4704d2eda7a1c98ca5f37b8 d8670fc36c37041eef2eff1f5426d9dad26b5dd3 cb6fcadd038e03de5104bf1711a8084c485490bb563206db0a673d271e274987
GET /rtv/012404181825000/v0/amp-loader-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://167.99.29.16
DNT: 1
Connection: keep-alive
Referer: https://167.99.29.16/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 3942
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Apr 2024 20:51:33 GMT
expires: Wed, 30 Apr 2025 20:51:33 GMT
cache-control: public, max-age=31536000
etag: "5536cb3ac106fb0a"
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 89235
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.ampproject.org/rtv/012404181825000/v0/amp-lightbox-gallery-0.1.js | 142.250.74.65 | 200 OK | 19 kB |
URL GET HTTP/2cdn.ampproject.org/rtv/012404181825000/v0/amp-lightbox-gallery-0.1.js IP142.250.74.65:443
CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.google.com Fingerprint13:C7:40:78:3B:C5:3E:4C:BF:6E:15:DC:37:54:F1:48:24:A2:83:80 ValidityMon, 08 Apr 2024 06:40:27 GMT - Mon, 01 Jul 2024 06:40:26 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65526) Hash52a8111b444219b37cd14a5540fe3765 9e2ad88f5e38828cc1a71b1d95c36869a0458845 b21f3916de1d0f450429d1a29a95eb7c88a57dfd0903947e67774908ca7dd2f1
GET /rtv/012404181825000/v0/amp-lightbox-gallery-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://167.99.29.16
DNT: 1
Connection: keep-alive
Referer: https://167.99.29.16/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 19052
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Apr 2024 20:51:42 GMT
expires: Wed, 30 Apr 2025 20:51:42 GMT
cache-control: public, max-age=31536000
etag: "ed2f0b83c4631734"
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 89226
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| files.sitestatic.net/ImageFile/1605512885_888vipbet-favicon.png | 154.83.2.16 | 200 OK | 7.7 kB |
URL GET HTTP/3files.sitestatic.net/ImageFile/1605512885_888vipbet-favicon.png IP154.83.2.16:443 ASN#209242 Cloudflare London, LLC
CertificateIssuerCloudflare, Inc. Subjectsitestatic.net Fingerprint49:CF:13:F2:9A:FF:DB:F5:42:EE:AD:F0:D3:5B:E3:44:5E:AA:F3:53 ValidityTue, 19 Dec 2023 00:00:00 GMT - Wed, 18 Dec 2024 23:59:59 GMT
File typePNG image data, 70 x 65, 8-bit/color RGBA, non-interlaced Hash66859beef3e94222f0da067dc5834363 bc661a3eeda86d2040692ba8fc383fee2943a8e3 b2335abb677a04b7be463ea854a371cfc1f12c2565a6fbed6d62df7cc44b4e48
GET /ImageFile/1605512885_888vipbet-favicon.png HTTP/1.1
Host: files.sitestatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://167.99.29.16/
Cookie: __cf_bm=KyVArSqzbfIsGsftZhpf2iWAMo6fi3C0nCZCQeNbi7I-1714599527-1.0.1.1-nfUUcux.CaKZCcDrpkle1Izz30QwsQQuRVFyS0a3l2PFDTZiLJ824l1tLFThZv_yFYDqSwmrbzFHFvg1zCHsXg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 May 2024 21:38:48 GMT
content-type: image/png
content-length: 7699
x-amz-id-2: BEV2iZW4IuMiUEslujpy/1H8laim6Q9ooR2Q+fGCaTrmV/IWxl5NTSAJujVa9X4iTl2bO+5aNgDnN3A5imaD/w==
x-amz-request-id: ZFA1P0YN0KT8C5EY
last-modified: Tue, 16 Mar 2021 09:51:22 GMT
etag: "66859beef3e94222f0da067dc5834363"
x-amz-server-side-encryption: AES256
x-amz-meta-sha256: b2335abb677a04b7be463ea854a371cfc1f12c2565a6fbed6d62df7cc44b4e48
x-amz-meta-s3b-last-modified: 20201116T074805Z
x-amz-version-id: null
cf-cache-status: MISS
expires: Thu, 01 May 2025 21:38:48 GMT
cache-control: public, max-age=31536000
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d2ebac0f8f5687-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css2?family=Noto+Sans:wght@400;700&display=swap | 142.250.74.106 | 200 OK | 6.1 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Noto+Sans:wght@400;700&display=swap IP142.250.74.106:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typeASCII text, with very long lines (6258), with no line terminators Hash2b411540627fa4b257bb1fed8643c888 29a10509d9f151b56907ba92464e60828e0d14ab b39f9e1f74ff1b1dbedee99caea06b1832c0a39a4743070ed15fe9eb993128eb
GET /css2?family=Noto+Sans:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://167.99.29.16/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 01 May 2024 21:38:46 GMT
date: Wed, 01 May 2024 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|