www.jdoqocy.com/click-100650095-12937117?url=https://ipfs.io/ipfs/bafybeibzts4ukpqtphlhw4wtrzfln7vjatdtzehcrnda252va3e5lj4wtm/jd04691_onedriveo9.html
89.207.16.75302 Found 727 B URL User Request GET HTTP/1.1 www.jdoqocy.com/click-100650095-12937117?url=https://ipfs.io/ipfs/bafybeibzts4ukpqtphlhw4wtrzfln7vjatdtzehcrnda252va3e5lj4wtm/jd04691_onedriveo9.html
IP 89.207.16.75:443
Certificate IssuerGlobalSign nv-sa
Subjectwww.qksrv.net
Fingerprint82:C1:7F:DC:0E:0D:FE:1C:11:82:E4:2F:25:21:EA:14:BE:10:5E:39
ValidityWed, 08 Feb 2023 16:06:02 GMT - Sun, 24 Sep 2023 16:31:05 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (361)
Hash e0dc0e0341438319a089552aef3ff1a0
c1f4e7009bdbd1c0596c61e674bd507e20e7466e
2d6a6a86aca070cc1193296837b2bd9c1d0e814ffb2b3f880bd2eb340d3a96ad
GET /click-100650095-12937117?url=https://ipfs.io/ipfs/bafybeibzts4ukpqtphlhw4wtrzfln7vjatdtzehcrnda252va3e5lj4wtm/jd04691_onedriveo9.html HTTP/1.1
Host: www.jdoqocy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: Resin/4.0.66
P3P: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
Cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Expires: Wed, 31 May 2023 00:42:29 GMT
Location: https://cj.dotomi.com/n3115shqp7/hot/67E8C66C/655BA55EA/5/5/5?w=v74y%3Du6625%25GN%25FS%25FSv2s5.v1%25FSv2s5%25FSonsBorvoC65H7x2362uyu9H964Csy0K8wn6q6Crup40qnFIF8nGrIywH96z%25FSwqDHJME_10rq4v8r1M.u6zy%3c%3cu6625%3A%2F%2F999.wq131pB.p1z%2Fpyvpx-EDDJIDDMI-EFMGKEEK%3c%3cT%3c%3c%3cE%3cE%3cD%3cD%3c
Content-Type: text/html; charset=UTF-8
Content-Length: 727
Date: Wed, 31 May 2023 00:42:29 GMT
X-VC-HTTPS: On
www.fioasli.com/
104.243.32.153 707 B IP 104.243.32.153:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
GET / HTTP/1.1
Host: www.fioasli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Wed, 31 May 2023 00:42:29 GMT
location: https://www.fioasli.com/
cj.dotomi.com/n3115shqp7/hot/67E8C66C/655BA55EA/5/5/5?w=v74y%3Du6625%25GN%25FS%25FSv2s5.v1%25FSv2s5%25FSonsBorvoC65H7x2362uyu9H964Csy0K8wn6q6Crup40qnFIF8nGrIywH96z%25FSwqDHJME_10rq4v8r1M.u6zy%3c%3cu6625%3A%2F%2F999.wq131pB.p1z%2Fpyvpx-EDDJIDDMI-EFMGKEEK%3c%3cT%3c%3c%3cE%3cE%3cD%3cD%3c
89.207.16.75302 Found 981 B URL User Request GET HTTP/1.1 cj.dotomi.com/n3115shqp7/hot/67E8C66C/655BA55EA/5/5/5?w=v74y%3Du6625%25GN%25FS%25FSv2s5.v1%25FSv2s5%25FSonsBorvoC65H7x2362uyu9H964Csy0K8wn6q6Crup40qnFIF8nGrIywH96z%25FSwqDHJME_10rq4v8r1M.u6zy%3c%3cu6625%3A%2F%2F999.wq131pB.p1z%2Fpyvpx-EDDJIDDMI-EFMGKEEK%3c%3cT%3c%3c%3cE%3cE%3cD%3cD%3c
IP 89.207.16.75:443
Certificate IssuerGlobalSign nv-sa
Subjectwww.qksrv.net
Fingerprint82:C1:7F:DC:0E:0D:FE:1C:11:82:E4:2F:25:21:EA:14:BE:10:5E:39
ValidityWed, 08 Feb 2023 16:06:02 GMT - Sun, 24 Sep 2023 16:31:05 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (488)
Hash 951c008527f9a74c3ecf719e2438c2f0
b6e890a53297d4576409141dc06afc9bd1e80206
cceec8a54ee5a9c7deebb2145a0cb0e2777416e015d198eeaf77b8166011c7d3
GET /n3115shqp7/hot/67E8C66C/655BA55EA/5/5/5?w=v74y%3Du6625%25GN%25FS%25FSv2s5.v1%25FSv2s5%25FSonsBorvoC65H7x2362uyu9H964Csy0K8wn6q6Crup40qnFIF8nGrIywH96z%25FSwqDHJME_10rq4v8r1M.u6zy%3c%3cu6625%3A%2F%2F999.wq131pB.p1z%2Fpyvpx-EDDJIDDMI-EFMGKEEK%3c%3cT%3c%3c%3cE%3cE%3cD%3cD%3c HTTP/1.1
Host: cj.dotomi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: Resin/4.0.66
P3P: policyref="/w3c/p3p-d.xml", CP="NOI DSP NID OUR STP"
Cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Expires: Wed, 31 May 2023 00:42:29 GMT
Set-Cookie: CJSession=15b17d0d-0c93-4da3-a7a0-b6ec1041e390; Max-Age=-1; Domain=.dotomi.com; Path=/; Secure; SameSite=None
cjae=hxMoJEWlD0Ea; Max-Age=34041593; Domain=.dotomi.com; Path=/; Secure; SameSite=None
DotomiUser=400505206935884890$0$1; Max-Age=34041593; Domain=.dotomi.com; Path=/; Secure; SameSite=None
SESS=cjo!wt40-y8j3sgh-4-y8j3sgh; Max-Age=-1; Domain=.dotomi.com; Path=/; Secure; SameSite=None
Location: https://www.emjcd.com/8l122efon7/fmr/45C6A44A/4339833C8/3/733838539C68BB7BC3:k-PrMHZoG3Hd/38e3984gii7f44hgB64C35963d4BeBiB?c=d30u%3Dq22y1%25CJ%25BO%25BOryo1.rx%25BOryo1%25BOkjo7knrk821D3tyz2yquq5D5208ouwG4sj2m28nql0wmjBEB4jCnEusD52v%25BOsm9DFIA_xwnm0r4nxI.q2vu%3c>lsx!52D9-7HsC1pq-D-7HsC1pq%3cq22y1%3A%2F%2F555.smxzxl7.lxv%2Flurlt-A99FE99IE-ABICGAAG%3c%3cP%3c%3cAEkAGm9m-9lIC-DmjC-jGj9-kFnlA9DAnCI9%3cA%3cA%3c9%3c9%3c
Content-Type: text/html; charset=UTF-8
Content-Length: 981
Date: Wed, 31 May 2023 00:42:29 GMT
X-VC-HTTPS: On
www.emjcd.com/8l122efon7/fmr/45C6A44A/4339833C8/3/733838539C68BB7BC3:k-PrMHZoG3Hd/38e3984gii7f44hgB64C35963d4BeBiB?c=d30u%3Dq22y1%25CJ%25BO%25BOryo1.rx%25BOryo1%25BOkjo7knrk821D3tyz2yquq5D5208ouwG4sj2m28nql0wmjBEB4jCnEusD52v%25BOsm9DFIA_xwnm0r4nxI.q2vu%3c%3Elsx!52D9-7HsC1pq-D-7HsC1pq%3cq22y1%3A%2F%2F555.smxzxl7.lxv%2Flurlt-A99FE99IE-ABICGAAG%3c%3cP%3c%3cAEkAGm9m-9lIC-DmjC-jGj9-kFnlA9DAnCI9%3cA%3cA%3c9%3c9%3c
89.207.16.75302 Found 797 B URL User Request GET HTTP/1.1 www.emjcd.com/8l122efon7/fmr/45C6A44A/4339833C8/3/733838539C68BB7BC3:k-PrMHZoG3Hd/38e3984gii7f44hgB64C35963d4BeBiB?c=d30u%3Dq22y1%25CJ%25BO%25BOryo1.rx%25BOryo1%25BOkjo7knrk821D3tyz2yquq5D5208ouwG4sj2m28nql0wmjBEB4jCnEusD52v%25BOsm9DFIA_xwnm0r4nxI.q2vu%3c%3Elsx!52D9-7HsC1pq-D-7HsC1pq%3cq22y1%3A%2F%2F555.smxzxl7.lxv%2Flurlt-A99FE99IE-ABICGAAG%3c%3cP%3c%3cAEkAGm9m-9lIC-DmjC-jGj9-kFnlA9DAnCI9%3cA%3cA%3c9%3c9%3c
IP 89.207.16.75:443
Certificate IssuerGlobalSign nv-sa
Subjectwww.qksrv.net
Fingerprint82:C1:7F:DC:0E:0D:FE:1C:11:82:E4:2F:25:21:EA:14:BE:10:5E:39
ValidityWed, 08 Feb 2023 16:06:02 GMT - Sun, 24 Sep 2023 16:31:05 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (396)
Hash 84a9a3aec49940bee045ac6e370def80
e6048984302e13d3be9035cf22c798bfea7521a5
6f80b009fd24f7dc94444e8b3faa740ea2337a59a7d4da0d6a2ddb8eed72c826
GET /8l122efon7/fmr/45C6A44A/4339833C8/3/733838539C68BB7BC3:k-PrMHZoG3Hd/38e3984gii7f44hgB64C35963d4BeBiB?c=d30u%3Dq22y1%25CJ%25BO%25BOryo1.rx%25BOryo1%25BOkjo7knrk821D3tyz2yquq5D5208ouwG4sj2m28nql0wmjBEB4jCnEusD52v%25BOsm9DFIA_xwnm0r4nxI.q2vu%3c%3Elsx!52D9-7HsC1pq-D-7HsC1pq%3cq22y1%3A%2F%2F555.smxzxl7.lxv%2Flurlt-A99FE99IE-ABICGAAG%3c%3cP%3c%3cAEkAGm9m-9lIC-DmjC-jGj9-kFnlA9DAnCI9%3cA%3cA%3c9%3c9%3c HTTP/1.1
Host: www.emjcd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: Resin/4.0.66
Set-Cookie: S=400505206935884890:hxMoJEWlD0Ea; Max-Age=34041593; Domain=.emjcd.com; Path=/; Secure; SameSite=None
SESS=cjo!wt40-y8j3sgh-4-y8j3sgh; Max-Age=-1; Domain=.emjcd.com; Path=/; Secure; SameSite=None
CJSession=15b17d0d-0c93-4da3-a7a0-b6ec1041e390; Max-Age=-1; Domain=.emjcd.com; Path=/; Secure; SameSite=None
S=400505206935884890:hxMoJEWlD0Ea; Max-Age=34041593; Domain=.emjcd.com; Path=/; Secure; SameSite=None
P3P: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
Cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Expires: Wed, 31 May 2023 00:42:29 GMT
Location: https://ipfs.io/ipfs/bafybeibzts4ukpqtphlhw4wtrzfln7vjatdtzehcrnda252va3e5lj4wtm/jd04691_onedriveo9.html?aid=811995&label=affnetcj-12937117_pub-5363453_site-100650095_pname-Auckland+Hotels_clkid-_cjevent-05b0651dff4c11ed831902630a18b8f8&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=gb&utm_term=index-12937117
Content-Type: text/html; charset=UTF-8
Content-Length: 797
Date: Wed, 31 May 2023 00:42:29 GMT
X-VC-HTTPS: On
ipfs.io/ipfs/bafybeibzts4ukpqtphlhw4wtrzfln7vjatdtzehcrnda252va3e5lj4wtm/jd04691_onedriveo9.html?aid=811995&label=affnetcj-12937117_pub-5363453_site-100650095_pname-Auckland+Hotels_clkid-_cjevent-05b0651dff4c11ed831902630a18b8f8&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=gb&utm_term=index-12937117
209.94.90.1410 Gone 140 B URL User Request GET HTTP/2 ipfs.io/ipfs/bafybeibzts4ukpqtphlhw4wtrzfln7vjatdtzehcrnda252va3e5lj4wtm/jd04691_onedriveo9.html?aid=811995&label=affnetcj-12937117_pub-5363453_site-100650095_pname-Auckland+Hotels_clkid-_cjevent-05b0651dff4c11ed831902630a18b8f8&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=gb&utm_term=index-12937117
IP 209.94.90.1:443
Certificate IssuerLet's Encrypt
Subject*.i.ipfs.io
FingerprintDF:57:ED:7D:45:D6:8D:9D:25:3C:13:85:2E:51:0D:AD:64:B8:E5:84
ValidityMon, 27 Mar 2023 17:15:30 GMT - Sun, 25 Jun 2023 17:15:29 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash ea8eef7d26ecc45b6a56c5ecdb494d42
fd621efeb3a6649e0a7ed0a178fa51be3d5d7e1e
1af29706d2a6b604a0e552114f17bb1789014da70e98d6cf05af542bafaca04f
GET /ipfs/bafybeibzts4ukpqtphlhw4wtrzfln7vjatdtzehcrnda252va3e5lj4wtm/jd04691_onedriveo9.html?aid=811995&label=affnetcj-12937117_pub-5363453_site-100650095_pname-Auckland+Hotels_clkid-_cjevent-05b0651dff4c11ed831902630a18b8f8&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=gb&utm_term=index-12937117 HTTP/1.1
Host: ipfs.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 410 Gone
server: openresty
date: Wed, 31 May 2023 00:42:30 GMT
content-type: text/html
content-length: 140
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: X-Requested-With, Range, Content-Range, X-Chunked-Output, X-Stream-Output
access-control-expose-headers: Content-Range, X-Chunked-Output, X-Stream-Output
x-ipfs-lb-pop: gateway-bank3-fr2
x-bfid: 33b9db749b1d72e2e4df612355a97f41
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
www.fioasli.com/
104.243.32.153 15 kB IP 104.243.32.153:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (14597), with CRLF, LF line terminators
Hash 326c49a66d622597bfea3618fa38ef82
cafe6b7b9deade36fe3e12de1cb8c7913224b8c1
1c8e6058190927a3245c0bc884554264622b7a1631e67ac538635a3963137e72
GET / HTTP/1.1
Host: www.fioasli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-powered-by: PHP/8.1.17
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
x-ratelimit-limit: 120
x-ratelimit-remaining: 119
set-cookie: XSRF-TOKEN=eyJpdiI6IkNJVzVObUlXWmJyc2twN2dnSUd1bVE9PSIsInZhbHVlIjoiZnpCc25CT3RwYUVyS3hwdU9BOXQrNFU4UjhaL3RGQUV6cmh3STQ4SUlPbXZyaHhRZjZ3Yy9CVlJUcjFCMzVmR0xEMDhQanhQdmlMbnpBT2lUMkNWa2lKNXd1Z0VWVUl1aE96TzFlZmc5MHg4M2wzcXd6c2RZVk9CNGcyMHBtTHQiLCJtYWMiOiI3Y2I0ODZmYWRjNjA0ZWZlNGMzNDU1ZDhmZGVmMzQzYmVmMDIwMGVlM2JhMGFkNmY5NWIwZTA0YmE4NzEyYzZmIiwidGFnIjoiIn0%3D; expires=Wed, 31 May 2023 02:42:30 GMT; Max-Age=7200; path=/; domain=fioasli.com; samesite=lax; secure
valexa_session=eyJpdiI6ImRVSHY4UEJWQ1h3bTRuWUtyb2ZxVWc9PSIsInZhbHVlIjoiczNFL0tWRzJKMWRvMGZpdVMrSVFrUVJ0cDRRdXJSOStVbFhrMGtuai9VcmlhRDJkR1R5QlkwS2xCbFdiOU9IK1FkTmVJZzNwdUorL01hQkVRRE45WDYwMHpUNkpZRWJvNFc5c3hTemgwMFN0MmcyQTNOT1hpYi9TbmFacjN6SWYiLCJtYWMiOiJlNzYxYjA1YmJmZTJkZTQyNmU0NTdlNzA3MGNkODc0OTg5MDk2MDhkMGE4ZDE0YTkwODA3MzM1ZTMxZTY0YWIwIiwidGFnIjoiIn0%3D; expires=Wed, 31 May 2023 02:42:30 GMT; Max-Age=7200; path=/; domain=fioasli.com; httponly; samesite=lax; secure
vary: Accept-Encoding
x-litespeed-cache: miss
content-length: 15158
content-encoding: gzip
date: Wed, 31 May 2023 00:42:30 GMT
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
ipfs.io/ipfs/bafybeibzts4ukpqtphlhw4wtrzfln7vjatdtzehcrnda252va3e5lj4wtm/jd04691_onedriveo9.html?aid=811995&label=affnetcj-12937117_pub-5363453_site-100650095_pname-Auckland+Hotels_clkid-_cjevent-05b0651dff4c11ed831902630a18b8f8&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=gb&utm_term=index-12937117
209.94.90.1410 Gone 140 B URL User Request GET HTTP/2 ipfs.io/ipfs/bafybeibzts4ukpqtphlhw4wtrzfln7vjatdtzehcrnda252va3e5lj4wtm/jd04691_onedriveo9.html?aid=811995&label=affnetcj-12937117_pub-5363453_site-100650095_pname-Auckland+Hotels_clkid-_cjevent-05b0651dff4c11ed831902630a18b8f8&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=gb&utm_term=index-12937117
IP 209.94.90.1:443
Certificate IssuerLet's Encrypt
Subject*.i.ipfs.io
FingerprintDF:57:ED:7D:45:D6:8D:9D:25:3C:13:85:2E:51:0D:AD:64:B8:E5:84
ValidityMon, 27 Mar 2023 17:15:30 GMT - Sun, 25 Jun 2023 17:15:29 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash ea8eef7d26ecc45b6a56c5ecdb494d42
fd621efeb3a6649e0a7ed0a178fa51be3d5d7e1e
1af29706d2a6b604a0e552114f17bb1789014da70e98d6cf05af542bafaca04f
GET /ipfs/bafybeibzts4ukpqtphlhw4wtrzfln7vjatdtzehcrnda252va3e5lj4wtm/jd04691_onedriveo9.html?aid=811995&label=affnetcj-12937117_pub-5363453_site-100650095_pname-Auckland+Hotels_clkid-_cjevent-05b0651dff4c11ed831902630a18b8f8&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=gb&utm_term=index-12937117 HTTP/1.1
Host: ipfs.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 410 Gone
server: openresty
date: Wed, 31 May 2023 00:42:31 GMT
content-type: text/html
content-length: 140
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: X-Requested-With, Range, Content-Range, X-Chunked-Output, X-Stream-Output
access-control-expose-headers: Content-Range, X-Chunked-Output, X-Stream-Output
x-ipfs-lb-pop: gateway-bank3-fr2
x-bfid: 7a7f1b4e1c8aa4be500e47b363cad24c
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
ipfs.io/favicon.ico
209.94.90.1 166 B IP 209.94.90.1:0
Requested by https://ipfs.io/ipfs/bafybeibzts4ukpqtphlhw4wtrzfln7vjatdtzehcrnda252va3e5lj4wtm/jd04691_onedriveo9.html?aid=811995&label=affnetcj-12937117_pub-5363453_site-100650095_pname-Auckland+Hotels_clkid-_cjevent-05b0651dff4c11ed831902630a18b8f8&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=gb&utm_term=index-12937117
Certificate IssuerLet's Encrypt
Subject*.i.ipfs.io
FingerprintDF:57:ED:7D:45:D6:8D:9D:25:3C:13:85:2E:51:0D:AD:64:B8:E5:84
ValidityMon, 27 Mar 2023 17:15:30 GMT - Sun, 25 Jun 2023 17:15:29 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3ea1c8d079b38532a6e01a96216ba5e2
598d3ff91d3e252f1e13df8cf0348b270ff2da3f
87a9323ac85ce28867d5d7ce590c8f29b8d1a999961fca71bb33adef48683691
GET /favicon.ico HTTP/1.1
Host: ipfs.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ipfs.io/ipfs/bafybeibzts4ukpqtphlhw4wtrzfln7vjatdtzehcrnda252va3e5lj4wtm/jd04691_onedriveo9.html?aid=811995&label=affnetcj-12937117_pub-5363453_site-100650095_pname-Auckland+Hotels_clkid-_cjevent-05b0651dff4c11ed831902630a18b8f8&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=gb&utm_term=index-12937117
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: openresty
date: Wed, 31 May 2023 00:42:31 GMT
content-type: text/html
content-length: 166
location: https://ipfs.tech/favicon.ico
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: X-Requested-With, Range, Content-Range, X-Chunked-Output, X-Stream-Output
access-control-expose-headers: Content-Range, X-Chunked-Output, X-Stream-Output
x-ipfs-lb-pop: gateway-bank3-fr2
x-bfid: 75e03e1dbdb16db1cacfe88959c1664f
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
ipfs.tech/favicon.ico
0.0.0.0 0 B IP 0.0.0.0:0
Requested by https://ipfs.io/ipfs/bafybeibzts4ukpqtphlhw4wtrzfln7vjatdtzehcrnda252va3e5lj4wtm/jd04691_onedriveo9.html?aid=811995&label=affnetcj-12937117_pub-5363453_site-100650095_pname-Auckland+Hotels_clkid-_cjevent-05b0651dff4c11ed831902630a18b8f8&utm_source=affnetcj&utm_medium=bannerindex&utm_campaign=gb&utm_term=index-12937117
Certificate IssuerLet's Encrypt
Subjectipfs.tech
Fingerprint0F:0C:0B:B7:17:A0:ED:CB:EF:AD:6B:CC:11:B6:2F:08:BF:91:72:71
ValidityThu, 20 Apr 2023 17:08:23 GMT - Wed, 19 Jul 2023 17:08:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: ipfs.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ipfs.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 31 May 2023 00:42:31 GMT
content-type: image/x-icon
vary: Accept-Encoding
server: BunnyCDN-FR1-1073
cdn-pullzone: 434994
cdn-uid: 070ccd6e-b4b0-4c90-b45a-e26d7534205d
cdn-requestcountrycode: NO
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
cache-control: max-age=60, stale-while-revalidate=3600
etag: W/"QmULFXXZMtQ2wCXDU6L8d9R4bYiQi7GpENhhZFF7ctPJDT"
x-ipfs-path: /ipfs/bafybeiftg6fhzazeeccyzxj2vecsnkqa3hikbbfc5kuyv3j67sjmbq3cyu/favicon.ico
x-ipfs-roots: bafybeiftg6fhzazeeccyzxj2vecsnkqa3hikbbfc5kuyv3j67sjmbq3cyu,QmULFXXZMtQ2wCXDU6L8d9R4bYiQi7GpENhhZFF7ctPJDT
strict-transport-security: max-age=31536000; includeSubDomains
x-request-id: 0105be648f0794e16f42e919ed1b742b
referrer-policy: strict-origin-when-cross-origin
content-security-policy: upgrade-insecure-requests
x-xss-protection: 0
x-content-type-options: nosniff
x-cache-status: MISS
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 05/09/2023 21:48:44
cdn-edgestorageid: 1073
cdn-status: 200
cdn-requestid: 939b28306a41a0608503b808dc83e547
cdn-cache: REVALIDATED
content-encoding: br
X-Firefox-Spdy: h2
www.fioasli.com/set_currency?code=USD&redirect=https://www.jdoqocy.com/click-100650095-12937117?url=https://ipfs.io/ipfs/bafybeibzts4ukpqtphlhw4wtrzfln7vjatdtzehcrnda252va3e5lj4wtm/jd04691_onedriveo9.html
104.243.32.153302 Found 140 B URL User Request GET HTTP/2 www.fioasli.com/set_currency?code=USD&redirect=https://www.jdoqocy.com/click-100650095-12937117?url=https://ipfs.io/ipfs/bafybeibzts4ukpqtphlhw4wtrzfln7vjatdtzehcrnda252va3e5lj4wtm/jd04691_onedriveo9.html
IP 104.243.32.153:443
Certificate IssuerLet's Encrypt
Subject*.fioasli.com
FingerprintC2:32:86:76:32:E9:34:53:B1:87:2D:E1:FB:35:B8:E8:32:4F:78:31
ValidityThu, 13 Apr 2023 11:07:35 GMT - Wed, 12 Jul 2023 11:07:34 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /set_currency?code=USD&redirect=https://www.jdoqocy.com/click-100650095-12937117?url=https://ipfs.io/ipfs/bafybeibzts4ukpqtphlhw4wtrzfln7vjatdtzehcrnda252va3e5lj4wtm/jd04691_onedriveo9.html HTTP/1.1
Host: www.fioasli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
x-powered-by: PHP/8.1.17
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://www.jdoqocy.com/click-100650095-12937117?url=https://ipfs.io/ipfs/bafybeibzts4ukpqtphlhw4wtrzfln7vjatdtzehcrnda252va3e5lj4wtm/jd04691_onedriveo9.html
content-type: text/html; charset=UTF-8
x-litespeed-cache-control: max-age=0,no-cache
set-cookie: XSRF-TOKEN=eyJpdiI6IjQ4TkMwMHI0WDBYaG5ZbXowYk9BVnc9PSIsInZhbHVlIjoiNHZRenArNnJEVUVvRzJ1NFhQOUFoL1lGZ0phblZ2Wk1oV3FPMFFxNjArVVA3Sm0wK2ovWTBubDlJUExmTkR6dW9LQjlZRUR1cnpKRWtmMkZkdkl5bDZwZXdtRityWWo2dENiMmhIUjZ2eE9FbFFLdXU5a0xHVm9uWU4zK3Mra2UiLCJtYWMiOiI5NTFiYzVhOTgwZGE0NTU0ODBjNmE1MjhlNWMwZDliZTMwZGM5MjYzODlhODg0OTI3YmJhODk3YWM4Nzc5NjcwIiwidGFnIjoiIn0%3D; expires=Wed, 31 May 2023 02:42:29 GMT; Max-Age=7200; path=/; domain=fioasli.com; samesite=lax; secure
valexa_session=eyJpdiI6IlZkanA0akpQUkdaTlAycHQ1Q2JkT3c9PSIsInZhbHVlIjoiVzhYdHNMZVNicUs5SERrTWhGVnJZWVVqUzRyUy9pVko4L3pPcm5yWFdkZ2VSUDV6TFBVZEY5dldCNHRUTUxPQy9pSDh1Z0M4ekJlMXdQWlVvSy9ZQWdSK09xRkJwc0NOOUswbDhyaTNsZFhNZmI2eVhGblc3UTM3MUxKS1pkYU4iLCJtYWMiOiJmOTNmMmE1Mzc2Y2UzODVlOTI1MzJlODJjMjdmNjcyN2E2NmViODk3NmI2YmM3ZmIyOWVjMWJiOTQ3NTM2MmE0IiwidGFnIjoiIn0%3D; expires=Wed, 31 May 2023 02:42:29 GMT; Max-Age=7200; path=/; domain=fioasli.com; httponly; samesite=lax; secure
vary: Accept-Encoding
content-encoding: gzip
date: Wed, 31 May 2023 00:42:29 GMT
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2