assets.fs1.app/assets/images/theporndude.png
188.114.97.1200 OK 1.6 kB URL GET HTTP/3 assets.fs1.app/assets/images/theporndude.png
IP 188.114.97.1:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash e05d03cbbf9dc784d2f4a3ecb4ad6987
113aaa3555a1e3646fbfd19b4eb8156084e14db3
fadc546b6a83cd7a968038d42d7dc6b98b25f4c535d95e0607877faaceaa4bad
GET /assets/images/theporndude.png HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jlfvsrgf6l90sde816eufvqmhh; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:41:55 GMT
content-type: image/png
content-length: 1576
last-modified: Mon, 22 Nov 2021 16:44:39 GMT
etag: "619bc8f7-628"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 287
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5OkuT1marR0f4ZOf28T0Ggjz%2BEWz5wLFq7RrwyoRAeylOJwzV0NEF4QSbGx6pv8ecagauHgwyrTTdUGTPbmvw1bDULYCPy0feQ5%2BwfOSjXJ4347sHQN5y1pZh%2BXLJH1bZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d8a8479d0fab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
assets.fs1.app/assets/images/logo.png
188.114.97.1200 OK 12 kB URL GET HTTP/3 assets.fs1.app/assets/images/logo.png
IP 188.114.97.1:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type PNG image data, 388 x 102, 8-bit/color RGBA, non-interlaced\012- data
Hash 14480fda80ed2747171678e5ba86b3cb
9c55625b043d5150c810026bad722a49aca38944
07003923ec1c436a45014ae9fba77343c640a0ba410de625a006d3ec75f0bde1
GET /assets/images/logo.png HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jlfvsrgf6l90sde816eufvqmhh; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:41:55 GMT
content-type: image/png
content-length: 12066
last-modified: Sun, 09 Sep 2018 17:11:42 GMT
etag: "5b95544e-2f22"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 287
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9CwmzG8wxfWx7AUwtavR5EnRy916n3qQ96F4d3p3Jy%2FqUEfsIBcBsUH9uxRgwpHX522HXmr%2FTj5QCIUk4XLr%2FGwKLK1pAGTkMqCORKOkLtjalH12j4BZncMql8MIVooEsA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d8a84b9ebfab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
assets.fs1.app/assets/images/placeholder-md.jpg
188.114.97.1200 OK 15 kB URL GET HTTP/3 assets.fs1.app/assets/images/placeholder-md.jpg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5.1 Windows, datetime=2019:03:31 18:12:59], progressive, precision 8, 336x188, components 3\012- data
Hash ac9ea1a555198470671238d214b2e489
4a22f147e57e2781e0b302ac2c156d1999793cdb
58be1d54819c76bc997fee25de298613a1565c7f6c8ef01629511315422b7468
GET /assets/images/placeholder-md.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jlfvsrgf6l90sde816eufvqmhh; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:41:55 GMT
content-type: image/jpeg
content-length: 14601
last-modified: Sun, 31 Mar 2019 10:13:04 GMT
etag: "5ca092b0-3909"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 287
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DFwnhf7uNu0hpQKyrZuxRIgQo7M8sijZhlQOYf38x8%2F%2B%2BooSscgtA5Cl%2ByAx1V4Gk1pceaK0E%2FJ03QpsgYHSbzggrRuAXV4Fc5lnDkf8TrFG1AWPSsezjaMP4g87aRpGww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d8a84c9f5fab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cdn.tapioni.com/asg_embed.js
104.22.39.71200 OK 53 kB URL GET HTTP/2 cdn.tapioni.com/asg_embed.js
IP 104.22.39.71:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint98:6F:5C:E6:12:D1:E1:1F:BF:CE:7D:0C:FA:D2:F3:F0:AA:18:B7:66
ValidityThu, 23 Mar 2023 00:00:00 GMT - Thu, 21 Mar 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65472), with no line terminators
Hash b69caff74c1008ec300ae5926968890c
96d1fa5764672196b5e3cb1eb7d4e09f5b89c79d
6c6215a9e27411be98a99b2361d048d49a966a5e4faa2fe347cc1a13d4f4e36b
GET /asg_embed.js HTTP/1.1
Host: cdn.tapioni.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:41:55 GMT
content-type: application/javascript
content-length: 53097
last-modified: Thu, 06 Apr 2023 12:38:07 GMT
vary: Accept-Encoding
etag: "642ebd2f-cf69"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 33558
accept-ranges: bytes
server: cloudflare
cf-ray: 7b3d8a84cd660a37-ARN
X-Firefox-Spdy: h2
assets.fs1.app/assets/css/app.css?9
188.114.97.1200 OK 42 kB URL GET HTTP/3 assets.fs1.app/assets/css/app.css?9
IP 188.114.97.1:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (65324)
Hash eb775ae8bbbd6bb86ff42e13a93f3f22
3d27e63397c3c17e8575731f5da6e427cf480215
c51ac090bcb912da48a5b501e285ac5b63b4cc27e1c6fc04a5debd77ebf9be38
GET /assets/css/app.css?9 HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jlfvsrgf6l90sde816eufvqmhh; kt_ips=91.90.42.154
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:41:55 GMT
content-type: text/css
last-modified: Thu, 16 Feb 2023 05:39:57 GMT
vary: Accept-Encoding
etag: W/"63edc1ad-3fac9"
expires: Wed, 12 Apr 2023 22:13:00 GMT
cache-control: max-age=604800
strict-transport-security: max-age=15768000
cf-cache-status: HIT
age: 88135
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bdKGe4Yax2w1drHopZZD2m5k03f%2F0pOE%2B3j4KiC9pplWzLcYY6ki7b0FixbfPMbyf6Iy048ewA9BnWPo2IKbcByXG0G%2F%2Bfy38A4VevjBfRclLde8DoQ6DFXeMJyI0%2FlUcg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b3d8a8479cffab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.googletagmanager.com/gtag/js?id=G-1DTX7D4FHE
142.250.74.168200 OK 79 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-1DTX7D4FHE
IP 142.250.74.168:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintC4:BD:8E:3A:2D:C8:D9:8E:16:99:55:F4:59:46:63:7E:70:05:3B:35
ValidityMon, 13 Mar 2023 08:16:52 GMT - Mon, 05 Jun 2023 08:16:51 GMT
File type ASCII text, with very long lines (19390)
Hash 1a420bc2b0a7ee49960a6854aa5931ad
9a42bc54715e859e2301e7b3d79be7f8dcdd4ca6
08b3e36cac190d8cc24d2837fbb8eddab465c3581f6bd2e75c215cb8a009f656
GET /gtag/js?id=G-1DTX7D4FHE HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 06 Apr 2023 22:41:56 GMT
expires: Thu, 06 Apr 2023 22:41:56 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78668
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
a.realsrv.com/nativeads-v2.js
185.76.9.15200 OK 15 kB URL GET HTTP/2 a.realsrv.com/nativeads-v2.js
IP 185.76.9.15:443
ASN #60068 Datacamp Limited
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
FingerprintC2:CA:14:12:90:2A:B3:84:F3:3C:B8:A9:E8:82:89:E0:CB:B9:EE:49
ValidityMon, 27 Feb 2023 07:33:27 GMT - Sun, 28 May 2023 07:33:26 GMT
Hash 4ca40f18eb4a918bfe3602cdd8f7ce50
b9da3f3ea7e01d1059b85ca814c90173adeec39a
75e47953db181e8862e4287d829138dce51dd39192a1eee55fd05c05ce948033
GET /nativeads-v2.js HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:41:56 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"1e16d6ff16b145ea5560344a506"
expires: Thu, 06 Apr 2023 17:10:38 GMT
cache-control: max-age=10800
access-control-allow-origin: *
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: AblMCQ1lZe7/RyMAAA
x-77-nzt-ray: c0a4cc288a91e827b44a2f645a91ad01
x-accel-expires: @1680822685
x-cache: HIT
x-age: 9031
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.tapioni.com/adgpt.js
104.22.39.71200 OK 817 B IP 104.22.39.71:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint98:6F:5C:E6:12:D1:E1:1F:BF:CE:7D:0C:FA:D2:F3:F0:AA:18:B7:66
ValidityThu, 23 Mar 2023 00:00:00 GMT - Thu, 21 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (1681), with no line terminators
Hash fb4582435ef4db24ed703fb6210b46eb
3c94f080e1e2c9b4e59e5a771c0799baf9cea41a
6348c3f7f47eafc18dc6d482df912d0935b144c6cd3f298079b503398c3c4c83
GET /adgpt.js HTTP/1.1
Host: cdn.tapioni.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:41:56 GMT
content-type: application/javascript
content-length: 817
last-modified: Thu, 06 Apr 2023 12:38:07 GMT
vary: Accept-Encoding
etag: "642ebd2f-331"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 33558
accept-ranges: bytes
server: cloudflare
cf-ray: 7b3d8a868f510a37-ARN
X-Firefox-Spdy: h2
cdn.tapioni.com/adgpt.js
104.22.39.71200 OK 817 B IP 104.22.39.71:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint98:6F:5C:E6:12:D1:E1:1F:BF:CE:7D:0C:FA:D2:F3:F0:AA:18:B7:66
ValidityThu, 23 Mar 2023 00:00:00 GMT - Thu, 21 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (1681), with no line terminators
Hash fb4582435ef4db24ed703fb6210b46eb
3c94f080e1e2c9b4e59e5a771c0799baf9cea41a
6348c3f7f47eafc18dc6d482df912d0935b144c6cd3f298079b503398c3c4c83
GET /adgpt.js HTTP/1.1
Host: cdn.tapioni.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:41:56 GMT
content-type: application/javascript
content-length: 817
last-modified: Thu, 06 Apr 2023 12:38:07 GMT
vary: Accept-Encoding
etag: "642ebd2f-331"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 33558
accept-ranges: bytes
server: cloudflare
cf-ray: 7b3d8a868f560a37-ARN
X-Firefox-Spdy: h2
video.ktkjmp.com/adsbygoogle.js
104.18.48.21200 OK 16 B URL GET HTTP/2 video.ktkjmp.com/adsbygoogle.js
IP 104.18.48.21:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectvideo.ktkjmp.com
FingerprintD6:F4:DC:36:6D:BC:E5:36:F7:AC:71:BE:47:40:06:E8:12:9F:23:EC
ValidityMon, 01 Aug 2022 00:00:00 GMT - Tue, 01 Aug 2023 23:59:59 GMT
Hash 3d7f7a60216d40dea48e495fef6903c9
fecdb5184f55cf012563d78940eb97b10b9cc99b
96d83ac9f20fc0b88404f307f135e212642e02d6ea295c96b28aed0d771a224f
GET /adsbygoogle.js HTTP/1.1
Host: video.ktkjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fs1.app/
Origin: https://fs1.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:41:56 GMT
content-type: application/javascript
content-length: 16
x-amz-id-2: QUXnNy2w3SVgBBJ04JxjSn5YsvWZNpcO0WhRwsvO5enR4jmqtkkomAFVsVTSR4oLeLnl07S5f78=
x-amz-request-id: ZTWEE1QFDM4B3Q44
last-modified: Thu, 10 Mar 2022 13:52:07 GMT
etag: "3d7f7a60216d40dea48e495fef6903c9"
x-amz-meta-s3cmd-attrs: atime:1646920284/ctime:1646920283/gid:20/gname:staff/md5:3d7f7a60216d40dea48e495fef6903c9/mode:33188/mtime:1646920283/uid:501/uname:mikhailchubar
x-amz-version-id: eIgLIBoMMcsEXtxOH6UDjWyfAquRpkIG
access-control-allow-origin: https://fs1.app
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
cf-cache-status: HIT
age: 288
expires: Fri, 07 Apr 2023 02:41:56 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d8a86d9e81c02-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
assets-cdn.jable.tv/assets/images/placeholder-md.jpg
15.235.9.226200 OK 15 kB URL GET HTTP/2 assets-cdn.jable.tv/assets/images/placeholder-md.jpg
IP 15.235.9.226:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerZeroSSL
Subjectassets-cdn.jable.tv
FingerprintAE:B7:FD:BD:42:AF:2F:E8:6B:FC:4E:F3:41:F1:09:B7:24:20:E4:EF
ValidityWed, 08 Feb 2023 00:00:00 GMT - Tue, 09 May 2023 23:59:59 GMT
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5.1 Windows, datetime=2019:03:31 18:12:59], progressive, precision 8, 336x188, components 3\012- data
Hash ac9ea1a555198470671238d214b2e489
4a22f147e57e2781e0b302ac2c156d1999793cdb
58be1d54819c76bc997fee25de298613a1565c7f6c8ef01629511315422b7468
GET /assets/images/placeholder-md.jpg HTTP/1.1
Host: assets-cdn.jable.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Thu, 06 Apr 2023 22:41:56 GMT
content-type: image/jpeg
content-length: 14601
last-modified: Sun, 31 Mar 2019 10:13:04 GMT
etag: "5ca092b0-3909"
strict-transport-security: max-age=15768000
expires: Sat, 06 May 2023 22:41:56 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash bd859d4305710ed48b80ff5552f8da71
0314a8f4f9352ffab5c46dac76991603586025f6
e0b8489937a8abf1099a2fe6d60716f47ce30d156b1d1ac6dccf8f5859cf5580
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 22:41:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash bd859d4305710ed48b80ff5552f8da71
0314a8f4f9352ffab5c46dac76991603586025f6
e0b8489937a8abf1099a2fe6d60716f47ce30d156b1d1ac6dccf8f5859cf5580
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 22:41:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
creative.admjmp.com/widgets/Spot/lang/en.json
104.18.59.150200 OK 16 kB URL GET HTTP/3 creative.admjmp.com/widgets/Spot/lang/en.json
IP 104.18.59.150:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectcreative.admjmp.com
FingerprintF5:BC:E5:4B:69:86:E0:72:1B:ED:C9:0B:10:D7:BE:A0:86:F3:1D:71
ValiditySat, 30 Jul 2022 00:00:00 GMT - Sun, 30 Jul 2023 23:59:59 GMT
File type JSON data\012- , ASCII text
Hash c575e672e9f626492bf0bbb478de1549
7a105950a60ae2e4ee59dac9171512a06461e51e
95f0dd6c6e5d28169197dbbd6b5c56d41cbe7968f0e8a243a9524d25e95897cb
GET /widgets/Spot/lang/en.json HTTP/1.1
Host: creative.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fs1.app/
Origin: https://fs1.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:41:56 GMT
content-type: application/json
last-modified: Tue, 04 Apr 2023 03:06:56 GMT
etag: W/"642b9450-1c"
expires: Thu, 06 Apr 2023 22:42:06 GMT
cache-control: max-age=10
access-control-allow-origin: *
cf-cache-status: REVALIDATED
set-cookie: __cflb=0H28uukSkGJRy5UBr1u9iAwwBfboBLDdMm8oGiE59K2; SameSite=None; Secure; path=/; expires=Fri, 07-Apr-23 21:41:56 GMT; HttpOnly
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d8a86da35b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash bd859d4305710ed48b80ff5552f8da71
0314a8f4f9352ffab5c46dac76991603586025f6
e0b8489937a8abf1099a2fe6d60716f47ce30d156b1d1ac6dccf8f5859cf5580
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 22:41:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
a.labadena.com/api/settings/262182
135.181.208.216200 OK 15 kB URL GET HTTP/2 a.labadena.com/api/settings/262182
IP 135.181.208.216:443
ASN #24940 Hetzner Online GmbH
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerLet's Encrypt
Subjecta.labadena.com
FingerprintB3:CC:65:92:BF:73:55:95:BD:FD:91:93:93:C9:91:8A:88:6E:67:3F
ValidityWed, 15 Feb 2023 23:27:10 GMT - Tue, 16 May 2023 23:27:09 GMT
Hash a8c2773318e3ffa80774b30c2b98ab2b
b7149f226f64abd82be0582d7f3a0d8257194c0e
cec2737e7630ebbed4fca145de9e779dae67ae1c1e3b7ef3f5bfb7be83453dc1
GET /api/settings/262182 HTTP/1.1
Host: a.labadena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fs1.app/
Origin: https://fs1.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 06 Apr 2023 22:41:56 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
mongi-doma.mushroomtrack.com/hls/FbqrX6NvIqmGA9Xow54LdA/1680831691/23000/23403/thumbvtt.ts
65.108.2.122200 OK 7.4 kB URL GET HTTP/2 mongi-doma.mushroomtrack.com/hls/FbqrX6NvIqmGA9Xow54LdA/1680831691/23000/23403/thumbvtt.ts
IP 65.108.2.122:443
ASN #24940 Hetzner Online GmbH
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerLet's Encrypt
Subjectmongi-doma.mushroomtrack.com
FingerprintD7:2D:08:7A:19:43:ED:D2:A2:C6:12:92:E6:FC:FF:C2:38:63:22:52
ValidityWed, 15 Feb 2023 15:51:07 GMT - Tue, 16 May 2023 15:51:06 GMT
Hash 52d3722f192116be3a365b53e69803e8
e5cab3d22d83582f3df6e93a592a6515315c15ae
07ac26e056101742b198c146c30a8e92a7285bda07f3574c210dc50d3a4cf1f6
GET /hls/FbqrX6NvIqmGA9Xow54LdA/1680831691/23000/23403/thumbvtt.ts HTTP/1.1
Host: mongi-doma.mushroomtrack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Thu, 06 Apr 2023 22:41:56 GMT
content-type: video/mp2t
content-length: 7434
last-modified: Fri, 15 Apr 2022 13:26:32 GMT
etag: "62597288-1d0a"
expires: Fri, 07 Apr 2023 22:41:56 GMT
cache-control: max-age=86400
access-control-allow-origin: https://fs1.app
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint1C:AF:ED:FD:AA:9B:87:E6:A4:D5:27:D7:B6:5D:60:78:61:2E:CC:28
ValidityMon, 13 Mar 2023 08:24:32 GMT - Mon, 05 Jun 2023 08:24:31 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fs1.app
Connection: keep-alive
Referer: https://assets.fs1.app/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Apr 2023 10:31:03 GMT
expires: Wed, 03 Apr 2024 10:31:03 GMT
cache-control: public, max-age=31536000
age: 216653
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mongi-doma.mushroomtrack.com/hls/FbqrX6NvIqmGA9Xow54LdA/1680831691/23000/23403/23403.m3u8
65.108.2.122200 OK 55 kB URL GET HTTP/2 mongi-doma.mushroomtrack.com/hls/FbqrX6NvIqmGA9Xow54LdA/1680831691/23000/23403/23403.m3u8
IP 65.108.2.122:443
ASN #24940 Hetzner Online GmbH
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerLet's Encrypt
Subjectmongi-doma.mushroomtrack.com
FingerprintD7:2D:08:7A:19:43:ED:D2:A2:C6:12:92:E6:FC:FF:C2:38:63:22:52
ValidityWed, 15 Feb 2023 15:51:07 GMT - Tue, 16 May 2023 15:51:06 GMT
Hash ec8aa326576b4a183b9b81f5d38e8ab1
1b2f8b1ace166edb86ea03f08e5f6e240522c4f3
f8aaa236c8949e84ff8423b096427738c25ac7d3d706b989bbb1f1098f026682
GET /hls/FbqrX6NvIqmGA9Xow54LdA/1680831691/23000/23403/23403.m3u8 HTTP/1.1
Host: mongi-doma.mushroomtrack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Thu, 06 Apr 2023 22:41:56 GMT
content-type: application/vnd.apple.mpegurl
content-length: 54961
last-modified: Fri, 15 Apr 2022 13:09:53 GMT
etag: "62596ea1-d6b1"
expires: Fri, 07 Apr 2023 22:41:56 GMT
cache-control: max-age=86400
access-control-allow-origin: https://fs1.app
accept-ranges: bytes
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/23000/23403/preview.jpg
188.114.97.1200 OK 170 kB URL GET HTTP/3 assets.fs1.app/contents/videos_screenshots/23000/23403/preview.jpg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x535, components 3\012- data
Size 170 kB (169869 bytes)
Hash 9d8018bd9b84f16bfc2509e9802bf925
6fc5123f1bfd851e7ed27435f5fc5cac4f261987
b1f99bf69d7cf43b8d7b3b363a15fb8d8d1f3d27f9f54cf6c834902c69f308ca
GET /contents/videos_screenshots/23000/23403/preview.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jlfvsrgf6l90sde816eufvqmhh; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:41:56 GMT
content-type: image/jpeg
content-length: 169869
last-modified: Fri, 15 Apr 2022 20:22:14 GMT
etag: "6259d3f6-2978d"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ng8vmaGISCgXvn0KqGn%2FFl5jf48K3JDCKlEFLw49PU3gYCzFjfW7cfA0wXcjDelPWtW4d0jmGp4gIuvmCfNcp4U3vpjYm%2F%2BHpe8GXugrlZWfu9nNiQkBejk%2B%2BOl0QpnYnA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d8a84c9f0fab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash bd859d4305710ed48b80ff5552f8da71
0314a8f4f9352ffab5c46dac76991603586025f6
e0b8489937a8abf1099a2fe6d60716f47ce30d156b1d1ac6dccf8f5859cf5580
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 22:41:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mongi-doma.mushroomtrack.com/hls/FbqrX6NvIqmGA9Xow54LdA/1680831691/23000/23403/a50006183fabf74b.ts
65.108.2.122200 OK 16 B URL GET HTTP/2 mongi-doma.mushroomtrack.com/hls/FbqrX6NvIqmGA9Xow54LdA/1680831691/23000/23403/a50006183fabf74b.ts
IP 65.108.2.122:443
ASN #24940 Hetzner Online GmbH
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerLet's Encrypt
Subjectmongi-doma.mushroomtrack.com
FingerprintD7:2D:08:7A:19:43:ED:D2:A2:C6:12:92:E6:FC:FF:C2:38:63:22:52
ValidityWed, 15 Feb 2023 15:51:07 GMT - Tue, 16 May 2023 15:51:06 GMT
Hash 2de4f327b47af8555eff0c001f6ca691
7606446f15d31a55ef7a67c54b2c208455d42a88
1852dd8502b7875463510e6803f44abef11e6f7f025d0a7bd457d3440b7d4d31
GET /hls/FbqrX6NvIqmGA9Xow54LdA/1680831691/23000/23403/a50006183fabf74b.ts HTTP/1.1
Host: mongi-doma.mushroomtrack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 06 Apr 2023 22:41:56 GMT
content-type: video/mp2t
content-length: 16
last-modified: Fri, 15 Apr 2022 13:26:31 GMT
etag: "62597287-10"
expires: Fri, 07 Apr 2023 22:41:56 GMT
cache-control: max-age=86400
access-control-allow-origin: https://fs1.app
accept-ranges: bytes
X-Firefox-Spdy: h2
syndication.realsrv.com/splash.php?native-settings=1&idzone=3377859&cookieconsent=true&&p=https%3A%2F%2Ffs1.app%2Fvideos%2Ffsdss-381%2F
95.211.229.246200 OK 1.9 kB URL GET HTTP/1.1 syndication.realsrv.com/splash.php?native-settings=1&idzone=3377859&cookieconsent=true&&p=https%3A%2F%2Ffs1.app%2Fvideos%2Ffsdss-381%2F
IP 95.211.229.246:443
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
FingerprintC2:CA:14:12:90:2A:B3:84:F3:3C:B8:A9:E8:82:89:E0:CB:B9:EE:49
ValidityMon, 27 Feb 2023 07:33:27 GMT - Sun, 28 May 2023 07:33:26 GMT
File type JSON data\012- , ASCII text, with very long lines (3598), with no line terminators
Hash 82d350a597e8f3fc6f400739c8bfa494
72c6fd5e903a0dca33f2019991b2532284201f51
ce3f4c81a65c5f8ab1a52181f43d6b5238074aa5fbfb2c0be27afb741659a2ac
GET /splash.php?native-settings=1&idzone=3377859&cookieconsent=true&&p=https%3A%2F%2Ffs1.app%2Fvideos%2Ffsdss-381%2F HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Apr 2023 22:41:56 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://fs1.app
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22642f4ab4b89ef8.010637541803764370%22%3B%7D; expires=Sat, 05 Apr 2025 22:41:56 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
c-tag=%7B%22tag-banner%22%3A%22v3%7C%7CNOR%7C3377859%7C71987194%7C100644%7C%7C99%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C98b56149d9e37ae5eff84719b5b96c0f%7C0%7Cfs1.app%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D; expires=Fri, 07 Apr 2023 22:41:56 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
mongi-doma.mushroomtrack.com/hls/FbqrX6NvIqmGA9Xow54LdA/1680831691/23000/23403/234030.ts
65.108.2.122200 OK 524 kB URL GET HTTP/2 mongi-doma.mushroomtrack.com/hls/FbqrX6NvIqmGA9Xow54LdA/1680831691/23000/23403/234030.ts
IP 65.108.2.122:443
ASN #24940 Hetzner Online GmbH
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerLet's Encrypt
Subjectmongi-doma.mushroomtrack.com
FingerprintD7:2D:08:7A:19:43:ED:D2:A2:C6:12:92:E6:FC:FF:C2:38:63:22:52
ValidityWed, 15 Feb 2023 15:51:07 GMT - Tue, 16 May 2023 15:51:06 GMT
File type OpenPGP Public Key\012- data
Size 524 kB (524528 bytes)
Hash 2bbabeb9de840385d14ef3c38a726e96
d328d94c094921427a5ff09a5c2ba26241f6fe9b
0505e5e3b47756f4ed40d4aaf5ada18e16c8b6fd0da8c2e06269837cb9835536
GET /hls/FbqrX6NvIqmGA9Xow54LdA/1680831691/23000/23403/234030.ts HTTP/1.1
Host: mongi-doma.mushroomtrack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 06 Apr 2023 22:41:56 GMT
content-type: video/mp2t
content-length: 524528
last-modified: Fri, 15 Apr 2022 13:09:54 GMT
etag: "62596ea2-800f0"
expires: Fri, 07 Apr 2023 22:41:56 GMT
cache-control: max-age=86400
access-control-allow-origin: https://fs1.app
accept-ranges: bytes
X-Firefox-Spdy: h2
assets.fs1.app/assets/icon/apple-touch-icon.png?v=8
188.114.97.1200 OK 2.2 kB URL GET HTTP/3 assets.fs1.app/assets/icon/apple-touch-icon.png?v=8
IP 188.114.97.1:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 289c267b299c6efd9d858dce9265d292
a74380024cb5d750f0e6e5367868b62a2f8da979
95a0926985813fbebd6f14d9f599fc8ce908b347e71a4f8957413cdddda6d554
GET /assets/icon/apple-touch-icon.png?v=8 HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: assets.fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jlfvsrgf6l90sde816eufvqmhh; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1680820916.1.0.1680820916.0.0.0; _ga=GA1.1.1549236609.1680820917
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:41:56 GMT
content-type: image/png
content-length: 2222
last-modified: Fri, 26 Apr 2019 13:17:54 GMT
etag: "5cc30502-8ae"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 285
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HkXCN4LHKIN25vDDl%2F2yea0jMob7tFksLZ9%2FDiQ%2BQ7z5PoZVgQCSeVOsXdI6giriDYtUHY6lade%2FzqYqhMVOV%2BLrPkWmf%2B%2BAOY8HaxvetteiPkzZF0Sws4APRxmpLOqcSw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d8a8a9c7dfab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
assets.fs1.app/assets/icon/favicon-16x16.png
188.114.97.1200 OK 211 B URL GET HTTP/3 assets.fs1.app/assets/icon/favicon-16x16.png
IP 188.114.97.1:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 0dad7e42fdc1857ca6f410ed2b86fc18
9c10b21666e7e804cf6c721416aa0436419614db
e9ee417839b142602744bd5150311d5229ac9696fdc114b93246f01043fc7dfd
GET /assets/icon/favicon-16x16.png HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: assets.fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jlfvsrgf6l90sde816eufvqmhh; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1680820916.1.0.1680820916.0.0.0; _ga=GA1.1.1549236609.1680820917
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:41:56 GMT
content-type: image/png
content-length: 211
last-modified: Fri, 26 Apr 2019 13:17:54 GMT
etag: "5cc30502-d3"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 285
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FXsyao48oLYT7ka%2FLVmrSEaREGc0i1CuNGjgiOxZriIWo6S37Y4n9CVt0cfa4EqCGyIRXQThsH55H55VyPpRz7otdy3iYvNbPsswLFFbWKXxg5CRn%2BuOCqMueB%2FhLxp7xg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d8a8a9c80fab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 4f1e9ec06731b2d83410a92dc70dee40
f64b7e6dea65a3a3995cb68630656b0686341e14
86fc2108ee8b2cd4ed45dbd29600a912a271b2f6e9906506988422cb3dd7d64d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 22:41:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mongi-doma.mushroomtrack.com/hls/FbqrX6NvIqmGA9Xow54LdA/1680831691/23000/23403/234031.ts
65.108.2.122200 OK 352 kB URL GET HTTP/2 mongi-doma.mushroomtrack.com/hls/FbqrX6NvIqmGA9Xow54LdA/1680831691/23000/23403/234031.ts
IP 65.108.2.122:443
ASN #24940 Hetzner Online GmbH
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerLet's Encrypt
Subjectmongi-doma.mushroomtrack.com
FingerprintD7:2D:08:7A:19:43:ED:D2:A2:C6:12:92:E6:FC:FF:C2:38:63:22:52
ValidityWed, 15 Feb 2023 15:51:07 GMT - Tue, 16 May 2023 15:51:06 GMT
Size 352 kB (352512 bytes)
Hash 14e0ce2140aeed0ba41807b3b983fcb7
cdca6e5562b397381b0a33b57b1f4023af2d4fd5
c36d6f9fbe341d69a1adb28c3d177f78f4d9c1093bb004163de4016138b9b923
GET /hls/FbqrX6NvIqmGA9Xow54LdA/1680831691/23000/23403/234031.ts HTTP/1.1
Host: mongi-doma.mushroomtrack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 06 Apr 2023 22:41:56 GMT
content-type: video/mp2t
content-length: 352512
last-modified: Fri, 15 Apr 2022 13:09:54 GMT
etag: "62596ea2-56100"
expires: Fri, 07 Apr 2023 22:41:56 GMT
cache-control: max-age=86400
access-control-allow-origin: https://fs1.app
accept-ranges: bytes
X-Firefox-Spdy: h2
imasdk.googleapis.com/js/sdkloader/ima3.js
142.250.74.74200 OK 124 kB URL GET HTTP/2 imasdk.googleapis.com/js/sdkloader/ima3.js
IP 142.250.74.74:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint76:50:4C:9F:C4:BB:29:C8:41:DD:B7:8A:B7:22:AE:3E:4F:A8:04:80
ValidityMon, 13 Mar 2023 08:25:02 GMT - Mon, 05 Jun 2023 08:25:01 GMT
File type ASCII text, with very long lines (2723)
Size 124 kB (123698 bytes)
Hash 6f27a78f50345819b57c641931185010
e5fbfb53f5dfe47d3bfef31bf6122966c02493d2
19f4f555a2d02cb197830a0c2d79d3cfc23db680709c29299f3bd220fc3f1a10
GET /js/sdkloader/ima3.js HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 123698
date: Thu, 06 Apr 2023 22:41:56 GMT
expires: Thu, 06 Apr 2023 22:41:56 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 4f1e9ec06731b2d83410a92dc70dee40
f64b7e6dea65a3a3995cb68630656b0686341e14
86fc2108ee8b2cd4ed45dbd29600a912a271b2f6e9906506988422cb3dd7d64d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 22:41:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
syndication.realsrv.com/v1/api.php
95.211.229.246200 OK 3.0 kB URL POST HTTP/1.1 syndication.realsrv.com/v1/api.php
IP 95.211.229.246:443
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://a.labadena.com/api/spots/220808?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
FingerprintC2:CA:14:12:90:2A:B3:84:F3:3C:B8:A9:E8:82:89:E0:CB:B9:EE:49
ValidityMon, 27 Feb 2023 07:33:27 GMT - Sun, 28 May 2023 07:33:26 GMT
File type JSON data\012- , ASCII text, with very long lines (6354), with no line terminators
Hash 229bb9e308ffbc260ada33d4a150c460
c68682e69dfeb41d7f4169510bf4dd242102ba8d
09fbcd7ed7cf7c3a856b0c583f81454bfccff79eb44592eaa5d07559c57515ed
POST /v1/api.php HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 313
Origin: https://a.labadena.com
Connection: keep-alive
Referer: https://a.labadena.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22642f4ab4b89ef8.010637541803764370%22%3B%7D; c-tag=%7B%22tag-banner%22%3A%22v3%7C%7CNOR%7C3377859%7C71987194%7C100644%7C%7C99%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C98b56149d9e37ae5eff84719b5b96c0f%7C0%7Cfs1.app%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Apr 2023 22:41:57 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://a.labadena.com
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
cdn.tapioni.com/adgpt.js
104.22.39.71200 OK 817 B IP 104.22.39.71:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint98:6F:5C:E6:12:D1:E1:1F:BF:CE:7D:0C:FA:D2:F3:F0:AA:18:B7:66
ValidityThu, 23 Mar 2023 00:00:00 GMT - Thu, 21 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (1681), with no line terminators
Hash fb4582435ef4db24ed703fb6210b46eb
3c94f080e1e2c9b4e59e5a771c0799baf9cea41a
6348c3f7f47eafc18dc6d482df912d0935b144c6cd3f298079b503398c3c4c83
GET /adgpt.js HTTP/1.1
Host: cdn.tapioni.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:41:57 GMT
content-type: application/javascript
content-length: 817
last-modified: Thu, 06 Apr 2023 12:38:07 GMT
vary: Accept-Encoding
etag: "642ebd2f-331"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 33559
accept-ranges: bytes
server: cloudflare
cf-ray: 7b3d8a8bfd500a37-ARN
X-Firefox-Spdy: h2
syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA0VPS05DMQy8Chdo5L/jrlmDBOIAyevLApWy6IZKPjzJW0BGjseKPZ4QEJ9ATmBPWM+CZ/UMLAFFqKBKvry+pWC26/XSHp9l+/5Kc/OINKyMmF6rACc7u67hSAVyqzUdo86ARE1OmCBlkcUKABt5zq6P9+cjcIIg571WLiqTww+kCQ1pXXqNfdQCCDZ3CVZgN2GH3DagFoitwwiCSm1IoNGuQ2elSyhbubbeLvutHb+AVDKe5gBsmSrIWpeHw+kCozAJ5Qn/Csl5II/ndn/ctsz/9nokPRQoUWSKZ/IeXWO4dhs9hsVlTJ0OFpsPtfYLIwkBroIBAAA=
95.211.229.246200 OK 20 B URL GET HTTP/1.1 syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA0VPS05DMQy8Chdo5L/jrlmDBOIAyevLApWy6IZKPjzJW0BGjseKPZ4QEJ9ATmBPWM+CZ/UMLAFFqKBKvry+pWC26/XSHp9l+/5Kc/OINKyMmF6rACc7u67hSAVyqzUdo86ARE1OmCBlkcUKABt5zq6P9+cjcIIg571WLiqTww+kCQ1pXXqNfdQCCDZ3CVZgN2GH3DagFoitwwiCSm1IoNGuQ2elSyhbubbeLvutHb+AVDKe5gBsmSrIWpeHw+kCozAJ5Qn/Csl5II/ndn/ctsz/9nokPRQoUWSKZ/IeXWO4dhs9hsVlTJ0OFpsPtfYLIwkBroIBAAA=
IP 95.211.229.246:443
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://a.labadena.com/api/spots/220808?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
FingerprintC2:CA:14:12:90:2A:B3:84:F3:3C:B8:A9:E8:82:89:E0:CB:B9:EE:49
ValidityMon, 27 Feb 2023 07:33:27 GMT - Sun, 28 May 2023 07:33:26 GMT
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA0VPS05DMQy8Chdo5L/jrlmDBOIAyevLApWy6IZKPjzJW0BGjseKPZ4QEJ9ATmBPWM+CZ/UMLAFFqKBKvry+pWC26/XSHp9l+/5Kc/OINKyMmF6rACc7u67hSAVyqzUdo86ARE1OmCBlkcUKABt5zq6P9+cjcIIg571WLiqTww+kCQ1pXXqNfdQCCDZ3CVZgN2GH3DagFoitwwiCSm1IoNGuQ2elSyhbubbeLvutHb+AVDKe5gBsmSrIWpeHw+kCozAJ5Qn/Csl5II/ndn/ctsz/9nokPRQoUWSKZ/IeXWO4dhs9hsVlTJ0OFpsPtfYLIwkBroIBAAA= HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://a.labadena.com
Connection: keep-alive
Referer: https://a.labadena.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22642f4ab4b89ef8.010637541803764370%22%3B%7D; c-tag=%7B%22tag-banner%22%3A%22v3%7C%7CNOR%7C3377859%7C71987194%7C100644%7C%7C99%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C98b56149d9e37ae5eff84719b5b96c0f%7C0%7Cfs1.app%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Apr 2023 22:41:57 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://a.labadena.com
Access-Control-Allow-Credentials: true
Set-Cookie: __upt=%7B%22v%22%3A1%2C%22id%22%3A%22642f4ab4b89ef8.010637541803764370%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%2299.0199%22%7D; expires=Sat, 05 Apr 2025 22:41:57 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
s3t3d2y8.afcdn.net/library/676799/8725271eb9aff2c0246cdfee4b4a54b346da148b.jpg
185.76.9.16200 OK 24 kB URL GET HTTP/2 s3t3d2y8.afcdn.net/library/676799/8725271eb9aff2c0246cdfee4b4a54b346da148b.jpg
IP 185.76.9.16:443
ASN #60068 Datacamp Limited
Requested by https://a.labadena.com/api/spots/220808?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjectafcdn.net
Fingerprint58:E2:EC:9A:A1:55:22:20:28:3E:43:7C:0D:B9:0A:67:84:6B:EA:FB
ValidityMon, 27 Feb 2023 07:22:15 GMT - Sun, 28 May 2023 07:22:14 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Hash 3b015e6a83424aaade384e8f209f9257
8725271eb9aff2c0246cdfee4b4a54b346da148b
23f4260a5896ee2a5375c8beee46ef4ed31a2b5615af6d0085943f11d420c4f4
GET /library/676799/8725271eb9aff2c0246cdfee4b4a54b346da148b.jpg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a.labadena.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:41:57 GMT
content-type: image/jpeg
content-length: 24460
last-modified: Wed, 10 Nov 2021 17:06:19 GMT
etag: "618bfc0b-5f8c"
expires: Fri, 30 Jun 2023 15:11:52 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
server: CDN77-Turbo
x-robots-tag: noindex, follow
x-77-nzt: AblMCQ2MFFj/L61wAQ
x-77-nzt-ray: c0a4cc286186c72db54a2f64d8f4720a
x-accel-expires: @1688195334
x-cache: HIT
x-age: 24161583
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.ggsfq.xyz/creative/20230309_Jable_(300x250)_E_TC_gif.gif
172.67.164.16200 OK 495 kB URL GET HTTP/2 cdn.ggsfq.xyz/creative/20230309_Jable_(300x250)_E_TC_gif.gif
IP 172.67.164.16:443
Requested by https://adserve.work/www/serve/afr.php?zoneid=4&cb=INSERT_RANDOM_NUMBER_HERE
Certificate IssuerGoogle Trust Services LLC
Subject*.ggsfq.xyz
FingerprintA8:3F:E3:1B:53:57:27:3F:C4:96:E9:4B:F5:81:11:9B:C3:AA:0B:7C
ValidityWed, 22 Feb 2023 12:14:05 GMT - Tue, 23 May 2023 12:14:04 GMT
File type GIF image data, version 89a, 300 x 250\012- data
Size 495 kB (494777 bytes)
Hash d45408a37e9794b0dc1b2ea2bc9d9e5c
16a2899dfbe5de68a24da822ccffeacce8eaeb87
4715ed6ea3e54eef8ee31945a683c94a38f61d3f682edf7e6191ed6963e3e14e
GET /creative/20230309_Jable_(300x250)_E_TC_gif.gif HTTP/1.1
Host: cdn.ggsfq.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adserve.work/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:41:57 GMT
content-type: image/gif
content-length: 494777
etag: "d45408a37e9794b0dc1b2ea2bc9d9e5c"
last-modified: Thu, 09 Mar 2023 03:02:45 GMT
x-amz-id-2: KlitR5uAc/XhOMtm7v+Rn2mV7Xyc96cVtL32cSHSwsg5YBUqfYtR+0LKAnKJxZ7Q95ODY4qng5S7
x-amz-request-id: D95E5431FC58D52D
cache-control: max-age=14400
cf-cache-status: HIT
age: 747
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qx37Mm0JDZ9nCAzrZPACuGetFGMXmtGh0zArlWt9ZRAGU5w3nOM3ECcKXs%2BBXkn%2BwZhTZQwepj%2B1xerW7myWR4n42Nepv6aplXoOoQr2%2B8mZ9OzTqG%2Fjcorq6n0XAMNa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d8a8c7a02b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
imasdk.googleapis.com/js/core/bridge3.566.2_en.html
142.250.74.74 231 kB URL imasdk.googleapis.com/js/core/bridge3.566.2_en.html
IP 142.250.74.74:0
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint76:50:4C:9F:C4:BB:29:C8:41:DD:B7:8A:B7:22:AE:3E:4F:A8:04:80
ValidityMon, 13 Mar 2023 08:25:02 GMT - Mon, 05 Jun 2023 08:25:01 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (48275)
Size 231 kB (231184 bytes)
Hash d644a098f0c7498e46ce3f8f44d65b01
fc1bdd868c9116f00579599625c6497ede96f416
13e6e4124e77ad6c2b77a9b5db6387330bbd884d53e71718ed5434d8a7d8911f
GET /js/core/bridge3.566.2_en.html HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: imasdk.googleapis.com
Connection: keep-alive
Referer: https://fs1.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 231184
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Apr 2023 15:46:53 GMT
expires: Wed, 03 Apr 2024 15:46:53 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 28 Mar 2023 15:25:51 GMT
content-type: text/html
vary: Accept-Encoding
age: 197704
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash f565c1ce74ae9f1210c792b8407b6ad9
5899de829be23b25ddb697892008eb17dded7b05
a38ca149b2cbc2ce99fa385892d5283f6b8445c74aadf29073bacf862993ca48
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 22:41:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/omsdk/releases/live/omweb-v1.js
142.250.74.2200 OK 13 kB URL GET HTTP/2 pagead2.googlesyndication.com/omsdk/releases/live/omweb-v1.js
IP 142.250.74.2:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint54:B7:F5:23:D5:77:63:C0:A7:12:2E:8F:61:C7:BB:63:00:ED:91:B3
ValidityMon, 13 Mar 2023 08:16:49 GMT - Mon, 05 Jun 2023 08:16:48 GMT
File type ASCII text, with very long lines (1514)
Hash e0a80a7ff607cd6b73373b9d4f2f2785
89da55740e0305bdfc3fabedff5057d1cee93559
0fb653ddef8068310e3fb45204026264c638d12e272aad697da6e9590d85d2a3
GET /omsdk/releases/live/omweb-v1.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/omsdk-team-release-policy
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="omsdk-team-release-policy"
report-to: {"group":"omsdk-team-release-policy","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/omsdk-team-release-policy"}]}
content-length: 13208
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Apr 2023 21:45:33 GMT
expires: Thu, 06 Apr 2023 22:45:33 GMT
cache-control: public, max-age=3600
age: 3384
last-modified: Tue, 14 Mar 2023 20:29:12 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 9fb9e25865d789a04e00d4dcaaeb1227
db4e6d5b1ee006e3262f07eecbaaed1dd9e839aa
7d87a30307a6d258dfbc668e9317313e89dd3ba83abd8a09c4506bbe81f3f477
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 22:41:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mongi-doma.mushroomtrack.com/hls/FbqrX6NvIqmGA9Xow54LdA/1680831691/23000/23403/thumb.ts
65.108.2.122200 OK 961 kB URL GET HTTP/2 mongi-doma.mushroomtrack.com/hls/FbqrX6NvIqmGA9Xow54LdA/1680831691/23000/23403/thumb.ts
IP 65.108.2.122:443
ASN #24940 Hetzner Online GmbH
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerLet's Encrypt
Subjectmongi-doma.mushroomtrack.com
FingerprintD7:2D:08:7A:19:43:ED:D2:A2:C6:12:92:E6:FC:FF:C2:38:63:22:52
ValidityWed, 15 Feb 2023 15:51:07 GMT - Tue, 16 May 2023 15:51:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 95", baseline, precision 8, 2130x1560, components 3\012- data
Size 961 kB (960838 bytes)
Hash 0b235e13cc1852db160c713bef15ded1
76336da98d0c2b6e8bea984d365bb43739c6e025
19101fbfd734f4c6b7cceaec9fb97da4671df4f70b76a0e56e4577a0ace73f29
GET /hls/FbqrX6NvIqmGA9Xow54LdA/1680831691/23000/23403/thumb.ts HTTP/1.1
Host: mongi-doma.mushroomtrack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 06 Apr 2023 22:41:57 GMT
content-type: video/mp2t
content-length: 960838
last-modified: Fri, 15 Apr 2022 13:26:31 GMT
etag: "62597287-ea946"
expires: Fri, 07 Apr 2023 22:41:57 GMT
cache-control: max-age=86400, public
accept-ranges: bytes
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=fs1.app
216.58.211.2200 OK 100 B URL GET HTTP/2 adservice.google.com/adsid/integrator.js?domain=fs1.app
IP 216.58.211.2:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintD7:4E:1B:2F:42:55:EA:42:0B:20:9F:F8:3C:07:ED:BE:50:2D:C0:4F
ValidityMon, 13 Mar 2023 08:18:01 GMT - Mon, 05 Jun 2023 08:18:00 GMT
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=fs1.app HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 06 Apr 2023 22:41:57 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash f565c1ce74ae9f1210c792b8407b6ad9
5899de829be23b25ddb697892008eb17dded7b05
a38ca149b2cbc2ce99fa385892d5283f6b8445c74aadf29073bacf862993ca48
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 22:41:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 9fb9e25865d789a04e00d4dcaaeb1227
db4e6d5b1ee006e3262f07eecbaaed1dd9e839aa
7d87a30307a6d258dfbc668e9317313e89dd3ba83abd8a09c4506bbe81f3f477
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 22:41:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash f34f320d2fafb201d131e50ba06e6582
30967e6e4341caf4ac5a727ccf7866ace4a6153a
c1cbd41a4795d3c7fa76ece0452db2acb2ba606fe00ccc9ed2e691e902a54913
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 22:41:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s0.2mdn.net/instream/video/client.js
172.217.21.166200 OK 17 kB URL GET HTTP/2 s0.2mdn.net/instream/video/client.js
IP 172.217.21.166:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerGoogle Trust Services LLC
Subject*.doubleclick.net
Fingerprint46:3B:22:E3:28:FF:6F:E5:0A:21:12:98:5B:C8:D2:92:59:11:6F:D6
ValidityMon, 13 Mar 2023 08:16:45 GMT - Mon, 05 Jun 2023 08:16:44 GMT
File type ASCII text, with very long lines (2156)
Hash 49295de6ccd23cf80b6418a2d209868f
42a955b4560bb22cb9b5b39577f7a691ea345018
d5a29c73c6200af2ed6918a61106e649b92098ecd476830d725ed4d2ea5a8efa
GET /instream/video/client.js HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
content-length: 16746
date: Thu, 06 Apr 2023 22:41:57 GMT
expires: Thu, 06 Apr 2023 22:41:57 GMT
cache-control: private, max-age=900
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/676799/a8434536bee74a0f2e0dad6eeb7ce34c6b860c03.webp
185.76.9.16200 OK 4.5 kB URL GET HTTP/2 s3t3d2y8.afcdn.net/library/676799/a8434536bee74a0f2e0dad6eeb7ce34c6b860c03.webp
IP 185.76.9.16:443
ASN #60068 Datacamp Limited
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerLet's Encrypt
Subjectafcdn.net
Fingerprint58:E2:EC:9A:A1:55:22:20:28:3E:43:7C:0D:B9:0A:67:84:6B:EA:FB
ValidityMon, 27 Feb 2023 07:22:15 GMT - Sun, 28 May 2023 07:22:14 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash adca33b56b764b0c5cee2bc5937f6a95
a8434536bee74a0f2e0dad6eeb7ce34c6b860c03
68101315421f073c64a0f568064df141b0df9de16438221bd4d2b340e5cc611c
GET /library/676799/a8434536bee74a0f2e0dad6eeb7ce34c6b860c03.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:41:57 GMT
content-type: image/webp
content-length: 4516
last-modified: Wed, 03 Nov 2021 19:32:37 GMT
etag: "6182e3d5-11a4"
expires: Fri, 30 Jun 2023 18:46:47 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
server: CDN77-Turbo
x-robots-tag: noindex, follow
x-77-nzt: AblMCQ3piBD/oK1wAQ
x-77-nzt-ray: c0a4cc286186c72db54a2f646ba7b41f
x-accel-expires: @1688195221
x-cache: HIT
x-age: 24161696
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash f34f320d2fafb201d131e50ba06e6582
30967e6e4341caf4ac5a727ccf7866ace4a6153a
c1cbd41a4795d3c7fa76ece0452db2acb2ba606fe00ccc9ed2e691e902a54913
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 22:41:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
go.admjmp.com/abc.gif?userId=4c25683baa7e541ee7ce0014496c85471ee87c5671f43cd3d2de65eaed1cbb98&campaignId=bottomslider&modelsLimit=1&stripcashR=0&thumbType=default&thumbFit=cover&quality=original&language=en&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=1&segment=hls-newAPI&landing=Spot&referrer&i=0&ib=0&filtersMatch=1
104.18.51.106200 OK 103 B URL GET HTTP/3 go.admjmp.com/abc.gif?userId=4c25683baa7e541ee7ce0014496c85471ee87c5671f43cd3d2de65eaed1cbb98&campaignId=bottomslider&modelsLimit=1&stripcashR=0&thumbType=default&thumbFit=cover&quality=original&language=en&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=1&segment=hls-newAPI&landing=Spot&referrer&i=0&ib=0&filtersMatch=1
IP 104.18.51.106:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectgo.admjmp.com
FingerprintA9:B0:8A:8F:28:5A:98:E7:DE:B5:54:6F:78:D2:68:ED:81:ED:D8:63
ValiditySat, 30 Jul 2022 00:00:00 GMT - Sun, 30 Jul 2023 23:59:59 GMT
Hash 8c99886486b9a004383cb4df29011c43
d79ca4754481fc59598bc08fcdf354900918bffe
bda00b0f6892b1c6991e793b42654ad1807694e2ffabcbc4eb1399379737ef6c
GET /abc.gif?userId=4c25683baa7e541ee7ce0014496c85471ee87c5671f43cd3d2de65eaed1cbb98&campaignId=bottomslider&modelsLimit=1&stripcashR=0&thumbType=default&thumbFit=cover&quality=original&language=en&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=1&segment=hls-newAPI&landing=Spot&referrer&i=0&ib=0&filtersMatch=1 HTTP/1.1
Host: go.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: go.admjmp.com
Connection: keep-alive
Referer: https://fs1.app/
Cookie: __cflb=0H28uukSkGJRy5UBr1XYMARUwdYFVsf2MxAiChYsymn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:41:57 GMT
content-type: image/gif
content-length: 103
access-control-allow-origin: *
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7b3d8a9019e90b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
img.strpst.com/thumbs/1680820830/99604173
104.18.63.132200 OK 42 kB URL GET HTTP/2 img.strpst.com/thumbs/1680820830/99604173
IP 104.18.63.132:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 0x0, segment length 16, progressive, precision 8, 640x360, components 3\012- data
Hash 3ab1563bd85874449c222bee9aae7b03
b27a83bd51eab89b6891aa4fc5008907781b24ab
e0b3824234b57d0b27058a31acd1b87f33c12fc30930def9619c1c12e2bc8b1c
GET /thumbs/1680820830/99604173 HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:41:57 GMT
content-type: image/jpeg
content-length: 42083
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: public, max-age=1800, s-maxage=1800, stale-while-revalidate=1, max-stale=1, stale-if-error=1
cf-bgj: imgq:100,h2pri
cf-polished: origSize=43287, status=webp_bigger
etag: "5062c253eefda250614476fa4eaffab5"
last-modified: Thu, 06 Apr 2023 22:40:21 GMT
cf-cache-status: HIT
age: 45
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d8a90783db51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cloudlogobox.com/rtbfeed.php?001e67e03bf5
195.123.209.175200 OK 106 B URL GET HTTP/1.1 cloudlogobox.com/rtbfeed.php?001e67e03bf5
IP 195.123.209.175:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerLet's Encrypt
Subjectcloudlogobox.com
Fingerprint87:2D:8E:53:41:BA:6E:15:2C:20:A1:71:D0:F7:57:03:26:40:84:F5
ValidityWed, 15 Mar 2023 01:03:48 GMT - Tue, 13 Jun 2023 01:03:47 GMT
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 45519216be3b413c13c1bd623990d1b8
f374f2578e498a536085b57c41d3d2299fa84f5e
4742175aa9e5530bd227e6d0ca2e5d2be4aa5b46ec7ee4a7c8f81c74d7d7884c
GET /rtbfeed.php?001e67e03bf5 HTTP/1.1
Host: cloudlogobox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Apr 2023 22:41:57 GMT
Content-Type: image/png
Content-Length: 106
Last-Modified: Wed, 10 Feb 2021 11:05:43 GMT
Connection: keep-alive
ETag: "6023be07-6a"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
a.labadena.com/api/users/262182?host=fs1.app&ev=206&wh=901&ww=1152&uuid=&kw=%E4%B8%AD%E6%96%87%E5%AD%97%E5%B9%95%2C%E8%A7%92%E8%89%B2%E5%8A%87%E6%83%85%2C%E5%87%BA%E8%BB%8C%2C%E9%8C%AF%E9%81%8E%E6%9C%AB%E7%8F%AD%E8%BB%8A%2C%E8%AA%98%E6%83%91%2C%E7%BE%8E%E5%B0%BB%2C%E7%9F%AD%E9%AB%AE%2C%E9%A1%8F%E5%B0%84%2C%E5%B7%A8%E4%B9%B3%2C%E5%B0%91%E5%A5%B3%2C%E5%A4%A9%E5%9B%BD%E3%82%8B%E3%82%8B&s1=%25subid1%25
135.181.208.216200 OK 530 B URL GET HTTP/2 a.labadena.com/api/users/262182?host=fs1.app&ev=206&wh=901&ww=1152&uuid=&kw=%E4%B8%AD%E6%96%87%E5%AD%97%E5%B9%95%2C%E8%A7%92%E8%89%B2%E5%8A%87%E6%83%85%2C%E5%87%BA%E8%BB%8C%2C%E9%8C%AF%E9%81%8E%E6%9C%AB%E7%8F%AD%E8%BB%8A%2C%E8%AA%98%E6%83%91%2C%E7%BE%8E%E5%B0%BB%2C%E7%9F%AD%E9%AB%AE%2C%E9%A1%8F%E5%B0%84%2C%E5%B7%A8%E4%B9%B3%2C%E5%B0%91%E5%A5%B3%2C%E5%A4%A9%E5%9B%BD%E3%82%8B%E3%82%8B&s1=%25subid1%25
IP 135.181.208.216:443
ASN #24940 Hetzner Online GmbH
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerLet's Encrypt
Subjecta.labadena.com
FingerprintB3:CC:65:92:BF:73:55:95:BD:FD:91:93:93:C9:91:8A:88:6E:67:3F
ValidityWed, 15 Feb 2023 23:27:10 GMT - Tue, 16 May 2023 23:27:09 GMT
File type ASCII text, with very long lines (323)
Hash 435b858ee9e19980a91636f5f8b624e1
bc36c498f35a244bcf8c1232bc8760d3366c59ff
44aeae61344dfa0dddd95a3bc34f6969f3d25ddef59264927885f51441702858
GET /api/users/262182?host=fs1.app&ev=206&wh=901&ww=1152&uuid=&kw=%E4%B8%AD%E6%96%87%E5%AD%97%E5%B9%95%2C%E8%A7%92%E8%89%B2%E5%8A%87%E6%83%85%2C%E5%87%BA%E8%BB%8C%2C%E9%8C%AF%E9%81%8E%E6%9C%AB%E7%8F%AD%E8%BB%8A%2C%E8%AA%98%E6%83%91%2C%E7%BE%8E%E5%B0%BB%2C%E7%9F%AD%E9%AB%AE%2C%E9%A1%8F%E5%B0%84%2C%E5%B7%A8%E4%B9%B3%2C%E5%B0%91%E5%A5%B3%2C%E5%A4%A9%E5%9B%BD%E3%82%8B%E3%82%8B&s1=%25subid1%25 HTTP/1.1
Host: a.labadena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: nauid=EjuTBcmgaQGb9z05o589
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 06 Apr 2023 22:41:57 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
b-hls-17.doppiocdn.com/hls/99604173/99604173_480p_init_rbrdINanw9KpSLCL.mp4
104.18.55.36200 OK 1.2 kB URL GET HTTP/2 b-hls-17.doppiocdn.com/hls/99604173/99604173_480p_init_rbrdINanw9KpSLCL.mp4
IP 104.18.55.36:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type ISO Media, MP4 Base Media v5 \012- data
Hash 2518d529eb80de76430503680e4349b0
ae05082bf1dbaf427fe1ece5e33bb55db50c3d18
aeb0447767dd9c916094c2f0544f8fdd6bec7f9b1eb8521aafe0085d6545401f
GET /hls/99604173/99604173_480p_init_rbrdINanw9KpSLCL.mp4 HTTP/1.1
Host: b-hls-17.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:41:59 GMT
content-type: video/mp4
content-length: 1218
last-modified: Thu, 06 Apr 2023 22:09:05 GMT
etag: "642f4301-4c2"
timing-allow-origin: *
cache-control: public, max-age=60, s-maxage=60
access-control-allow-origin: *
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d8a982c3b1c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
csi.gstatic.com/csi?v=2&s=ima&puid=1~lg5pdka1&c=2482306893546&slotId=1241153446773&eee=missing-element&bi=missing-id&vast_v=3.0&lima_p_ich=0&lima_p_icu=0
142.250.78.67204 No Content 0 B URL POST HTTP/2 csi.gstatic.com/csi?v=2&s=ima&puid=1~lg5pdka1&c=2482306893546&slotId=1241153446773&eee=missing-element&bi=missing-id&vast_v=3.0&lima_p_ich=0&lima_p_icu=0
IP 142.250.78.67:443
Requested by https://imasdk.googleapis.com/js/core/bridge3.566.2_en.html#goog_839045865
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint1C:AF:ED:FD:AA:9B:87:E6:A4:D5:27:D7:B6:5D:60:78:61:2E:CC:28
ValidityMon, 13 Mar 2023 08:24:32 GMT - Mon, 05 Jun 2023 08:24:31 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csi?v=2&s=ima&puid=1~lg5pdka1&c=2482306893546&slotId=1241153446773&eee=missing-element&bi=missing-id&vast_v=3.0&lima_p_ich=0&lima_p_icu=0 HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: *
date: Thu, 06 Apr 2023 22:41:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
b-hls-17.doppiocdn.com/hls/99604173/99604173_480p_983_bofiZU2OPRxlUqHf_1680820911.mp4
104.18.55.36200 OK 315 kB URL GET HTTP/2 b-hls-17.doppiocdn.com/hls/99604173/99604173_480p_983_bofiZU2OPRxlUqHf_1680820911.mp4
IP 104.18.55.36:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
Size 315 kB (314938 bytes)
Hash b1bfa65171a5e217adb2af5b07bbd361
6ec7277ef4e7ec1fbd7584897887a988ff821bee
230df6666d5a43b487afa1dbede94f47bdfba25e0b002e2901a1ec403a93581f
GET /hls/99604173/99604173_480p_983_bofiZU2OPRxlUqHf_1680820911.mp4 HTTP/1.1
Host: b-hls-17.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:41:59 GMT
content-type: video/mp4
content-length: 314938
last-modified: Thu, 06 Apr 2023 22:41:53 GMT
etag: "642f4ab1-4ce3a"
timing-allow-origin: *
cache-control: public, max-age=60, s-maxage=60
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d8a986c601c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
b-hls-17.doppiocdn.com/hls/99604173/99604173_480p_984_17VAwk3O5uoq88nX_1680820913.mp4
104.18.55.36200 OK 321 kB URL GET HTTP/3 b-hls-17.doppiocdn.com/hls/99604173/99604173_480p_984_17VAwk3O5uoq88nX_1680820913.mp4
IP 104.18.55.36:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
Size 321 kB (321001 bytes)
Hash c7182e3a50a28676177a2fb75886f228
4a2374fc44d0a5727eee64f6b24c8767eef6925f
9aff48623d7a1d8df21ab5cdd3416c0eeb898207b910c20c487c80e2a18c5632
GET /hls/99604173/99604173_480p_984_17VAwk3O5uoq88nX_1680820913.mp4 HTTP/1.1
Host: b-hls-17.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:41:59 GMT
content-type: video/mp4
content-length: 321001
last-modified: Thu, 06 Apr 2023 22:41:55 GMT
etag: "642f4ab3-4e5e9"
timing-allow-origin: *
cache-control: public, max-age=60, s-maxage=60
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d8a98fe7f1c06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
csi.gstatic.com/csi?v=2&s=ima&puid=2~lg5pdkkj&c=2482306893546&slotId=1241153446773&ghmsh_eids=44748969%2C44752657%2C44765701%2C44772139%2C44777649%2C44781409%2C44781753%2C44782991
142.250.78.67204 No Content 0 B URL POST HTTP/2 csi.gstatic.com/csi?v=2&s=ima&puid=2~lg5pdkkj&c=2482306893546&slotId=1241153446773&ghmsh_eids=44748969%2C44752657%2C44765701%2C44772139%2C44777649%2C44781409%2C44781753%2C44782991
IP 142.250.78.67:443
Requested by https://imasdk.googleapis.com/js/core/bridge3.566.2_en.html#goog_839045865
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint1C:AF:ED:FD:AA:9B:87:E6:A4:D5:27:D7:B6:5D:60:78:61:2E:CC:28
ValidityMon, 13 Mar 2023 08:24:32 GMT - Mon, 05 Jun 2023 08:24:31 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csi?v=2&s=ima&puid=2~lg5pdkkj&c=2482306893546&slotId=1241153446773&ghmsh_eids=44748969%2C44752657%2C44765701%2C44772139%2C44777649%2C44781409%2C44781753%2C44782991 HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: *
date: Thu, 06 Apr 2023 22:41:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
creative.admjmp.com/widgets/Spot/vendors~hls.18f09cc78016f06b828b.js
104.18.59.150200 OK 178 kB URL GET HTTP/3 creative.admjmp.com/widgets/Spot/vendors~hls.18f09cc78016f06b828b.js
IP 104.18.59.150:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectcreative.admjmp.com
FingerprintF5:BC:E5:4B:69:86:E0:72:1B:ED:C9:0B:10:D7:BE:A0:86:F3:1D:71
ValiditySat, 30 Jul 2022 00:00:00 GMT - Sun, 30 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (45140)
Size 178 kB (177865 bytes)
Hash d47dabb4fffc74448f81658667859160
9a309deebefda0376c4f7013fba78ee733620284
e3295b3aee4ac84c9eea9a0b702f69c63d98c5aa253b0152333f4fc0edec5534
GET /widgets/Spot/vendors~hls.18f09cc78016f06b828b.js HTTP/1.1
Host: creative.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: creative.admjmp.com
Connection: keep-alive
Referer: https://fs1.app/
Cookie: __cflb=02DiuDfsBaY2bRYJiCg3Rc4wrBy1LXpo8G4KuQUB5AhnC
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:41:58 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 04 Apr 2023 03:07:52 GMT
etag: W/"642b9488-2b6c9"
expires: Thu, 06 Apr 2023 22:42:01 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d8a93daccb524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
b-hls-17.doppiocdn.com/hls/99604173/99604173_480p.m3u8
104.18.55.36200 OK 722 B URL GET HTTP/2 b-hls-17.doppiocdn.com/hls/99604173/99604173_480p.m3u8
IP 104.18.55.36:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type M3U playlist, ASCII text, with very long lines (740), with no line terminators
Hash c3bd26e597b929af6e4b397ff1806128
7ee2e09ca8bdd2d1b35cf67a74128caef0672ea7
5c08dc4abdd7af6001dc7c5d3022a72f109ce1d75686a9dcf9fccf6aa45bfab5
GET /hls/99604173/99604173_480p.m3u8 HTTP/1.1
Host: b-hls-17.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:41:59 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Thu, 06 Apr 2023 22:41:59 GMT
x-proxy-cache: HIT
timing-allow-origin: *
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 7b3d8a97ec0a1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
assets.fs1.app/assets/js/player.js
188.114.97.1200 OK 424 kB URL GET HTTP/3 assets.fs1.app/assets/js/player.js
IP 188.114.97.1:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
Size 424 kB (424056 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/js/player.js HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jlfvsrgf6l90sde816eufvqmhh; kt_ips=91.90.42.154
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:41:55 GMT
content-type: application/javascript
last-modified: Wed, 08 May 2019 04:54:14 GMT
vary: Accept-Encoding
etag: W/"5cd260f6-67878"
expires: Mon, 10 Apr 2023 10:56:03 GMT
cache-control: max-age=604800
strict-transport-security: max-age=15768000
cf-cache-status: HIT
age: 301552
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CWYz%2Fg60tSZUpQLL6eX0nyNflJbVnz0kA3cveM38lDbdMMngByRP607u0OuIZH8kJiGWPsj0nenNa%2FRz6pWdlu0nH%2Bv08mKjqHzlM85NqxZjjX6mi%2FHV9z4J8l%2FaDy2u%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b3d8a84c9f1fab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
adserve.work/www/serve/afr.php?zoneid=4&cb=INSERT_RANDOM_NUMBER_HERE
188.114.96.1200 OK 1.0 kB URL GET HTTP/2 adserve.work/www/serve/afr.php?zoneid=4&cb=INSERT_RANDOM_NUMBER_HERE
IP 188.114.96.1:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint92:00:26:4C:BE:F6:69:97:38:04:5C:F1:70:10:7D:95:8A:22:0E:61
ValiditySun, 24 Jul 2022 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1018), with no line terminators
Hash 5ec20be63325a66dd9eabc2047a1626d
d26da11e166032a538a567282897ee5b0a8be108
d85417e8e435ae3006c84f60adbfb81cc602fadf4e72fc54754d23ec49659080
GET /www/serve/afr.php?zoneid=4&cb=INSERT_RANDOM_NUMBER_HERE HTTP/1.1
Host: adserve.work
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:41:57 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.11
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: 0
access-control-allow-origin: *
p3p: CP="CUR ADM OUR NOR STA NID"
set-cookie: OAID=01000111010001000101000001010010; expires=Fri, 05-Apr-2024 22:41:56 GMT; Max-Age=31536000; path=/; secure; SameSite=none
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nI6NOFh2GnmvYOlH3kUlJ0cuUhWbUeg8UgKppfU76lJ62GvAB4C1fYz9nhcLwmTJA3T%2FuNAskv9tfOO%2BFzgQjNK2x1Iu1Z6G8hOquIeKah%2BK3ybWyNtc94HJ92prinI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b3d8a885f19b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
assets.fs1.app/assets/images/flag/jp.svg
188.114.97.1200 OK 167 B URL GET HTTP/3 assets.fs1.app/assets/images/flag/jp.svg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash 5b006b8f28fc656a790e105d4dbd706f
d0105fc698ca484fd8748e7c0fe883eac45422a9
71980f7ff5280fc9b3c07643bf5466c2ca9258571223213ffa63d834a2936d8c
GET /assets/images/flag/jp.svg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jlfvsrgf6l90sde816eufvqmhh; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:41:55 GMT
content-type: image/svg+xml
last-modified: Sat, 18 May 2019 16:52:07 GMT
etag: W/"5ce03837-a7"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 287
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DrKyBnXlcUN8dO%2FULWUz6B2Ou3cGZF%2Bdt%2B5DKkSPEJkLwflmBjV%2B79WCeuL9yaZdJcYJfD%2BrfjM2wAi6NC97IRf9ia%2BkF0PwguJSK%2Bni%2BMcvK4M2wpyeRw6lHledt1jBYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d8a84b9e8fab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
go.admjmp.com/api/models?tag=girls%2Fchinese&forceClient=1&stripcashR=0&limit=1
104.18.51.106200 OK 1.7 kB URL GET HTTP/3 go.admjmp.com/api/models?tag=girls%2Fchinese&forceClient=1&stripcashR=0&limit=1
IP 104.18.51.106:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectgo.admjmp.com
FingerprintA9:B0:8A:8F:28:5A:98:E7:DE:B5:54:6F:78:D2:68:ED:81:ED:D8:63
ValiditySat, 30 Jul 2022 00:00:00 GMT - Sun, 30 Jul 2023 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1891), with no line terminators
Hash c170fc98d0bc479d7ea6299fde61b978
214537205c32190c45127cfc136e17f60bad969c
f15e848253f8ab274abe3ef8b9e7212b2ee9f58596b770fc9a5bdac3b99dc99e
GET /api/models?tag=girls%2Fchinese&forceClient=1&stripcashR=0&limit=1 HTTP/1.1
Host: go.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fs1.app/
Origin: https://fs1.app
Alt-Used: go.admjmp.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:41:57 GMT
content-type: application/json
access-control-allow-origin: https://fs1.app
access-control-allow-credentials: true
vary: Origin, Accept-Encoding
last-modified: Thu, 06 Apr 2023 22:37:09 GMT
cf-cache-status: EXPIRED
set-cookie: __cflb=0H28uukSkGJRy5UBr1XYMARUwdYFVsf2MxAiChYsymn; SameSite=None; Secure; path=/; expires=Fri, 07-Apr-23 21:41:57 GMT; HttpOnly
server: cloudflare
cf-ray: 7b3d8a8c0f250b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
imasdk.googleapis.com/js/core/bridge3.566.2_en.html
142.250.74.74200 OK 728 kB URL GET HTTP/3 imasdk.googleapis.com/js/core/bridge3.566.2_en.html
IP 142.250.74.74:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint76:50:4C:9F:C4:BB:29:C8:41:DD:B7:8A:B7:22:AE:3E:4F:A8:04:80
ValidityMon, 13 Mar 2023 08:25:02 GMT - Mon, 05 Jun 2023 08:25:01 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (48275)
Size 728 kB (727562 bytes)
Hash 2576c611c07266e9c52a2f55dc8029be
96e3c1cf2408d3333c0d398178353b919cfed1b4
a139618572b9c9b5e7e0d75d62f81c0d6aa6202f72db242ed62b860e805027db
GET /js/core/bridge3.566.2_en.html HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: imasdk.googleapis.com
Connection: keep-alive
Referer: https://fs1.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 231184
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Apr 2023 15:46:53 GMT
expires: Wed, 03 Apr 2024 15:46:53 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 28 Mar 2023 15:25:51 GMT
content-type: text/html
vary: Accept-Encoding
age: 197704
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
adserve.work/www/serve/lg.php?bannerid=1708&campaignid=2&zoneid=4&loc=https%3A%2F%2Ffs1.app%2F&cb=ca4c6d15d3
188.114.96.1200 OK 43 B URL GET HTTP/3 adserve.work/www/serve/lg.php?bannerid=1708&campaignid=2&zoneid=4&loc=https%3A%2F%2Ffs1.app%2F&cb=ca4c6d15d3
IP 188.114.96.1:443
Requested by https://adserve.work/www/serve/afr.php?zoneid=4&cb=INSERT_RANDOM_NUMBER_HERE
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint92:00:26:4C:BE:F6:69:97:38:04:5C:F1:70:10:7D:95:8A:22:0E:61
ValiditySun, 24 Jul 2022 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /www/serve/lg.php?bannerid=1708&campaignid=2&zoneid=4&loc=https%3A%2F%2Ffs1.app%2F&cb=ca4c6d15d3 HTTP/1.1
Host: adserve.work
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: adserve.work
Connection: keep-alive
Referer: https://adserve.work/www/serve/afr.php?zoneid=4&cb=INSERT_RANDOM_NUMBER_HERE
Cookie: OAID=01000111010001000101000001010010
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:41:57 GMT
content-type: image/gif
x-powered-by: PHP/7.4.11
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: 0
access-control-allow-origin: *
p3p: CP="CUR ADM OUR NOR STA NID"
set-cookie: OAID=01000111010001000101000001010010; expires=Fri, 05-Apr-2024 22:41:57 GMT; Max-Age=31536000; path=/; secure; SameSite=none
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WXaRJFhA20g316BBIMSI4x5TaeJD2TykidZwH14syudrzDbgC0pw4KpQ9tPlC8nQ4l1mqLSd66cUkRl4ZupjAxnpR6CZcBOJIusYosTIsDlTOOV%2BpCNmh74Ap4om%2FaQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b3d8a8c5dceb509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
syndication.exosrv.com/splash.php?idzone=3377419
95.211.229.245200 OK 61 B URL GET HTTP/1.1 syndication.exosrv.com/splash.php?idzone=3377419
IP 95.211.229.245:443
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://imasdk.googleapis.com/js/core/bridge3.566.2_en.html#goog_839045865
Certificate IssuerLet's Encrypt
Subjectexosrv.com
FingerprintB0:32:AF:54:A7:8F:3E:F6:C6:1A:EE:BD:56:D9:24:65:24:82:81:E1
ValidityMon, 27 Feb 2023 07:27:56 GMT - Sun, 28 May 2023 07:27:55 GMT
File type XML document, ASCII text, with no line terminators
Hash 9b3eae07e025fdf8ec3fd6e1cf9ec05b
dc6409503a7aa96abc532631e5b50d2ea5bbc6b3
cf478a79ed57f258c9feb5fa7a48c18de64930fe56cbec2cad74f8345dd2113c
GET /splash.php?idzone=3377419 HTTP/1.1
Host: syndication.exosrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Apr 2023 22:41:57 GMT
Content-Type: text/xml;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22642f4ab5d37538.254979233030002374%22%3B%7D; expires=Sat, 05 Apr 2025 22:41:57 GMT; path=; domain=.exosrv.com; Secure; SameSite=none
Cache-Control: no-store
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: https://imasdk.googleapis.com
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint1C:AF:ED:FD:AA:9B:87:E6:A4:D5:27:D7:B6:5D:60:78:61:2E:CC:28
ValidityMon, 13 Mar 2023 08:24:32 GMT - Mon, 05 Jun 2023 08:24:31 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fs1.app
Connection: keep-alive
Referer: https://assets.fs1.app/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Apr 2023 11:09:06 GMT
expires: Fri, 05 Apr 2024 11:09:06 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 41570
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
go.admjmp.com/thumbs/view
104.18.51.106200 OK 85 B URL POST HTTP/3 go.admjmp.com/thumbs/view
IP 104.18.51.106:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectgo.admjmp.com
FingerprintA9:B0:8A:8F:28:5A:98:E7:DE:B5:54:6F:78:D2:68:ED:81:ED:D8:63
ValiditySat, 30 Jul 2022 00:00:00 GMT - Sun, 30 Jul 2023 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 6c40cba591d616ca7c3d1c0af5b8668c
662ce61a24b419b49cc30e5cbf11ce2d3fdebd98
502c729840b5ad739dd5066d60fa9cc461a7f78b669c969d6d34bf26f6c02160
POST /thumbs/view HTTP/1.1
Host: go.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fs1.app/
Content-Type: text/plain;charset=UTF-8
Content-Length: 81
Origin: https://fs1.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:41:57 GMT
content-type: application/json
access-control-allow-origin: *
cf-cache-status: DYNAMIC
set-cookie: __cflb=02DiuDfsBaY2bRYJiCddNhqGgfsRfgxdZJ6gmdtxenXFi; SameSite=None; Secure; path=/; expires=Fri, 07-Apr-23 21:41:57 GMT; HttpOnly
server: cloudflare
cf-ray: 7b3d8a90ea5f0b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
assets.fs1.app/assets/images/flag/en.svg
188.114.97.1200 OK 12 kB URL GET HTTP/3 assets.fs1.app/assets/images/flag/en.svg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (11831)
Hash 6744dbaa0d1f677a70099be7c55b7322
68e497a197e97ab48d931e3ca4568d920018283f
eb173b50ed398345d10caf5ea90f585196f8d8e51d6b70e63bd02d1087c7febd
GET /assets/images/flag/en.svg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jlfvsrgf6l90sde816eufvqmhh; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:41:55 GMT
content-type: image/svg+xml
last-modified: Sat, 18 May 2019 16:52:07 GMT
vary: Accept-Encoding
etag: W/"5ce03837-2fca"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 287
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yXr9fPprYtRJZYOme9LGgDtGRenScG7i%2FgWhDDTHf7Bfy%2FAOlSNvolV9Omc%2FCTzB%2FqtYTLwZudEq7ydum5z1yiyX35SEH8hVyF9XHXzEo5hXHp6%2BcD9cnaiPESjsusBj0g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b3d8a84b9eefab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
creative.admjmp.com/widgets/Spot/lib.js
104.18.59.150200 OK 280 kB URL GET HTTP/2 creative.admjmp.com/widgets/Spot/lib.js
IP 104.18.59.150:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectcreative.admjmp.com
FingerprintF5:BC:E5:4B:69:86:E0:72:1B:ED:C9:0B:10:D7:BE:A0:86:F3:1D:71
ValiditySat, 30 Jul 2022 00:00:00 GMT - Sun, 30 Jul 2023 23:59:59 GMT
Size 280 kB (279602 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widgets/Spot/lib.js HTTP/1.1
Host: creative.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:41:56 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 04 Apr 2023 03:07:52 GMT
etag: W/"642b9488-44432"
expires: Thu, 06 Apr 2023 22:42:00 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
set-cookie: __cflb=02DiuDfsBaY2bRYJiCg3Rc4wrBy1LXpo8G4KuQUB5AhnC; SameSite=None; Secure; path=/; expires=Fri, 07-Apr-23 21:41:55 GMT; HttpOnly
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d8a84ce4db527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
assets.fs1.app/assets/images/flag/zh.svg
188.114.97.1200 OK 1.1 kB URL GET HTTP/3 assets.fs1.app/assets/images/flag/zh.svg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1069), with no line terminators
Hash 3d250237e5edebaf66f40556017bdc25
13056df14a4944f6015a7aad9887778f0aa9cfcc
a78d037b338761ab5b5e0ad1ace9cfc10403a1a39ecc88fc4eca44dbf6f070f1
GET /assets/images/flag/zh.svg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jlfvsrgf6l90sde816eufvqmhh; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:41:55 GMT
content-type: image/svg+xml
last-modified: Sat, 18 May 2019 16:52:07 GMT
vary: Accept-Encoding
etag: W/"5ce03837-41c"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 287
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G%2F5GugSeBvMUw36NJwGIHrVENOVomawEqCSiiGkmPq0ospjQKtQqDaw7pDbrFs2Q9ALnEiSq0hIhhzRAipQbG3eh2pE2K%2B7NlgAfTProIRWb6%2FIg2t2ZHPSXCmFdaFEv0g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b3d8a84b9e9fab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
edge-hls.doppiocdn.com/hls/99604173/master/99604173_480p.m3u8
104.18.55.36200 OK 186 B URL GET HTTP/2 edge-hls.doppiocdn.com/hls/99604173/master/99604173_480p.m3u8
IP 104.18.55.36:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type M3U playlist, ASCII text, with no line terminators
Hash a2ebbbb6583da6f6b1f2f4973279ae2e
73093b1da8996ce0f6d2531215fb9693b354b52b
bcb8d15be680820342b77e7852510182e9e0e5226f54095a8f06e846f57de41e
GET /hls/99604173/master/99604173_480p.m3u8 HTTP/1.1
Host: edge-hls.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:41:59 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Thu, 06 Apr 2023 22:41:58 GMT
x-proxy-cache: HIT
timing-allow-origin: *
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 7b3d8a9469aa1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
creative.admjmp.com/widgets/Spot/core.db50f5f8fc13cf868bd2.js
104.18.59.150200 OK 2.8 kB URL GET HTTP/3 creative.admjmp.com/widgets/Spot/core.db50f5f8fc13cf868bd2.js
IP 104.18.59.150:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectcreative.admjmp.com
FingerprintF5:BC:E5:4B:69:86:E0:72:1B:ED:C9:0B:10:D7:BE:A0:86:F3:1D:71
ValiditySat, 30 Jul 2022 00:00:00 GMT - Sun, 30 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (2840), with no line terminators
Hash 81df84b5c4070ad48ee4376955bf78d0
832b74a3b3f32a1e2d3f9588b3b70991174f597d
dc1f6c7efa16517bcb119edeada2e361d18abcae2d565ae077e58ef7e7934115
GET /widgets/Spot/core.db50f5f8fc13cf868bd2.js HTTP/1.1
Host: creative.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: creative.admjmp.com
Connection: keep-alive
Referer: https://fs1.app/
Cookie: __cflb=02DiuDfsBaY2bRYJiCg3Rc4wrBy1LXpo8G4KuQUB5AhnC
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:41:57 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 04 Apr 2023 03:07:52 GMT
etag: W/"642b9488-ace"
expires: Thu, 06 Apr 2023 22:42:00 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d8a8c0aafb524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
b-hls-17.doppiocdn.com/hls/99604173/99604173_480p.m3u8
104.18.55.36200 OK 722 B URL GET HTTP/3 b-hls-17.doppiocdn.com/hls/99604173/99604173_480p.m3u8
IP 104.18.55.36:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type M3U playlist, ASCII text, with very long lines (740), with no line terminators
Hash 37b0ae26cbfcc2857f05543a335b7e4f
555a5c82ca506d99ce79d6be94863fce3ec624b9
f48eae55ba338bab0729ad39723db1e011eb3581df206ee6b7c0fee6a940abc8
GET /hls/99604173/99604173_480p.m3u8 HTTP/1.1
Host: b-hls-17.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:42:03 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Thu, 06 Apr 2023 22:42:03 GMT
x-proxy-cache: HIT
timing-allow-origin: *
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 7b3d8ab0ee5f1c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
b-hls-17.doppiocdn.com/hls/99604173/99604173_480p.m3u8
104.18.55.36200 OK 722 B URL GET HTTP/3 b-hls-17.doppiocdn.com/hls/99604173/99604173_480p.m3u8
IP 104.18.55.36:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type M3U playlist, ASCII text, with very long lines (740), with no line terminators
Hash 3fdff3e2d5b6b5ffd8a166640a6df198
67136ed5d47ec0c15a475bfb0b6f7c5973ac441a
8fba012a934ea40caeac2f99c1b86f77bd734097d58bb2158223cb12a34971b7
GET /hls/99604173/99604173_480p.m3u8 HTTP/1.1
Host: b-hls-17.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:42:07 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Thu, 06 Apr 2023 22:42:07 GMT
x-proxy-cache: HIT
timing-allow-origin: *
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 7b3d8ac9fdf41c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
assets.fs1.app/assets/images/avatar.svg
188.114.97.1200 OK 982 B URL GET HTTP/3 assets.fs1.app/assets/images/avatar.svg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1040), with no line terminators
Hash 75d76e0ffcbe2e76c5da7947edb7a598
f5a6bcde0a8ffb4074c4fc821611e18a87ac15f5
fc5cd61e4389b5260c1add7196c68999764d06817d307e632948aff2b6031dc3
GET /assets/images/avatar.svg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jlfvsrgf6l90sde816eufvqmhh; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:41:55 GMT
content-type: image/svg+xml
last-modified: Fri, 09 Nov 2018 19:00:34 GMT
vary: Accept-Encoding
etag: W/"5be5d952-3d6"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 287
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p8V133eVUdk%2FV3HjQiyqfOhNcTof6BDUVh4rZUhVVf3gZL%2B4LnXsEteIdsc%2BHpUBCSeV5Pg1oPXvVRY45tLJBISnfVHl6nfPfWFa5xhWHGhDF%2FO8EPsgQ6B6X4r6t%2B3I0A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b3d8a84b9edfab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
a.realsrv.com/ad-provider.js
185.76.9.15200 OK 81 kB URL GET HTTP/2 a.realsrv.com/ad-provider.js
IP 185.76.9.15:443
ASN #60068 Datacamp Limited
Requested by https://a.labadena.com/api/spots/220808?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
FingerprintC2:CA:14:12:90:2A:B3:84:F3:3C:B8:A9:E8:82:89:E0:CB:B9:EE:49
ValidityMon, 27 Feb 2023 07:33:27 GMT - Sun, 28 May 2023 07:33:26 GMT
File type ASCII text, with very long lines (52920)
Hash e03b4d3e15ad448db833b918283f8cb4
c3f438a95c95dae0c4881713886caefd8a4a410d
0cc6fb5378cf475d2ed0e745f33ec527fe48f39e27f57477e1ddb84a281ff801
GET /ad-provider.js HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a.labadena.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22642f4ab4b89ef8.010637541803764370%22%3B%7D; c-tag=%7B%22tag-banner%22%3A%22v3%7C%7CNOR%7C3377859%7C71987194%7C100644%7C%7C99%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C98b56149d9e37ae5eff84719b5b96c0f%7C0%7Cfs1.app%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:41:56 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"c3f438a95c95dae0c4881713886"
expires: Thu, 06 Apr 2023 17:10:38 GMT
cache-control: max-age=10800
access-control-allow-origin: *
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: AblMCQ3G4iX/SCMAAA
x-77-nzt-ray: c0a4cc288a91e827b44a2f6459196a34
x-accel-expires: @1680822684
x-cache: HIT
x-age: 9032
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
assets.fs1.app/assets/js/site.js?date=20190501
188.114.97.1200 OK 398 kB URL GET HTTP/3 assets.fs1.app/assets/js/site.js?date=20190501
IP 188.114.97.1:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 398 kB (397824 bytes)
Hash f60affb2495c7b46219ba6fcd010775e
06f054a5298645a8877d5fee838cb55875baf7bd
78e60bb029a9bd66332fb7d8c86a067252f72a3ce5c1051ddc3968bcebdd6e77
GET /assets/js/site.js?date=20190501 HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jlfvsrgf6l90sde816eufvqmhh; kt_ips=91.90.42.154
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:41:55 GMT
content-type: application/javascript
last-modified: Thu, 02 May 2019 11:21:00 GMT
vary: Accept-Encoding
etag: W/"5ccad29c-61200"
expires: Thu, 13 Apr 2023 22:37:08 GMT
cache-control: max-age=604800
strict-transport-security: max-age=15768000
cf-cache-status: HIT
age: 287
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hJ3PziMJSc63oLcCmvl9lQSAQ08FFwS61RKBaZzRJDBtPeETp%2BSqv75CgQEW%2F%2F%2F4ZRp%2BproKRf%2BNYhZ%2BE9RuptUrQTB8ADuxxtUTcwRgbD2WYQb1NuzQu0pgQ3CjCMaemQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b3d8a84c9fffab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 15 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint1C:AF:ED:FD:AA:9B:87:E6:A4:D5:27:D7:B6:5D:60:78:61:2E:CC:28
ValidityMon, 13 Mar 2023 08:24:32 GMT - Mon, 05 Jun 2023 08:24:31 GMT
File type Web Open Font Format (Version 2), TrueType, length 15436, version 1.0\012- data
Hash 037d830416495def72b7881024c14b7b
619389190b3cafafb5db94113990350acc8a0278
1d5b7c64458f4af91dcfee0354be47adde1f739b5aded03a7ab6068a1bb6ca97
GET /s/roboto/v18/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fs1.app
Connection: keep-alive
Referer: https://assets.fs1.app/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15436
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Apr 2023 10:35:01 GMT
expires: Wed, 03 Apr 2024 10:35:01 GMT
cache-control: public, max-age=31536000
age: 216415
last-modified: Mon, 16 Oct 2017 17:33:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fs1.app/videos/fsdss-381/
188.114.97.1200 OK 95 kB URL User Request GET HTTP/2 fs1.app/videos/fsdss-381/
IP 188.114.97.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /videos/fsdss-381/ HTTP/1.1
Host: fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:41:55 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: PHPSESSID=jlfvsrgf6l90sde816eufvqmhh; path=/; domain=.fs1.app
kt_ips=91.90.42.154; expires=Fri, 07-Apr-2023 22:41:55 GMT; Max-Age=86400; path=/; domain=.fs1.app
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
strict-transport-security: max-age=15768000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eceL7HI%2BkzympR2YkTad0IMGJSqo0CBVkfLhNj%2BgsSwqJ1adYub%2Bwtl%2FQB5oJPaUdG6tcAul%2FX2RxDGW9dRgi8Axq9OdrzP76lO4sfPPWPsSCvIW3Kev0FXH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b3d8a808cb8b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
assets.fs1.app/assets/images/emoji/1.svg
188.114.97.1200 OK 973 B URL GET HTTP/3 assets.fs1.app/assets/images/emoji/1.svg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1001), with no line terminators
Hash 181681a75cd147d2e1caceeab2ddc2f8
67169ecb24e54474b32f0c42936dc574333cf319
b77ef1576260ee7df788758287c51993dbd4effa1bb2c5cca1a3dfaed3b72753
GET /assets/images/emoji/1.svg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jlfvsrgf6l90sde816eufvqmhh; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:41:56 GMT
content-type: image/svg+xml
last-modified: Mon, 08 Oct 2018 11:28:24 GMT
vary: Accept-Encoding
etag: W/"5bbb3f58-3cd"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8SmpzTTijmMdvbxDrWN%2BxJULxVrhlSL3r2a81ZfaViBcjqyQMyPCW664u7W9Mzs6iuLWeAuEQNnxqdCzIYlFEdSfBKjIebmc708SCbkBFeIVo0bqAzS%2Fen7Rfpc5vJ8npg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b3d8a84c9f4fab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
go.admjmp.com/config?url=https%3A%2F%2Fcreative.admjmp.com%2Fwidgets%2FSpot%2Flib.js%3Fautoplay%3Dall%26userId%3D4c25683baa7e541ee7ce0014496c85471ee87c5671f43cd3d2de65eaed1cbb98%26campaignId%3Dbottomslider%26tag%3Dgirls%252Fchinese%26showModal%3Dsignup%26hideButton%3D1%26autoclose%3D0%26closeButtonDelay%3D0
104.18.51.106200 OK 6.5 kB URL GET HTTP/2 go.admjmp.com/config?url=https%3A%2F%2Fcreative.admjmp.com%2Fwidgets%2FSpot%2Flib.js%3Fautoplay%3Dall%26userId%3D4c25683baa7e541ee7ce0014496c85471ee87c5671f43cd3d2de65eaed1cbb98%26campaignId%3Dbottomslider%26tag%3Dgirls%252Fchinese%26showModal%3Dsignup%26hideButton%3D1%26autoclose%3D0%26closeButtonDelay%3D0
IP 104.18.51.106:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectgo.admjmp.com
FingerprintA9:B0:8A:8F:28:5A:98:E7:DE:B5:54:6F:78:D2:68:ED:81:ED:D8:63
ValiditySat, 30 Jul 2022 00:00:00 GMT - Sun, 30 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (8472), with no line terminators
Hash 66bbd2b9a195709e4aa23f6c1b81916b
9673f53d7eb412f49392793d9738451acafb88da
8a5a1e3ac57f550e65f6dcfdb66468e4f793558dd322e97ae263daa408db253a
GET /config?url=https%3A%2F%2Fcreative.admjmp.com%2Fwidgets%2FSpot%2Flib.js%3Fautoplay%3Dall%26userId%3D4c25683baa7e541ee7ce0014496c85471ee87c5671f43cd3d2de65eaed1cbb98%26campaignId%3Dbottomslider%26tag%3Dgirls%252Fchinese%26showModal%3Dsignup%26hideButton%3D1%26autoclose%3D0%26closeButtonDelay%3D0 HTTP/1.1
Host: go.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fs1.app/
Origin: https://fs1.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:41:56 GMT
content-type: application/json
access-control-allow-origin: *
last-modified: Thu, 06 Apr 2023 22:37:08 GMT
cf-cache-status: HIT
age: 288
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d8a86dcd2b51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.plyr.io/3.5.4/plyr.svg
104.27.194.88200 OK 5.5 kB URL GET HTTP/2 cdn.plyr.io/3.5.4/plyr.svg
IP 104.27.194.88:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerGoogle Trust Services LLC
Subject*.plyr.io
Fingerprint67:CC:61:94:94:F6:73:5C:58:8A:7D:BA:CB:15:AC:A6:22:B2:52:80
ValiditySun, 26 Feb 2023 18:14:22 GMT - Sat, 27 May 2023 18:14:21 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with very long lines (5571), with no line terminators
Hash fa8c50a396b6c079f203784329315145
ec0e8a3314dbd6fa6f7a8ac6235d2a811b87ec21
f31a23b983163ccc94cda2a353b33f34c0653037d4ca1f6a536ec400e79565b5
GET /3.5.4/plyr.svg HTTP/1.1
Host: cdn.plyr.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:41:56 GMT
content-type: image/svg+xml
x-amz-id-2: qUKWroGHdboZQophBPCLCPc7/bOhQIREG1U3ePu1g6HAfSL6YnyjWWTRHPZiEsClVxRXBgtBYQo=
x-amz-request-id: NKKM3JSZ5CW7GG61
last-modified: Thu, 25 Apr 2019 02:13:31 GMT
etag: W/"d1f4356635795f17eaa9bd377d172997"
cache-control: max-age=31536000
via: 1.1 varnish, 1.1 varnish
x-served-by: cache-iad-kjyo7100172-IAD, cache-jnb7024-JNB
x-cache: HIT, HIT
x-cache-hits: 1, 5222
x-timer: S1668936166.136618,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Range, Date, Cache-Control, Content-Type, Accept, Origin, Accept
cf-cache-status: HIT
age: 904593
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l3UefSuFaictbn8Lde5qPL2SN%2ByABx1bsxRYcVvkml3C5uIfmMCZ5hCoxIGXEXtjC2a%2BmTg6UaIdVGPsHpIFsr%2BeTABeswi89EczeTnMEZvel256MceX3QDBz7gx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b3d8a881ee80b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
a.labadena.com/api/spots/220808?p=1&s1=%subid1%&kw=
135.181.208.216200 OK 12 kB URL GET HTTP/2 a.labadena.com/api/spots/220808?p=1&s1=%subid1%&kw=
IP 135.181.208.216:443
ASN #24940 Hetzner Online GmbH
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerLet's Encrypt
Subjecta.labadena.com
FingerprintB3:CC:65:92:BF:73:55:95:BD:FD:91:93:93:C9:91:8A:88:6E:67:3F
ValidityWed, 15 Feb 2023 23:27:10 GMT - Tue, 16 May 2023 23:27:09 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, ASCII text, with very long lines (712)
Hash fdc97902be1d5f0845b38ab7b6477234
b3bb7ea57053736497f02395d4090cd2c8549af5
3e79745c229960c02db2c2c411e1cad986d474c508e39b29f34555e53a860a3a
GET /api/spots/220808?p=1&s1=%subid1%&kw= HTTP/1.1
Host: a.labadena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 06 Apr 2023 22:41:56 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: nauid=EjuTBcmgaQGb9z05o589; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
creative.admjmp.com/widgets/Spot/hls.50741c7e234eee284c18.js
104.18.59.150200 OK 61 B URL GET HTTP/3 creative.admjmp.com/widgets/Spot/hls.50741c7e234eee284c18.js
IP 104.18.59.150:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectcreative.admjmp.com
FingerprintF5:BC:E5:4B:69:86:E0:72:1B:ED:C9:0B:10:D7:BE:A0:86:F3:1D:71
ValiditySat, 30 Jul 2022 00:00:00 GMT - Sun, 30 Jul 2023 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 059cfc353c033aee704318a0a67275a2
22d5ea1600df265723b181b484f2e3f85a4bcbbc
68d5bef571c6a9e14d8a182bc2ed9cbe64d353a86dcba0387440760cbeed8f53
GET /widgets/Spot/hls.50741c7e234eee284c18.js HTTP/1.1
Host: creative.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: creative.admjmp.com
Connection: keep-alive
Referer: https://fs1.app/
Cookie: __cflb=02DiuDfsBaY2bRYJiCg3Rc4wrBy1LXpo8G4KuQUB5AhnC
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:41:58 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 04 Apr 2023 03:07:52 GMT
etag: W/"642b9488-3d"
expires: Thu, 06 Apr 2023 22:41:58 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d8a93daceb524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
b-hls-17.doppiocdn.com/hls/99604173/99604173_480p.m3u8
104.18.55.36200 OK 722 B URL GET HTTP/3 b-hls-17.doppiocdn.com/hls/99604173/99604173_480p.m3u8
IP 104.18.55.36:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type M3U playlist, ASCII text, with very long lines (740), with no line terminators
Hash 9b3e721315222d80eebf997301b83697
aea5fa177e9105bece71416e1e86e8246140c14c
9a0b798cf3d3f219e3e64d85b12f6ee570e866f80c766bb151bc64c0a6795f22
GET /hls/99604173/99604173_480p.m3u8 HTTP/1.1
Host: b-hls-17.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:42:01 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Thu, 06 Apr 2023 22:42:01 GMT
x-proxy-cache: HIT
timing-allow-origin: *
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 7b3d8aa46e8e1c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
b-hls-17.doppiocdn.com/hls/99604173/99604173_480p.m3u8
104.18.55.36200 OK 722 B URL GET HTTP/3 b-hls-17.doppiocdn.com/hls/99604173/99604173_480p.m3u8
IP 104.18.55.36:443
Requested by https://fs1.app/videos/fsdss-381/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type M3U playlist, ASCII text, with very long lines (740), with no line terminators
Hash 6dbc5e123c7f1fdcf21851ea511c7f51
e6947893474f6a22d7955420409333429c18eba7
799c9caed57a51101e4400d4308d741beeeb5c32d8c70088978e2099af2bbf7b
GET /hls/99604173/99604173_480p.m3u8 HTTP/1.1
Host: b-hls-17.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:42:05 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Thu, 06 Apr 2023 22:42:05 GMT
x-proxy-cache: HIT
timing-allow-origin: *
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 7b3d8abd6e611c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400