| shandongyuesao.com/ | 104.21.57.198 | 301 Moved Permanently | 0 B |
IP104.21.57.198:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: shandongyuesao.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 24 Nov 2022 08:27:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 24 Nov 2022 09:27:56 GMT
Location: https://shandongyuesao.com/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qFbOKhB4iE%2FGCQWl3NpB3QurkdF%2F5wxAwowAHvru72AkwbV9bR1dnIMhcei%2BVbMT6bhWhl6y85ck7It3gkvtEV73HHAzPFsdfJXG6OnOrx7f%2BE2Q8%2B3TWtZMaPtYyfSmN1Elxrc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f0c4adcd740b3d-OSL
alt-svc: h2=":443"; ma=60
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashdfb72f04bd7a4410640c0543bb4bd402 7c63b7e220b337b6a4f39864e11d6aa9e26c38ac b7f7a4d355ed3b847a5e28f16030d5cbc715d47326aea20f292cd76dcaf59794
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B7F7A4D355ED3B847A5E28F16030D5CBC715D47326AEA20F292CD76DCAF59794"
Last-Modified: Mon, 21 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12262
Expires: Thu, 24 Nov 2022 11:52:18 GMT
Date: Thu, 24 Nov 2022 08:27:56 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash770d09773b5f304acf141fd66a4862b4 5ddc46ab75de26c858a9a6f6d1beaaec9bb181f5 c7bcc6928fa1c0bb225ce8a2f6badd6cb1bd6ea002fb808ed34e8dafbd7b3b26
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6405
Cache-Control: max-age=100205
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:27:56 GMT
Etag: "637df674-1d7"
Expires: Fri, 25 Nov 2022 12:18:01 GMT
Last-Modified: Wed, 23 Nov 2022 10:31:16 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
|
|
| firefox.settings.services.mozilla.com/v1/ | 34.102.187.140 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash567df7db606cf5d0871aa5bc9311b6da 4263faac7cbab2fcaf6661911dcad5091c06be17 e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 08:17:15 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 641
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash054ff0d1a0a43f7cb1d78dbd34e27f99 3caf54f3de1d6a8c6f6454083f8b8e7dec77db54 fcdcef8306ae31f20c366489e1f88aa40b08f154d25d45f4055c4f8cdef47634
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FCDCEF8306AE31F20C366489E1F88AA40B08F154D25D45F4055C4F8CDEF47634"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14761
Expires: Thu, 24 Nov 2022 12:33:57 GMT
Date: Thu, 24 Nov 2022 08:27:56 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash9ebddc2b260d081ebbefee47c037cb28 492bad62a7ca6a74738921ef5ae6f0be5edebf39 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: hoJBpkWfPvepRCe0wim+bB+fpdlIChB09Oh69a36jmg9jX+1O1FhJQXnKkVRXKl/w/SkLLVCaiqeiAVKVwjzXw==
x-amz-request-id: J86GYXTW55KM589F
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 07:43:19 GMT
age: 2677
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 08:27:56 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashe33c9f5742d3061b20f854f8d5250edc a93eccd61f07cd99e11e57274ec3a19819dfb84c 633eb8ab49f50c53e81741d90295ea951d51f9a3b87b225e0dededa77f07fc63
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "633EB8AB49F50C53E81741D90295EA951D51F9A3B87B225E0DEDEDA77F07FC63"
Last-Modified: Wed, 23 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21523
Expires: Thu, 24 Nov 2022 14:26:39 GMT
Date: Thu, 24 Nov 2022 08:27:56 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 34.102.187.140 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 08:11:11 GMT
cache-control: public,max-age=3600
age: 1006
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hasheb52164d651f5f45416e873aec29eb04 405b29bb7e7cd4367cf82988f8603e53db65f139 ed885e05db822ff30fe951e10b6d4f21e574d053939afca792992a1549a15301
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4655
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:27:57 GMT
Last-Modified: Thu, 24 Nov 2022 07:10:22 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
|
|
| push.services.mozilla.com/ | 52.37.79.227 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP52.37.79.227:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ZGfMgrIZn2tYjGhgN4lYyA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: hEXT3AiRAZ9QIdO1AgQiw1Nl1co=
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashe33c9f5742d3061b20f854f8d5250edc a93eccd61f07cd99e11e57274ec3a19819dfb84c 633eb8ab49f50c53e81741d90295ea951d51f9a3b87b225e0dededa77f07fc63
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "633EB8AB49F50C53E81741D90295EA951D51F9A3B87B225E0DEDEDA77F07FC63"
Last-Modified: Wed, 23 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21522
Expires: Thu, 24 Nov 2022 14:26:39 GMT
Date: Thu, 24 Nov 2022 08:27:57 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 1.7 kB |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd6cae5358a4e603d513539d53d162011 3b30ce0941c9aa0a6d1047d530e34d97c9b1e957 70906eef334112c2ad114601215aa38f3f5a91fa76c1e4475da4bc979e732be9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18020
Expires: Thu, 24 Nov 2022 13:28:18 GMT
Date: Thu, 24 Nov 2022 08:27:58 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashb75c00c21f5854618bc06d14b8d83c40 ae14f585ae9682e6c2fad146c12c00ee4d83e8f3 a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18020
Expires: Thu, 24 Nov 2022 13:28:18 GMT
Date: Thu, 24 Nov 2022 08:27:58 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashb75c00c21f5854618bc06d14b8d83c40 ae14f585ae9682e6c2fad146c12c00ee4d83e8f3 a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18020
Expires: Thu, 24 Nov 2022 13:28:18 GMT
Date: Thu, 24 Nov 2022 08:27:58 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg | 34.120.237.76 | 200 OK | 8.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash92c78302bcce1568eb6a5563100b932c 43d1dec7fc06879988c9c3cadd800cc8145df988 0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7YSXUV-LZpsI7vciFhuqt1EVr6YRkhxcOgMg8z8bxLcOE01_baf6Gg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:06 GMT
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
content-type: image/jpeg
age: 38452
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18708671-8ed1-458b-a0a3-fba50832ecb7.jpeg | 34.120.237.76 | 200 OK | 9.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18708671-8ed1-458b-a0a3-fba50832ecb7.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashaf618f978f520f4f15acd660f5e91ad4 fcbe3938574e2a3b0d303b7464ae6f414d7dc356 6f8c21090c99c98e8ae89f60b1cf1cd882194dc83db96808a0b5bd553ece8a56
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18708671-8ed1-458b-a0a3-fba50832ecb7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9119
x-amzn-requestid: 0321de47-3dae-4ad5-86e7-fd766326c6c8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvClGQWoAMFWqA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9210-5bc883d93cedf8ec36517fe3;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: gvEmzs6OvdD0s03wFTgS0RYBkikZ9VHk0eOArDVQwZ1vNSMBcJ97mQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:44:50 GMT
etag: "fcbe3938574e2a3b0d303b7464ae6f414d7dc356"
content-type: image/jpeg
age: 38588
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6dee69c-a683-4448-a26a-ed78ea0cb4a0.jpeg | 34.120.237.76 | 200 OK | 5.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6dee69c-a683-4448-a26a-ed78ea0cb4a0.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash0b88331b5cbc633ee1ae21a77a983e92 acc9dd298e87e1079229d2c958ec088023603974 299e0c024f5209289e27aea403337e05ec7da447e706eee79aae6e982986faee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6dee69c-a683-4448-a26a-ed78ea0cb4a0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5553
x-amzn-requestid: 203724f3-e044-4533-ae46-af79c11e5460
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b_c6lFucoAMFs7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637c7510-4dad6a426642a025759eb363;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 07:06:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JRqctghettaL53ADxhP7pd9gib0TsC6RZI8ERQldNYuusuha5qohpg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:08:12 GMT
age: 4786
etag: "acc9dd298e87e1079229d2c958ec088023603974"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash481c033b9ffd030ff0de6e35cf788b47 85d3baad9217af2b5d75c019d2ef95dbb919a788 02443c7869914c2b29892deb0c645395bcf4e8379da3cf20974614ff9c92893b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11249
x-amzn-requestid: 65a3db77-b2e6-40b9-a776-021c2e9b56d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bubSsHbZoAMFZNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6375a5aa-1286b97968cc2e4c7fe8ab29;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 03:08:26 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: _j5ykGwKHIQEFLyuJK_OMvs-CsCvkUQhZc_YD8gAtbyOECQ894zvjw==
via: 1.1 38eecd3ca21bf068d69a2f9cfe668d14.cloudfront.net (CloudFront), 1.1 abbf2df97f9d83839470842dc2e68cb6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 05:46:02 GMT
age: 9716
etag: "85d3baad9217af2b5d75c019d2ef95dbb919a788"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp | 34.120.237.76 | 200 OK | 5.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash0856fdb55f19f03a1bec38b3d6e0ac77 89accd230fba95fe0049678070817b36ead015fa 17c6e6f9bb8f4261fff2dc2a43ed994986418761624b8afead768e89927594f2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5070
x-amzn-requestid: d86d95ad-9b78-4047-82e7-04e83a97e330
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwViF1GIAMF_PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9423-10809ba1634776171cf79cb8;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:03 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8rbsN9OVJmneT9ov-Q7V4RB8DP5UWhhn-7cnukHiBpl06zmMM0zJTg==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:20 GMT
age: 37838
etag: "89accd230fba95fe0049678070817b36ead015fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F65d6aa89-922d-4c2b-9601-956358f8ac22.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F65d6aa89-922d-4c2b-9601-956358f8ac22.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash1234c13159d1531a698ece38a3bd7ff6 6bd60504d4450a090e6f82d15f2f28b371e4dfcc 488a827d4d2074371860dd556b3611c56a19502d3348e0a7d35c4f7556f63b3a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F65d6aa89-922d-4c2b-9601-956358f8ac22.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11969
x-amzn-requestid: e7ab6bb2-9bc5-4862-901b-32f18322db46
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwBJFkUoAMFRFA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e93a0-56d902c0481eef0932dad57c;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:41:52 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zluh8EkvyvbxVT_lmb1uh3eLph9eMUrsuLlwPYAOmP9-sWAhGyxeMw==
via: 1.1 ef6538ee7be7b17c84d06edb0f4c0a1a.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:44:50 GMT
age: 38588
etag: "6bd60504d4450a090e6f82d15f2f28b371e4dfcc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| zerossl.ocsp.sectigo.com/ | 172.64.155.188 | 200 OK | 728 B |
URL HTTP/1.1zerossl.ocsp.sectigo.com/ IP172.64.155.188:0
Hashe070253db16392100eab6129a203a236 ae41553daf1814c123060038ab94d8c3803caafb 395d8e0bc8e7ff287af6698f3412ac6f003a764e8a0ae0dd113547a8b7196967
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 08:28:00 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 18:53:14 GMT
Expires: Mon, 28 Nov 2022 18:53:13 GMT
Etag: "ae41553daf1814c123060038ab94d8c3803caafb"
Cache-Control: max-age=382512,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76f0c4c71a07b509-OSL
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash4af780570d49b327d38dc189095448e9 1dd4193a2afeb237c5e475b603b1cbd137f7f97e f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:28:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.googleapis.com/css?family=Open%20Sans:bold,regular&display=swap | 142.250.74.10 | 200 OK | 1.1 kB |
URL HTTP/2fonts.googleapis.com/css?family=Open%20Sans:bold,regular&display=swap IP142.250.74.10:0
Hash4054ba9e77ecbf6ad3fb3256dbc3186b d7cf56d1ce54258b522de768d0e79a2ebe9be084 737d0b15f033894e5b84954b25dcd95e60036e59eb986ccf51c184052c6243b1
GET /css?family=Open%20Sans:bold,regular&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 24 Nov 2022 08:28:01 GMT
date: Thu, 24 Nov 2022 08:28:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.sectigo.com/ | 172.64.155.188 | 200 OK | 472 B |
IP172.64.155.188:0
Hash67228735d43235c9da632868a479fe53 add87b50f8e1e38a952ba53816375eb9a5013153 33fc3a6d142ef18cca3d320ac24387a96834acd81fc2ecd5e79342c0af980a44
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 08:28:01 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 24 Nov 2022 02:15:25 GMT
Expires: Thu, 01 Dec 2022 02:15:24 GMT
Etag: "add87b50f8e1e38a952ba53816375eb9a5013153"
Cache-Control: max-age=581842,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76f0c4cbc9f0b4fd-OSL
|
|
| w.ladicdn.com/s2750x450/61416d65d1330500bc1e1272/i-footer-bg_02-20220522085752.png | 138.199.36.7 | 200 OK | 46 kB |
URL HTTP/2w.ladicdn.com/s2750x450/61416d65d1330500bc1e1272/i-footer-bg_02-20220522085752.png IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typePNG image data, 1920 x 81, 8-bit colormap, non-interlaced\012- data Hash81c876d021e2ba5f38cdb690f240a38b 8f9b4d5fd377c7cd9eaeda081a15b6ad5ae814d3 a859c251119118312475dbea57b2db38e34126aee276af520dadd97b638726cc
GET /s2750x450/61416d65d1330500bc1e1272/i-footer-bg_02-20220522085752.png HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: image/png
content-length: 46470
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "628a0122-b586"
last-modified: Sun, 22 May 2022 09:23:46 GMT
cdn-storageserver: NY-267
cdn-requestpullsuccess: True
cdn-fileserver: 354
perma-cache: HIT
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-cachedat: 08/20/2022 03:31:54
cdn-edgestorageid: 865
cdn-status: 200
cdn-requestid: 247eaae6143c4d4b0042b81262ee4607
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| w.ladicdn.com/s2350x450/61416d65d1330500bc1e1272/i-topbg2_01-20220522085752.png | 138.199.36.7 | 200 OK | 43 kB |
URL HTTP/2w.ladicdn.com/s2350x450/61416d65d1330500bc1e1272/i-topbg2_01-20220522085752.png IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typePNG image data, 1920 x 124, 8-bit colormap, non-interlaced\012- data Hash98dffa49fda78e28eae09e1c34350bda 63c8e712cfbe27eec16645cc21fd14d142217fcc 7665dde099f89d4b2dd919576c66280c912f71297fbf37b8719b86c6b84f1776
GET /s2350x450/61416d65d1330500bc1e1272/i-topbg2_01-20220522085752.png HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: image/png
content-length: 42606
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "628a0124-a66e"
last-modified: Sun, 22 May 2022 09:23:48 GMT
cdn-storageserver: NY-266
cdn-requestpullsuccess: True
cdn-fileserver: 353
perma-cache: HIT
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-cachedat: 10/04/2022 16:39:37
cdn-edgestorageid: 864
cdn-status: 200
cdn-requestid: b14847bd7b64e2687a1fce61a25762c3
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashaee1eaa2ef2d0edbb0bc5703979e6439 8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db 095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:28:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashaee1eaa2ef2d0edbb0bc5703979e6439 8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db 095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:28:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| w.ladicdn.com/s750x400/61416d65d1330500bc1e1272/nut_vui-cuoc-to-20220525012005.png | 138.199.36.7 | 200 OK | 5.7 kB |
URL HTTP/2w.ladicdn.com/s750x400/61416d65d1330500bc1e1272/nut_vui-cuoc-to-20220525012005.png IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typePNG image data, 355 x 71, 8-bit colormap, non-interlaced\012- data Hash3e1238d0294a049de1bdfd27e8e28b0b 2db3ad62411833a174962d3d3981fed18f1459a8 6849f341e8f3fc93ff82dee9099c7f73facb317120dbdc3c9d1e206ea3c72e9d
GET /s750x400/61416d65d1330500bc1e1272/nut_vui-cuoc-to-20220525012005.png HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: image/png
content-length: 5728
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "628d84e1-1660"
last-modified: Wed, 25 May 2022 01:22:41 GMT
cdn-storageserver: NY-346
cdn-requestpullsuccess: True
cdn-fileserver: 353
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/12/2022 06:09:44
cdn-edgestorageid: 1049
cdn-status: 200
cdn-requestid: 9fd6a7fe9d1baa8b79c551468bbf2440
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| w.ladicdn.com/s450x350/61416d65d1330500bc1e1272/ios_tai-app-20220525070238.png | 138.199.36.7 | 200 OK | 694 B |
URL HTTP/2w.ladicdn.com/s450x350/61416d65d1330500bc1e1272/ios_tai-app-20220525070238.png IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typePNG image data, 93 x 25, 8-bit colormap, non-interlaced\012- data Hash6c4d93747920110fb1e88bf953fd56f5 738f85a88a172ed6cd3adfc648e0cbfcdc7afc88 d07134fe4e4d46225e199b0b84feb6c08986dededf2b2d0d865bdefbcef99479
GET /s450x350/61416d65d1330500bc1e1272/ios_tai-app-20220525070238.png HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: image/png
content-length: 694
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "628dd734-2b6"
last-modified: Wed, 25 May 2022 07:13:56 GMT
cdn-storageserver: NY-268
cdn-requestpullsuccess: True
cdn-fileserver: 354
perma-cache: HIT
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-cachedat: 08/20/2022 03:31:53
cdn-edgestorageid: 755
cdn-status: 200
cdn-requestid: 4990b48e02feadf96367a5124a471ede
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashaee1eaa2ef2d0edbb0bc5703979e6439 8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db 095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:28:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| w.ladicdn.com/s500x500/61416d65d1330500bc1e1272/qr_adroind_nhacaisodo_net-20220526052018.png | 138.199.36.7 | 200 OK | 8.7 kB |
URL HTTP/2w.ladicdn.com/s500x500/61416d65d1330500bc1e1272/qr_adroind_nhacaisodo_net-20220526052018.png IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typePNG image data, 180 x 179, 8-bit colormap, non-interlaced\012- data Hash162f2251eebcbdb877db7fc4ad752a6b 26290d778dded23b5665412adfe20cad1249d2c7 618b9191b587042d5bf8f8fa7ca1fdce298946ffa0cd8099ec5c74f4a9540adc
GET /s500x500/61416d65d1330500bc1e1272/qr_adroind_nhacaisodo_net-20220526052018.png HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: image/png
content-length: 8692
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "628f1001-21f4"
last-modified: Thu, 26 May 2022 05:28:33 GMT
cdn-storageserver: NY-354
cdn-requestpullsuccess: True
cdn-fileserver: 341
perma-cache: HIT
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-cachedat: 08/20/2022 03:31:53
cdn-edgestorageid: 864
cdn-status: 200
cdn-requestid: 1eb1113faa4c5d31c1cccb7756ea6260
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| w.ladicdn.com/s500x500/61416d65d1330500bc1e1272/qr_ios_nhacaisodo_net-20220526052024.png | 138.199.36.7 | 200 OK | 8.6 kB |
URL HTTP/2w.ladicdn.com/s500x500/61416d65d1330500bc1e1272/qr_ios_nhacaisodo_net-20220526052024.png IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typePNG image data, 180 x 179, 8-bit colormap, non-interlaced\012- data Hash3307ad82e7211d0da7b15385afb8daa4 438969ca7b72b0762df3937a84604bef76ffb563 3eb1cfcb5740da1455d4c1102bd9c599fbcf846f8e6fca4132c6c8e54b57a9d0
GET /s500x500/61416d65d1330500bc1e1272/qr_ios_nhacaisodo_net-20220526052024.png HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: image/png
content-length: 8555
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "628f1001-216b"
last-modified: Thu, 26 May 2022 05:28:33 GMT
cdn-storageserver: NY-430
cdn-requestpullsuccess: True
cdn-fileserver: 341
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/18/2022 08:06:00
cdn-edgestorageid: 863
cdn-status: 200
cdn-requestid: 00545011f1eda47eefc8ecae1c16790e
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| w.ladicdn.com/s500x350/61416d65d1330500bc1e1272/android_tai-app-20220525070229.png | 138.199.36.7 | 200 OK | 840 B |
URL HTTP/2w.ladicdn.com/s500x350/61416d65d1330500bc1e1272/android_tai-app-20220525070229.png IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typePNG image data, 129 x 25, 8-bit colormap, non-interlaced\012- data Hashb3311c6d86c02499a7e0c2e9569cfd33 65b03464a7b0157e23b6d34d0444e3007e50dabd 8906e1658e5b842f8648363325b8e6e6752ddb8a0009e9c534e504eae0f60d9d
GET /s500x350/61416d65d1330500bc1e1272/android_tai-app-20220525070229.png HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: image/png
content-length: 840
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "628dd736-348"
last-modified: Wed, 25 May 2022 07:13:58 GMT
cdn-storageserver: NY-427
cdn-requestpullsuccess: True
cdn-fileserver: 353
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/18/2022 08:06:00
cdn-edgestorageid: 1047
cdn-status: 200
cdn-requestid: 225ba9c5e5ac669234e5cf93fd472c47
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| w.ladicdn.com/s800x400/61416d65d1330500bc1e1272/buttons3-20220525031506.png | 138.199.36.7 | 200 OK | 6.6 kB |
URL HTTP/2w.ladicdn.com/s800x400/61416d65d1330500bc1e1272/buttons3-20220525031506.png IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typePNG image data, 466 x 83, 8-bit colormap, non-interlaced\012- data Hashe47bfb72e7c00792d9de5afd6b033b31 0f5a855ec2816b4d84549a4c9e0812df5c88fd4d 974e2114267b4936e03a8a9aaecbc26e1a336d44c42f1eaa0bc61ab2da78897e
GET /s800x400/61416d65d1330500bc1e1272/buttons3-20220525031506.png HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: image/png
content-length: 6551
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "628debb4-1997"
last-modified: Wed, 25 May 2022 08:41:24 GMT
cdn-storageserver: NY-353
cdn-requestpullsuccess: True
cdn-fileserver: 353
perma-cache: HIT
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-cachedat: 08/20/2022 03:31:53
cdn-edgestorageid: 755
cdn-status: 200
cdn-requestid: 3d3d23bc11d737865b249b3c84e51a93
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| w.ladicdn.com/61416d65d1330500bc1e1272/button_km-20220526124706.gif | 138.199.36.7 | 200 OK | 9.2 kB |
URL HTTP/2w.ladicdn.com/61416d65d1330500bc1e1272/button_km-20220526124706.gif IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typeGIF image data, version 89a, 219 x 80\012- data Hash62ba21a813da9b8dd1f4ddc57c61e419 1d9912ddf99b105b860190e8dee972f8d7abd458 823e7d68d1f8be8a2b5b6e7fecd1bfaad900c635942f5015299ed34b14979761
GET /61416d65d1330500bc1e1272/button_km-20220526124706.gif HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: image/gif
content-length: 9160
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "628f76d0-23c8"
last-modified: Thu, 26 May 2022 12:47:12 GMT
cdn-storageserver: NY-427
cdn-requestpullsuccess: True
cdn-fileserver: 353
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/15/2022 11:58:52
cdn-edgestorageid: 1053
cdn-status: 200
cdn-requestid: 24afc0a9d5868d1f589d00b141fcb90f
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| w.ladicdn.com/61416d65d1330500bc1e1272/header_bar_dang-ky-20220525031433.png | 138.199.36.7 | 200 OK | 5.8 kB |
URL HTTP/2w.ladicdn.com/61416d65d1330500bc1e1272/header_bar_dang-ky-20220525031433.png IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typePNG image data, 219 x 80, 8-bit colormap, non-interlaced\012- data Hashc3130ec32adc60f7bcb5f8f02158b625 f7180a087996db9ea96ec45d29c089c637d43a39 4f51cd308b5798c5d3ff7fb06d8f4f8fdb5ff145337922cfc3dbb9f26c598e72
GET /61416d65d1330500bc1e1272/header_bar_dang-ky-20220525031433.png HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: image/png
content-length: 5783
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "628db204-1697"
last-modified: Wed, 25 May 2022 04:35:16 GMT
cdn-storageserver: NY-267
cdn-requestpullsuccess: True
cdn-fileserver: 341
perma-cache: HIT
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-cachedat: 10/06/2022 00:42:38
cdn-edgestorageid: 860
cdn-status: 200
cdn-requestid: 6927e387794f9639ad19979df57c7c84
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| w.ladicdn.com/s400x400/61416d65d1330500bc1e1272/fb-20220526032409.png | 138.199.36.7 | 200 OK | 3.1 kB |
URL HTTP/2w.ladicdn.com/s400x400/61416d65d1330500bc1e1272/fb-20220526032409.png IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typePNG image data, 82 x 82, 8-bit colormap, non-interlaced\012- data Hash4ceeafb6b78dca1b9ed4778b8711cb00 ff2bed742920a3b87dc1e0ec9eb350117f7ca349 69a76819308e905e16804ac84f44f2291184426a745328af2a67329522c8e406
GET /s400x400/61416d65d1330500bc1e1272/fb-20220526032409.png HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: image/png
content-length: 3114
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "628ef4f5-c2a"
last-modified: Thu, 26 May 2022 03:33:09 GMT
cdn-storageserver: NY-266
cdn-requestpullsuccess: True
cdn-fileserver: 341
perma-cache: HIT
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-cachedat: 08/20/2022 03:31:53
cdn-edgestorageid: 864
cdn-status: 200
cdn-requestid: 9df839aad5e522234170bac423485134
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| w.ladicdn.com/s400x400/61416d65d1330500bc1e1272/tl-20220526032409.png | 138.199.36.7 | 200 OK | 3.8 kB |
URL HTTP/2w.ladicdn.com/s400x400/61416d65d1330500bc1e1272/tl-20220526032409.png IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typePNG image data, 82 x 82, 8-bit colormap, non-interlaced\012- data Hash451920cc12b2c366df1e1b7e55ec1d39 a38089ad57231f106ffbeb8bd155c6b59f47a6fe a952ba87255df9b6178008f62d3b96bebe350eaeaf2faf8daf298ffa99d72e94
GET /s400x400/61416d65d1330500bc1e1272/tl-20220526032409.png HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: image/png
content-length: 3762
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "628ef4f5-eb2"
last-modified: Thu, 26 May 2022 03:33:09 GMT
cdn-storageserver: NY-427
cdn-requestpullsuccess: True
cdn-fileserver: 341
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/11/2022 02:45:18
cdn-edgestorageid: 1047
cdn-status: 200
cdn-requestid: 1d5716fe19af179d45d24625d120d8d1
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| w.ladicdn.com/s400x400/61416d65d1330500bc1e1272/web-20220526032409.png | 138.199.36.7 | 200 OK | 3.3 kB |
URL HTTP/2w.ladicdn.com/s400x400/61416d65d1330500bc1e1272/web-20220526032409.png IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typePNG image data, 83 x 83, 8-bit colormap, non-interlaced\012- data Hash1fc8bc4f609b8531706b996043968d91 12c848d78a2caf3d0ca2fffb32605bcb40ff1ed0 0a22796c499879543057d06cc5435040f5f5d1771f91a863156d6e20c2115cd7
GET /s400x400/61416d65d1330500bc1e1272/web-20220526032409.png HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: image/png
content-length: 3285
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "628f1644-cd5"
last-modified: Thu, 26 May 2022 05:55:16 GMT
cdn-storageserver: NY-267
cdn-requestpullsuccess: True
cdn-fileserver: 354
perma-cache: HIT
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-cachedat: 08/20/2022 03:31:53
cdn-edgestorageid: 756
cdn-status: 200
cdn-requestid: b44ab64f1f202abb61221fed516c450b
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| w.ladicdn.com/s400x400/61416d65d1330500bc1e1272/ytb-20220526032409.png | 138.199.36.7 | 200 OK | 3.7 kB |
URL HTTP/2w.ladicdn.com/s400x400/61416d65d1330500bc1e1272/ytb-20220526032409.png IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typePNG image data, 82 x 82, 8-bit colormap, non-interlaced\012- data Hashbb60e6f09dae29a47a35011a9c1f4731 cd297a5eabeda099dc2a9f8f73fe0191ab6819ff 733ffc68c2639674c5af10ee19b9db4e7c7c05417151483a4bbd9cc09b969ea7
GET /s400x400/61416d65d1330500bc1e1272/ytb-20220526032409.png HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: image/png
content-length: 3729
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "628ef934-e91"
last-modified: Thu, 26 May 2022 03:51:16 GMT
cdn-storageserver: NY-266
cdn-requestpullsuccess: True
cdn-fileserver: 341
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/12/2022 06:09:44
cdn-edgestorageid: 1049
cdn-status: 200
cdn-requestid: 347ba7b091af34e9ebe336482a1022eb
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| w.ladicdn.com/s450x400/61416d65d1330500bc1e1272/header_bar_trang-chu-20220524134034.png | 138.199.36.7 | 200 OK | 5.2 kB |
URL HTTP/2w.ladicdn.com/s450x400/61416d65d1330500bc1e1272/header_bar_trang-chu-20220524134034.png IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typePNG image data, 219 x 80, 8-bit colormap, non-interlaced\012- data Hashba648feb5171f1c327cd1717da2beaaa d10f46fda68968a36375d4b68852ca92f7014e9f 68911e0f0677178e20d0a3c8e0637bd1643e31e4857a9493ad9c3d9c912a45b1
GET /s450x400/61416d65d1330500bc1e1272/header_bar_trang-chu-20220524134034.png HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: image/png
content-length: 5246
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "628ce0e0-147e"
last-modified: Tue, 24 May 2022 13:42:56 GMT
cdn-storageserver: NY-346
cdn-requestpullsuccess: True
cdn-fileserver: 341
perma-cache: HIT
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-cachedat: 08/20/2022 03:31:53
cdn-edgestorageid: 723
cdn-status: 200
cdn-requestid: 94f9f04b697c6e549478785ea248b04a
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| w.ladicdn.com/s450x400/61416d65d1330500bc1e1272/header_bar_dang-nhap-20220524133952.png | 138.199.36.7 | 200 OK | 5.3 kB |
URL HTTP/2w.ladicdn.com/s450x400/61416d65d1330500bc1e1272/header_bar_dang-nhap-20220524133952.png IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typePNG image data, 219 x 80, 8-bit colormap, non-interlaced\012- data Hash99b2f08de0d2872150139e5ab8df3f89 8333d52f28f8d198fa85c369ecc3faa7eb64efa7 859fa5fe3c02407733868fa37936580db9d156a7eac86c5d2ba930c36aae602a
GET /s450x400/61416d65d1330500bc1e1272/header_bar_dang-nhap-20220524133952.png HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: image/png
content-length: 5322
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "628ce0dc-14ca"
last-modified: Tue, 24 May 2022 13:42:52 GMT
cdn-storageserver: NY-426
cdn-requestpullsuccess: True
cdn-fileserver: 354
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/11/2022 02:45:18
cdn-edgestorageid: 1047
cdn-status: 200
cdn-requestid: 27aa675a3af453cccc57bd8bc23ec8d6
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| w.ladicdn.com/s450x400/61416d65d1330500bc1e1272/header_bar_dang-ky-20220524133942.png | 138.199.36.7 | 200 OK | 5.2 kB |
URL HTTP/2w.ladicdn.com/s450x400/61416d65d1330500bc1e1272/header_bar_dang-ky-20220524133942.png IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typePNG image data, 219 x 80, 8-bit colormap, non-interlaced\012- data Hashd706e902c0353d33b8ac9c2c1fe5bac1 48d53f3ae42af7d0429bfc401266e3140ff73b9d ea6909da24f92478e26a73b856894f7fd30131644444927dcb838674f22c6582
GET /s450x400/61416d65d1330500bc1e1272/header_bar_dang-ky-20220524133942.png HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: image/png
content-length: 5163
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "628ce0de-142b"
last-modified: Tue, 24 May 2022 13:42:54 GMT
cdn-storageserver: NY-268
cdn-requestpullsuccess: True
cdn-fileserver: 353
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/11/2022 03:01:01
cdn-edgestorageid: 1048
cdn-status: 200
cdn-requestid: c877f5072f71d23edcdb326fef996c64
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 216.58.207.195 | 200 OK | 45 kB |
URL HTTP/2fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data Hash565ce506190ad3af920b40baf1794cec ad3cba5d06100e09449a864d3b5e58403b478b3d 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.taixiu.cc
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 05:42:51 GMT
expires: Fri, 24 Nov 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 9910
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| w.ladicdn.com/s950x600/61416d65d1330500bc1e1272/khung-20220524133815.png | 138.199.36.7 | 200 OK | 27 kB |
URL HTTP/2w.ladicdn.com/s950x600/61416d65d1330500bc1e1272/khung-20220524133815.png IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typePNG image data, 600 x 260, 8-bit colormap, non-interlaced\012- data Hash32097a3bdb2013f9e28c059f67df99fd 138c3da440eb49aae5f9381defadbe14e77efedb 68856b1c06dd9cbb247f178445bb52158389c00b123f91182fab5c7695cd5eec
GET /s950x600/61416d65d1330500bc1e1272/khung-20220524133815.png HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: image/png
content-length: 27016
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "628ce5a8-6988"
last-modified: Tue, 24 May 2022 14:03:20 GMT
cdn-storageserver: NY-353
cdn-requestpullsuccess: True
cdn-fileserver: 341
perma-cache: HIT
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-cachedat: 08/25/2022 05:50:40
cdn-edgestorageid: 860
cdn-status: 200
cdn-requestid: f861784fd4015b102fa530d0d55c5088
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| w.ladicdn.com/s450x400/61416d65d1330500bc1e1272/header_bar_cskh-24-7-20220524133839.png | 138.199.36.7 | 200 OK | 5.2 kB |
URL HTTP/2w.ladicdn.com/s450x400/61416d65d1330500bc1e1272/header_bar_cskh-24-7-20220524133839.png IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typePNG image data, 219 x 80, 8-bit colormap, non-interlaced\012- data Hash3a0d63a04c394cca05f996c2ec2e1c8f 7d5f74c8171e760aa16fc96158b0d161dc47b54d 06e45b7aa155cd222970b7de458a0a74c88f1fea068ae02c88adea23dfca897b
GET /s450x400/61416d65d1330500bc1e1272/header_bar_cskh-24-7-20220524133839.png HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: image/png
content-length: 5163
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "628ce0db-142b"
last-modified: Tue, 24 May 2022 13:42:51 GMT
cdn-storageserver: NY-346
cdn-requestpullsuccess: True
cdn-fileserver: 353
perma-cache: HIT
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-cachedat: 08/20/2022 03:31:53
cdn-edgestorageid: 860
cdn-status: 200
cdn-requestid: 29ced39e9ef1c851fbf2d7ac22e1a43d
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| w.ladicdn.com/s400x400/61416d65d1330500bc1e1272/zl-20220526032409.png | 138.199.36.7 | 200 OK | 3.9 kB |
URL HTTP/2w.ladicdn.com/s400x400/61416d65d1330500bc1e1272/zl-20220526032409.png IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typePNG image data, 82 x 82, 8-bit colormap, non-interlaced\012- data Hash64c0cf683634a67cb36865c841c5b397 e81e874529db1e057888b7cb4bc3bc95fa2e42c7 4906b47508abe50380ba842c6fc06cc9ac1f3931f0e3623688121847e361b97c
GET /s400x400/61416d65d1330500bc1e1272/zl-20220526032409.png HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: image/png
content-length: 3886
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "628f1642-f2e"
last-modified: Thu, 26 May 2022 05:55:14 GMT
cdn-storageserver: NY-266
cdn-requestpullsuccess: True
cdn-fileserver: 354
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/18/2022 08:06:00
cdn-edgestorageid: 860
cdn-status: 200
cdn-requestid: e31f5aee108cd71eec42965b725985e7
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| w.ladicdn.com/s1050x550/61416d65d1330500bc1e1272/text_woldcup-4-20220525013140.png | 138.199.36.7 | 200 OK | 66 kB |
URL HTTP/2w.ladicdn.com/s1050x550/61416d65d1330500bc1e1272/text_woldcup-4-20220525013140.png IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typePNG image data, 800 x 280, 8-bit colormap, non-interlaced\012- data Hash39127040c901d0d05c45ccfc328b6d80 72e8e3148f902e62375ae2c133cc5258571f8d6c 40a498a3f614789c0107010a582aa94069e9f6bd489929626f6a6ee6521259af
GET /s1050x550/61416d65d1330500bc1e1272/text_woldcup-4-20220525013140.png HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: image/png
content-length: 66023
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "628d8761-101e7"
last-modified: Wed, 25 May 2022 01:33:21 GMT
cdn-storageserver: NY-426
cdn-requestpullsuccess: True
cdn-fileserver: 341
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/18/2022 08:06:00
cdn-edgestorageid: 864
cdn-status: 200
cdn-requestid: 86b94dbcfd2cca3132ae380f295e22e6
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| w.ladicdn.com/s600x400/61416d65d1330500bc1e1272/chu-20211203021229.png | 138.199.36.7 | 200 OK | 51 kB |
URL HTTP/2w.ladicdn.com/s600x400/61416d65d1330500bc1e1272/chu-20211203021229.png IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typePNG image data, 497 x 128, 8-bit/color RGBA, non-interlaced\012- data Hashfabf0514b44c2005395ecad87f203ef8 6bd9b60410f8e35e12d5f14154f29766f5587580 83af20694b0ba3483e18372bdc3e3975634a0646a2a4ef68b87ab0d46579ffeb
GET /s600x400/61416d65d1330500bc1e1272/chu-20211203021229.png HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: image/png
content-length: 50624
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "6291ade8-c5c0"
last-modified: Sat, 28 May 2022 05:06:48 GMT
cdn-storageserver: NY-426
cdn-requestpullsuccess: True
cdn-fileserver: 354
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/21/2022 04:54:54
cdn-edgestorageid: 756
cdn-status: 200
cdn-requestid: a950aa157ae50d3c5bca3c70df130970
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| w.ladicdn.com/s550x450/61416d65d1330500bc1e1272/light-20220525074907.png | 138.199.36.7 | 200 OK | 94 kB |
URL HTTP/2w.ladicdn.com/s550x450/61416d65d1330500bc1e1272/light-20220525074907.png IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typePNG image data, 800 x 450, 8-bit/color RGBA, non-interlaced\012- data Hashea02e011b6b041b6d71e07c022a29d1f 0d2871dc17ec73723ed4721b0136865700725cbf c48a534e1ea06d9ed1ec3219a16a30acfaf8d057215d80505ac0869a62ac9895
GET /s550x450/61416d65d1330500bc1e1272/light-20220525074907.png HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: image/png
content-length: 93656
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "628de16f-16dd8"
last-modified: Wed, 25 May 2022 07:57:35 GMT
cdn-storageserver: NY-268
cdn-requestpullsuccess: True
cdn-fileserver: 341
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/12/2022 06:09:44
cdn-edgestorageid: 1049
cdn-status: 200
cdn-requestid: 0bca2eb3c3a48ead143ae8e0421fd559
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| w.ladicdn.com/s900x800/61416d65d1330500bc1e1272/b73517df090300fd-20220517100602.png | 138.199.36.7 | 200 OK | 125 kB |
URL HTTP/2w.ladicdn.com/s900x800/61416d65d1330500bc1e1272/b73517df090300fd-20220517100602.png IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typeRIFF (little-endian) data, Web/P image\012- data Size125 kB (125074 bytes) Hasheaba5570e4a4ce51e7bacdbb845c8c5b 8d5e2dc7d33e7a74b2b9f14b9b43f233336807f6 e694792d1717d096965b11f75a548787c263dfdd1b90825b1019dd5317017ed5
GET /s900x800/61416d65d1330500bc1e1272/b73517df090300fd-20220517100602.png HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: image/png
content-length: 125074
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "628376c8-1e892"
last-modified: Tue, 17 May 2022 10:19:52 GMT
cdn-storageserver: NY-430
cdn-requestpullsuccess: True
cdn-fileserver: 354
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/11/2022 03:01:01
cdn-edgestorageid: 1048
cdn-status: 200
cdn-requestid: d44275cc6f2c3d3e2370ebe17c075b8b
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| w.ladicdn.com/s950x800/61416d65d1330500bc1e1272/f4cd4605646e8f45-20220517100602.png | 138.199.36.7 | 200 OK | 170 kB |
URL HTTP/2w.ladicdn.com/s950x800/61416d65d1330500bc1e1272/f4cd4605646e8f45-20220517100602.png IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typeRIFF (little-endian) data, Web/P image\012- data Size170 kB (170074 bytes) Hash9e8377942515de197f6aff88df17e19c 15d00c5abd294ccca365e03487903d90fa7aceaf a7619024b92a853d0eebc9e6e03ccfca47b966ed223cf5f21ae67e3b509df433
GET /s950x800/61416d65d1330500bc1e1272/f4cd4605646e8f45-20220517100602.png HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: image/png
content-length: 170074
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "628b4e7b-2985a"
last-modified: Mon, 23 May 2022 09:06:03 GMT
cdn-storageserver: NY-346
cdn-requestpullsuccess: True
cdn-fileserver: 353
perma-cache: HIT
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-cachedat: 10/04/2022 16:39:37
cdn-edgestorageid: 863
cdn-status: 200
cdn-requestid: fe7102a04baad7fbff2817f42b0b602e
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| w.ladicdn.com/s900x750/61416d65d1330500bc1e1272/7812f3937d38b1e1-20220517100602.png | 138.199.36.7 | 200 OK | 256 kB |
URL HTTP/2w.ladicdn.com/s900x750/61416d65d1330500bc1e1272/7812f3937d38b1e1-20220517100602.png IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typeRIFF (little-endian) data, Web/P image\012- data Size256 kB (256498 bytes) Hash9170d1c2555543cb6f0f24d622259751 15caf7ac3ad35692bf443c46465a583dbab884d4 5574e15c03a9bbbb668fe241e39b2a0b01cc621320dc35ebee10efbd541bdb0b
GET /s900x750/61416d65d1330500bc1e1272/7812f3937d38b1e1-20220517100602.png HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: image/png
content-length: 256498
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "628376c9-3e9f2"
last-modified: Tue, 17 May 2022 10:19:53 GMT
cdn-storageserver: NY-430
cdn-requestpullsuccess: True
cdn-fileserver: 341
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/12/2022 06:09:44
cdn-edgestorageid: 1049
cdn-status: 200
cdn-requestid: ffd9e5dc72326521b4697920177344c6
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| w.ladicdn.com/s950x800/61416d65d1330500bc1e1272/b9ffec264b939c9a-20220517100602.png | 138.199.36.7 | 200 OK | 364 kB |
URL HTTP/2w.ladicdn.com/s950x800/61416d65d1330500bc1e1272/b9ffec264b939c9a-20220517100602.png IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typeRIFF (little-endian) data, Web/P image\012- data Size364 kB (364370 bytes) Hash97e4ad5679abff8f348ac5c9aef34737 a61c883a0d7520da6dc79dcfb5db5b522dde65f1 9753222c471fac0be13d48b7d33d1c898c398ce781f13571ea4340dee857b70b
GET /s950x800/61416d65d1330500bc1e1272/b9ffec264b939c9a-20220517100602.png HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: image/png
content-length: 364370
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "628b4e7c-58f52"
last-modified: Mon, 23 May 2022 09:06:04 GMT
cdn-storageserver: NY-354
cdn-requestpullsuccess: True
cdn-fileserver: 341
perma-cache: HIT
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-cachedat: 08/20/2022 03:31:54
cdn-edgestorageid: 755
cdn-status: 200
cdn-requestid: 8184f0a006e62c37e1b51957e703a64d
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| w.ladicdn.com/s1150x400/61416d65d1330500bc1e1272/footer-20220816033838.png | 138.199.36.7 | 200 OK | 444 kB |
URL HTTP/2w.ladicdn.com/s1150x400/61416d65d1330500bc1e1272/footer-20220816033838.png IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typePNG image data, 1920 x 210, 8-bit/color RGBA, interlaced\012- data Size444 kB (443643 bytes) Hash021020b7589e05f0768da5c12ee11068 9807bce98b0a4065107cc6f00ac3a436b0a489cc a55c01fc8902e2716b93bb0d805003244d68e6c7b46ba7ad62905ba9d3bf6aec
GET /s1150x400/61416d65d1330500bc1e1272/footer-20220816033838.png HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: image/png
content-length: 443643
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "62fb1801-6c4fb"
last-modified: Tue, 16 Aug 2022 04:07:29 GMT
cdn-storageserver: NY-430
cdn-requestpullsuccess: True
cdn-fileserver: 267
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/22/2022 17:07:13
cdn-edgestorageid: 874
cdn-status: 200
cdn-requestid: 8768ee1b0fabeb31c258a628e6e37d29
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| w.ladicdn.com/s950x950/61416d65d1330500bc1e1272/i-right-pic-20220522085931.png | 138.199.36.7 | 200 OK | 947 kB |
URL HTTP/2w.ladicdn.com/s950x950/61416d65d1330500bc1e1272/i-right-pic-20220522085931.png IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typePNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced\012- data Size947 kB (946558 bytes) Hash4ed2855a8c9a8404e58d034f2384d87f 8a42a93792d23d38a31264eeb62775cf69153e80 6af600b6b456ff5afe7181c08a4e5d46a58fc92ec23aae63f6bb69e44c8290e3
GET /s950x950/61416d65d1330500bc1e1272/i-right-pic-20220522085931.png HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: image/png
content-length: 946558
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "628a0124-e717e"
last-modified: Sun, 22 May 2022 09:23:48 GMT
cdn-storageserver: NY-354
cdn-requestpullsuccess: True
cdn-fileserver: 353
perma-cache: HIT
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-cachedat: 08/20/2022 03:31:53
cdn-edgestorageid: 755
cdn-status: 200
cdn-requestid: 2361973718e16cffe1bc09441cb2385c
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| w.ladicdn.com/v2/source/ladipage.vi.min.js?v=1661321691911 | 138.199.36.7 | 200 OK | 116 kB |
URL HTTP/2w.ladicdn.com/v2/source/ladipage.vi.min.js?v=1661321691911 IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typeASCII text, with very long lines (65536), with no line terminators Size116 kB (115555 bytes) Hash596dc6e9230f7686038a0baa51110e0c 536bcdc40e85dd02cece506d082b9ff0c51d0adf b3e2b118038512ecfa23190073e49156068eeb7db9e4868ac0d4601c2ddd6a6a
GET /v2/source/ladipage.vi.min.js?v=1661321691911 HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: text/javascript
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=31919000
etag: W/"632659ea-539ab"
last-modified: Sat, 17 Sep 2022 23:36:10 GMT
cdn-storageserver: NY-426
cdn-requestpullsuccess: True
cdn-fileserver: 267
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/11/2022 02:44:49
cdn-edgestorageid: 1048
cdn-status: 200
cdn-requestid: 0daedc86aa0fdaa4cd60bd863425735f
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| w.ladicdn.com/s2350x1250/61416d65d1330500bc1e1272/body-bg3-20220522085751.png | 138.199.36.7 | 200 OK | 1.5 MB |
URL HTTP/2w.ladicdn.com/s2350x1250/61416d65d1330500bc1e1272/body-bg3-20220522085751.png IP138.199.36.7:0 ASN#60068 Datacamp Limited
File typePNG image data, 1920 x 1080, 8-bit colormap, non-interlaced\012- data Size1.5 MB (1519346 bytes) Hashf560c1c77e36101bf72efbf7950c336a 61b1bf00c85146cd00b1a784fbd3b58bd1112922 67b9ed602d43d7918ecf9ffd90a3af331108579a75a216a38882c9e242e52161
GET /s2350x1250/61416d65d1330500bc1e1272/body-bg3-20220522085751.png HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:01 GMT
content-type: image/png
content-length: 1519346
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "628c51fe-172ef2"
last-modified: Tue, 24 May 2022 03:33:18 GMT
cdn-storageserver: NY-268
cdn-requestpullsuccess: True
cdn-fileserver: 341
perma-cache: HIT
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-cachedat: 08/20/2022 03:31:53
cdn-edgestorageid: 864
cdn-status: 200
cdn-requestid: 2970a7fa5536ac2c6c489e78bfa79706
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSCmu1aB.woff2 | 216.58.207.195 | 200 OK | 14 kB |
URL HTTP/2fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSCmu1aB.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 14040, version 1.0\012- data Hasheadd44d829d43ddf48870c2073f1a7ca fc04b04f37e0988001c81be96bca33c4d866450f 84197a92671b7b7c8715220cea35354699c6221113c0ff531ff087ab8a8aa9e6
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSCmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.taixiu.cc
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 21:11:26 GMT
expires: Fri, 17 Nov 2023 21:11:26 GMT
cache-control: public, max-age=31536000
age: 558995
last-modified: Mon, 15 Aug 2022 18:14:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashaee1eaa2ef2d0edbb0bc5703979e6439 8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db 095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:28:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.sca1b.amazontrust.com/ | 143.204.42.88 | 200 OK | 471 B |
URL HTTP/1.1ocsp.sca1b.amazontrust.com/ IP143.204.42.88:0
Hashf87beee83f1d24e395fac904623645db a0acf1af232398ba1a6f23f5282bf8b7a87ddeff f683020b6299f0df38ab54b4c786edc44ecba63adb86db0433d4365cbf54f4df
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Thu, 24 Nov 2022 08:28:02 GMT
Etag: "637d9b02-1d7"
Server: ECS (dcb/7EA4)
X-Cache: Miss from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6f9a5w6DW1GL-JGF-KKbW6V411DYUzeS_am-IOtPxGlKPM7VVudx3Q==
|
|
| ocsp.sca1b.amazontrust.com/ | 143.204.42.88 | 200 OK | 471 B |
URL HTTP/1.1ocsp.sca1b.amazontrust.com/ IP143.204.42.88:0
Hashf87beee83f1d24e395fac904623645db a0acf1af232398ba1a6f23f5282bf8b7a87ddeff f683020b6299f0df38ab54b4c786edc44ecba63adb86db0433d4365cbf54f4df
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=156784
Date: Thu, 24 Nov 2022 08:28:02 GMT
Etag: "637eec82-1d7"
Expires: Sat, 26 Nov 2022 04:01:06 GMT
Last-Modified: Thu, 24 Nov 2022 04:01:06 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: RJJvFoycvCMs2YSqGY-vk-Whilh5BqPNGu86TylZJgbd1a_OJUfuRA==
|
|
| ocsp.sectigo.com/ | 172.64.155.188 | 200 OK | 471 B |
IP172.64.155.188:0
Hashe1d4a01be306c17b7e75d04d57d01d78 1d651ef32ad839e5d123f60fcf978a8038b6de5a 03c906cf8754ffbebb5b608062273b23add37dff5588fb5b955a6c4923754029
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 08:28:02 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:04:31 GMT
Expires: Tue, 29 Nov 2022 10:04:30 GMT
Etag: "1d651ef32ad839e5d123f60fcf978a8038b6de5a"
Cache-Control: max-age=437187,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76f0c4d2cbcbb4fd-OSL
|
|
| ocsp.sca1b.amazontrust.com/ | 143.204.42.88 | 200 OK | 471 B |
URL HTTP/1.1ocsp.sca1b.amazontrust.com/ IP143.204.42.88:0
Hashede099e12eb8a8f87adff49654c583f5 f4f9eea13e34afa88cf77ec80417e1afcdbdb175 bc7a42d445053658e562fa9028687d9b9a6c9aa4fbb260973633b971ee949464
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=148571
Date: Thu, 24 Nov 2022 08:28:02 GMT
Etag: "637ec246-1d7"
Expires: Sat, 26 Nov 2022 01:44:13 GMT
Last-Modified: Thu, 24 Nov 2022 01:00:54 GMT
Server: ECS (dcb/7EC6)
X-Cache: Miss from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: g0o9VTJScogRPFVJlO9RINHBJoeJdqSPUH1PnhwewiAnR6PQTR1_-Q==
Age: 2599
|
|
| core.vchat.vn/code/tracking.js | 42.112.21.2 | 200 OK | 41 kB |
URL HTTP/2core.vchat.vn/code/tracking.js IP42.112.21.2:0 ASN#18403 FPT Telecom Company
File typeUnicode text, UTF-8 text, with very long lines (740) Hash6fd89afdd10d6e2e6b8f7064d471ed1b b3692a65b744128f784fe288974c1b48eea04c7a 837f0647359c3d60e5d675a2d360e979b43ed72b343f72c1e8c13bacb9c001b4
GET /code/tracking.js HTTP/1.1
Host: core.vchat.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.6
date: Thu, 24 Nov 2022 08:28:02 GMT
content-type: application/javascript
content-length: 40838
last-modified: Fri, 12 Aug 2022 05:37:34 GMT
etag: "62f5e71e-9f86"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.ladipage.net/61416d65d1330500bc1e1272/favicon-1-20220525080014.ico | 18.138.163.51 | 301 Moved Permanently | 134 B |
URL HTTP/2static.ladipage.net/61416d65d1330500bc1e1272/favicon-1-20220525080014.ico IP18.138.163.51:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4aa7a432bb447f094408f1bd6229c605 1965c4952cc8c082a6307ed67061a57aab6632fa 34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
GET /61416d65d1330500bc1e1272/favicon-1-20220525080014.ico HTTP/1.1
Host: static.ladipage.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: awselb/2.0
date: Thu, 24 Nov 2022 08:28:03 GMT
content-type: text/html
content-length: 134
location: https://w.ladicdn.com:443/61416d65d1330500bc1e1272/favicon-1-20220525080014.ico
X-Firefox-Spdy: h2
|
|
| core.vchat.vn/assets/css/main.css?version=251291 | 42.112.21.2 | 200 OK | 25 kB |
URL HTTP/2core.vchat.vn/assets/css/main.css?version=251291 IP42.112.21.2:0 ASN#18403 FPT Telecom Company
File typeASCII text, with very long lines (379) Hashb4d8dbe6f755405ca8c47f7f216c5bac 49d3e4416fe682387ff3e49c693e11bfbc09ab8e 1214b6a3714ff13a3c41c55761b81442cd57ec4413efbb985e0ad8887e01785b
GET /assets/css/main.css?version=251291 HTTP/1.1
Host: core.vchat.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://core.vchat.vn/service/chat?code=15049&jwt=569f9758dd2380c4c04e9f90c9ea3c43&key=&ref=https://shandongyuesao.com/&plf=Linux%20x86_64&url=https://www.taixiu.cc/&tit=%F0%9F%8E%96%EF%B8%8F%20NH%C3%80%20C%C3%81I%20UY%20T%C3%8DN%20NH%E1%BA%A4T%202022%20%E2%9C%94%EF%B8%8F%20NHACAISODO.NET&gid=0&gdf=%22%22&fs=%22%22
Cookie: _gta_uni=20221124.135058879.2765063; vnp_guest_15049_135058879=2022-11-24+15%3A28%3A03
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Thu, 24 Nov 2022 08:28:03 GMT
content-type: text/css
content-length: 24949
last-modified: Wed, 07 Sep 2022 03:38:18 GMT
etag: "6318122a-6175"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.taixiu.cc/ | 18.138.206.213 | 200 OK | 29 kB |
IP18.138.206.213:0
Hash07a7d95154ec4cf16027eb802bbdb9cb b7fd3df2ca9dd9e56a5136efd751eb18141f3823 0b5f9a70c4203d87ae4c18afd4e1e6cf3e38727bdb7b01b2f2f6bf3ac3683cb3
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET / HTTP/1.1
Host: www.taixiu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://shandongyuesao.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Thu, 24 Nov 2022 08:28:00 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0, max-age=0
set-cookie: LADI_DNS_CHECK="2022-11-24 08:28:00.939422366 +0000 UTC m=+1905746.309739470"; Expires=Sun, 21 Nov 2032 08:28:00 GMT
LADI_CLIENT_ID=a352e87b-ecf2-4015-5090-aeccebfb6f49; Expires=Sun, 21 Nov 2032 08:28:00 GMT
LADI_PAGE_VIEW=0; Expires=Sun, 21 Nov 2032 08:28:00 GMT
LADI_FORM_SUBMIT=0; Expires=Sun, 21 Nov 2032 08:28:00 GMT
LADI_PAGE_VIEW=1; Expires=Sun, 21 Nov 2032 08:28:00 GMT
LADI_CAMP_ID=; Max-Age=0
LADI_CAMP_NAME=; Max-Age=0
LADI_CAMP_TYPE=; Max-Age=0
LADI_CAMP_ORIGIN_URL=; Max-Age=0
LADI_CAMP_TARGET_URL=; Max-Age=0
LADI_CAMP_PAGE_VIEW=; Max-Age=0
LADI_CAMP_FORM_SUBMIT=; Max-Age=0
LADI_CAMP_BEHAVIOR_PAGE_VIEW=; Max-Age=0
LADI_CAMP_BEHAVIOR_FORMSUBMIT=; Max-Age=0
LADI_CAMP_CONFIG=; Max-Age=0
LADI_CAMP_END_DATE=; Max-Age=0
LADI_FUNNEL_NEXT_URL=; Max-Age=0
LADI_FUNNEL_PREV_URL=; Max-Age=0
statuscode: 200
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashdd0dd96ca622aa07354fabdd0da767bf a29eaa02a81dabed2c12be20a89d65a5a0417524 6a670e9031ec8c94bdc91c47a2d6a4ca2bd95fe032fec28888a8e6d7dc163cb4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:28:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| core.vchat.vn/service/chat?code=15049&jwt=569f9758dd2380c4c04e9f90c9ea3c43&key=&ref=https://shandongyuesao.com/&plf=Linux%20x86_64&url=https://www.taixiu.cc/&tit=%F0%9F%8E%96%EF%B8%8F%20NH%C3%80%20C%C3%81I%20UY%20T%C3%8DN%20NH%E1%BA%A4T%202022%20%E2%9C%94%EF%B8%8F%20NHACAISODO.NET&gid=0&gdf=%22%22&fs=%22%22 | 42.112.21.2 | 200 OK | 230 kB |
URL HTTP/2core.vchat.vn/service/chat?code=15049&jwt=569f9758dd2380c4c04e9f90c9ea3c43&key=&ref=https://shandongyuesao.com/&plf=Linux%20x86_64&url=https://www.taixiu.cc/&tit=%F0%9F%8E%96%EF%B8%8F%20NH%C3%80%20C%C3%81I%20UY%20T%C3%8DN%20NH%E1%BA%A4T%202022%20%E2%9C%94%EF%B8%8F%20NHACAISODO.NET&gid=0&gdf=%22%22&fs=%22%22 IP42.112.21.2:0 ASN#18403 FPT Telecom Company
File typeHTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (17921) Size230 kB (230365 bytes) Hashbadb448f59ad20da48393c82acd5ad31 43d66288b866118fdd7c1a2d70f008d654efa1d5 152117f3eea457210eebe6da823d906d959d87c3c23968f91719586c99b6fa26
GET /service/chat?code=15049&jwt=569f9758dd2380c4c04e9f90c9ea3c43&key=&ref=https://shandongyuesao.com/&plf=Linux%20x86_64&url=https://www.taixiu.cc/&tit=%F0%9F%8E%96%EF%B8%8F%20NH%C3%80%20C%C3%81I%20UY%20T%C3%8DN%20NH%E1%BA%A4T%202022%20%E2%9C%94%EF%B8%8F%20NHACAISODO.NET&gid=0&gdf=%22%22&fs=%22%22 HTTP/1.1
Host: core.vchat.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.2.34
set-cookie: _gta_uni=20221124.135058879.2765063; expires=Wed, 20-Aug-2025 08:28:03 GMT; Max-Age=86400000; path=/; samesite=None; domain=.vchat.vn; secure; HttpOnly
vnp_guest_15049_135058879=2022-11-24+15%3A28%3A03; expires=Sat, 04-Mar-2023 08:28:03 GMT; Max-Age=8640000; path=/; samesite=None; domain=.v3.vn; secure; HttpOnly
vnp_guest_15049_135058879=2022-11-24+15%3A28%3A03; expires=Sat, 04-Mar-2023 08:28:03 GMT; Max-Age=8640000; path=/; samesite=None; domain=.vchat.vn; secure; HttpOnly
cache-control: no-cache, private
date: Thu, 24 Nov 2022 08:28:03 GMT
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE, PATCH
access-control-allow-credentials: true
access-control-max-age: 86400
access-control-expose-headers: *
access-control-allow-headers: Access-Control-Allow-Headers,Origin,Accept,Content-Type, Authorization, X-Custom-Header, Upgrade-Insecure-Requests, token, X-Requested-With, Application
X-Firefox-Spdy: h2
|
|
| core.vchat.vn/assets/js/jquery.js | 42.112.21.2 | 200 OK | 93 kB |
URL HTTP/2core.vchat.vn/assets/js/jquery.js IP42.112.21.2:0 ASN#18403 FPT Telecom Company
File typeUnicode text, UTF-8 text, with very long lines (65481) Hash1d14cd3798bc4d6aaf65dd625870723f 0809f9f5caa2642b9dea8bf59133180bfd7c1d6f 04bebecfb9f7ce92cf947ce283fccf067cf6870f65af3456dd22b6c102447c83
GET /assets/js/jquery.js HTTP/1.1
Host: core.vchat.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://core.vchat.vn/service/chat?code=15049&jwt=569f9758dd2380c4c04e9f90c9ea3c43&key=&ref=https://shandongyuesao.com/&plf=Linux%20x86_64&url=https://www.taixiu.cc/&tit=%F0%9F%8E%96%EF%B8%8F%20NH%C3%80%20C%C3%81I%20UY%20T%C3%8DN%20NH%E1%BA%A4T%202022%20%E2%9C%94%EF%B8%8F%20NHACAISODO.NET&gid=0&gdf=%22%22&fs=%22%22
Cookie: _gta_uni=20221124.135058879.2765063; vnp_guest_15049_135058879=2022-11-24+15%3A28%3A03
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Thu, 24 Nov 2022 08:28:03 GMT
content-type: application/javascript
content-length: 93434
last-modified: Thu, 31 Mar 2022 19:36:40 GMT
etag: "624602c8-16cfa"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashdd0dd96ca622aa07354fabdd0da767bf a29eaa02a81dabed2c12be20a89d65a5a0417524 6a670e9031ec8c94bdc91c47a2d6a4ca2bd95fe032fec28888a8e6d7dc163cb4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 08:28:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| a.ladipage.com/event | 54.169.143.198 | 200 OK | 14 kB |
IP54.169.143.198:0
File typeJSON data\012- , ASCII text, with very long lines (14099) Hash6cda4333ee3be78c1597e17b84917175 e11d7df4f33267ef7e6be276bb3748bea4981e09 38196dd75ed3f2fd83726cda0335d98ff4f5d3e6cc14912a9cdd6bf02e199b38
POST /event HTTP/1.1
Host: a.ladipage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
LADI_CLIENT_ID: a352e87b-ecf2-4015-5090-aeccebfb6f49
LADI_PAGE_VIEW: 1
LADI_FORM_SUBMIT: 0
LADI_CAMP_ID:
LADI_CAMP_NAME:
LADI_CAMP_TYPE:
LADI_CAMP_TARGET_URL:
LADI_CAMP_ORIGIN_URL:
LADI_CAMP_PAGE_VIEW: 0
LADI_CAMP_FORM_SUBMIT: 0
Content-Length: 212
Origin: https://www.taixiu.cc
Connection: keep-alive
Referer: https://www.taixiu.cc/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:02 GMT
content-type: text/plain; charset=utf-8
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
access-control-allow-origin: *
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, Accept-Encoding, ladi_camp_form_submit, ladi_camp_form_submit_daily, ladi_camp_id, ladi_camp_name, ladi_camp_origin_url, ladi_camp_page_view, ladi_camp_page_view_daily, ladi_camp_target_url, ladi_camp_type, ladi_client_id, ladi_form_submit, ladi_form_submit_daily, ladi_page_view, ladi_page_view_daily
access-control-max-age: 2592000
X-Firefox-Spdy: h2
|
|
| core.vchat.vn/assets/js/main.js?version=251291 | 42.112.21.2 | 200 OK | 38 kB |
URL HTTP/2core.vchat.vn/assets/js/main.js?version=251291 IP42.112.21.2:0 ASN#18403 FPT Telecom Company
Hash5aeee45243d28f0e20c1852ecdfa0ff2 8b9ea7cfefc556c8c01fcb24c58ded4c71d1231c 2e57364db5f9a93c3c4cab67a67264cf5006619ae38c62bf018f23c0f851651b
GET /assets/js/main.js?version=251291 HTTP/1.1
Host: core.vchat.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://core.vchat.vn/service/chat?code=15049&jwt=569f9758dd2380c4c04e9f90c9ea3c43&key=&ref=https://shandongyuesao.com/&plf=Linux%20x86_64&url=https://www.taixiu.cc/&tit=%F0%9F%8E%96%EF%B8%8F%20NH%C3%80%20C%C3%81I%20UY%20T%C3%8DN%20NH%E1%BA%A4T%202022%20%E2%9C%94%EF%B8%8F%20NHACAISODO.NET&gid=0&gdf=%22%22&fs=%22%22
Cookie: _gta_uni=20221124.135058879.2765063; vnp_guest_15049_135058879=2022-11-24+15%3A28%3A03
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Thu, 24 Nov 2022 08:28:03 GMT
content-type: application/javascript
content-length: 37646
last-modified: Thu, 27 Oct 2022 03:39:00 GMT
etag: "6359fd54-930e"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| core.vchat.vn/assets/image/typing_1.gif | 42.112.21.2 | 200 OK | 2.3 kB |
URL HTTP/2core.vchat.vn/assets/image/typing_1.gif IP42.112.21.2:0 ASN#18403 FPT Telecom Company
File typeGIF image data, version 89a, 48 x 44\012- data Hashb6d97a9c479650b33d7016b53a11131b cc99f6bd91ee88a5ca33e6745deb184cda5580f9 88abc22f59285ea365132ce0cd4e92c50b8cf6b2833de806bc4b5f4f32c2e3e2
GET /assets/image/typing_1.gif HTTP/1.1
Host: core.vchat.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://core.vchat.vn/service/chat?code=15049&jwt=569f9758dd2380c4c04e9f90c9ea3c43&key=&ref=https://shandongyuesao.com/&plf=Linux%20x86_64&url=https://www.taixiu.cc/&tit=%F0%9F%8E%96%EF%B8%8F%20NH%C3%80%20C%C3%81I%20UY%20T%C3%8DN%20NH%E1%BA%A4T%202022%20%E2%9C%94%EF%B8%8F%20NHACAISODO.NET&gid=0&gdf=%22%22&fs=%22%22
Cookie: _gta_uni=20221124.135058879.2765063; vnp_guest_15049_135058879=2022-11-24+15%3A28%3A03
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Thu, 24 Nov 2022 08:28:03 GMT
content-type: image/gif
content-length: 2272
last-modified: Thu, 31 Mar 2022 19:36:40 GMT
etag: "624602c8-8e0"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| core.vchat.vn/assets/image/typing.gif | 42.112.21.2 | 200 OK | 40 kB |
URL HTTP/2core.vchat.vn/assets/image/typing.gif IP42.112.21.2:0 ASN#18403 FPT Telecom Company
File typeGIF image data, version 89a, 47 x 22\012- data Hashafd569048af918c2eda6fc054df82c1e b31953a3155ab5e3bbf7188d61fe4d57fc31fe85 7c68d052273f0b30a08b3316d64698810b594a7765de0b190078f55a0950c509
GET /assets/image/typing.gif HTTP/1.1
Host: core.vchat.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://core.vchat.vn/service/chat?code=15049&jwt=569f9758dd2380c4c04e9f90c9ea3c43&key=&ref=https://shandongyuesao.com/&plf=Linux%20x86_64&url=https://www.taixiu.cc/&tit=%F0%9F%8E%96%EF%B8%8F%20NH%C3%80%20C%C3%81I%20UY%20T%C3%8DN%20NH%E1%BA%A4T%202022%20%E2%9C%94%EF%B8%8F%20NHACAISODO.NET&gid=0&gdf=%22%22&fs=%22%22
Cookie: _gta_uni=20221124.135058879.2765063; vnp_guest_15049_135058879=2022-11-24+15%3A28%3A03
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Thu, 24 Nov 2022 08:28:03 GMT
content-type: image/gif
content-length: 40271
last-modified: Thu, 31 Mar 2022 19:36:40 GMT
etag: "624602c8-9d4f"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| core.vchat.vn/assets/image/loading.gif | 42.112.21.2 | 200 OK | 4.8 kB |
URL HTTP/2core.vchat.vn/assets/image/loading.gif IP42.112.21.2:0 ASN#18403 FPT Telecom Company
File typeGIF image data, version 89a, 28 x 28\012- data Hash71f0518dad0c74927f3bf3d4a5fb6fb2 dfb7339dcfea2f4d8963066a6773b92501a7c1ba a07d1cebd390b2820257e108c20a012950126fbe4178a3a10efe3a1b217044ce
GET /assets/image/loading.gif HTTP/1.1
Host: core.vchat.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://core.vchat.vn/service/chat?code=15049&jwt=569f9758dd2380c4c04e9f90c9ea3c43&key=&ref=https://shandongyuesao.com/&plf=Linux%20x86_64&url=https://www.taixiu.cc/&tit=%F0%9F%8E%96%EF%B8%8F%20NH%C3%80%20C%C3%81I%20UY%20T%C3%8DN%20NH%E1%BA%A4T%202022%20%E2%9C%94%EF%B8%8F%20NHACAISODO.NET&gid=0&gdf=%22%22&fs=%22%22
Cookie: _gta_uni=20221124.135058879.2765063; vnp_guest_15049_135058879=2022-11-24+15%3A28%3A03
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Thu, 24 Nov 2022 08:28:03 GMT
content-type: image/gif
content-length: 4782
last-modified: Thu, 31 Mar 2022 19:36:40 GMT
etag: "624602c8-12ae"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| core.vchat.vn/assets/js/vue.2.3.js | 42.112.21.2 | 200 OK | 255 kB |
URL HTTP/2core.vchat.vn/assets/js/vue.2.3.js IP42.112.21.2:0 ASN#18403 FPT Telecom Company
Size255 kB (254793 bytes) Hashf3304bbb2d5973eed6b0422a293c58b6 016775168e6a48b61a1009fb9bbf067b9add3dd4 b1ac0fd6c2e471a038610250580b636a16a6806e9bac699a209591858c037e7a
GET /assets/js/vue.2.3.js HTTP/1.1
Host: core.vchat.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://core.vchat.vn/service/chat?code=15049&jwt=569f9758dd2380c4c04e9f90c9ea3c43&key=&ref=https://shandongyuesao.com/&plf=Linux%20x86_64&url=https://www.taixiu.cc/&tit=%F0%9F%8E%96%EF%B8%8F%20NH%C3%80%20C%C3%81I%20UY%20T%C3%8DN%20NH%E1%BA%A4T%202022%20%E2%9C%94%EF%B8%8F%20NHACAISODO.NET&gid=0&gdf=%22%22&fs=%22%22
Cookie: _gta_uni=20221124.135058879.2765063; vnp_guest_15049_135058879=2022-11-24+15%3A28%3A03
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Thu, 24 Nov 2022 08:28:03 GMT
content-type: application/javascript
content-length: 254793
last-modified: Thu, 31 Mar 2022 19:36:40 GMT
etag: "624602c8-3e349"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| core.vchat.vn/code/socket.io.2.3.0.js | 42.112.21.2 | 200 OK | 69 kB |
URL HTTP/2core.vchat.vn/code/socket.io.2.3.0.js IP42.112.21.2:0 ASN#18403 FPT Telecom Company
File typeASCII text, with very long lines (32094) Hash9d982cf80aa2a6e09d791809e48cd82f ed5bdb9f91879730e833f6b95f1960afd5a72c37 cc9c49fda0fdb365078fd84798f91fa86a3a93e942137c5f85b058e1f697e102
GET /code/socket.io.2.3.0.js HTTP/1.1
Host: core.vchat.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://core.vchat.vn/service/chat?code=15049&jwt=569f9758dd2380c4c04e9f90c9ea3c43&key=&ref=https://shandongyuesao.com/&plf=Linux%20x86_64&url=https://www.taixiu.cc/&tit=%F0%9F%8E%96%EF%B8%8F%20NH%C3%80%20C%C3%81I%20UY%20T%C3%8DN%20NH%E1%BA%A4T%202022%20%E2%9C%94%EF%B8%8F%20NHACAISODO.NET&gid=0&gdf=%22%22&fs=%22%22
Cookie: _gta_uni=20221124.135058879.2765063; vnp_guest_15049_135058879=2022-11-24+15%3A28%3A03
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Thu, 24 Nov 2022 08:28:03 GMT
content-type: application/javascript
content-length: 68692
last-modified: Thu, 31 Mar 2022 19:36:40 GMT
etag: "624602c8-10c54"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Owp4.woff2 | 216.58.207.195 | 200 OK | 22 kB |
URL HTTP/2fonts.gstatic.com/s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Owp4.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 21464, version 1.0\012- data Hash923a543cc619ea568f91b723d9fb1ef0 6f4ade25559645c741d7327c6e16521e43d7e1f9 bf7344209edb1be5a2886c425cf6334a102d76cbea1471fd50171e2ee92877cd
GET /s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Owp4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://core.vchat.vn
Connection: keep-alive
Referer: https://core.vchat.vn/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21464
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 08:27:39 GMT
expires: Thu, 23 Nov 2023 08:27:39 GMT
cache-control: public, max-age=31536000
age: 86425
last-modified: Mon, 22 Apr 2019 23:42:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| core.vchat.vn/upload/brand/2022/05/14/vc-627f29c552770-1652500933.png | 42.112.21.2 | 200 OK | 22 kB |
URL HTTP/2core.vchat.vn/upload/brand/2022/05/14/vc-627f29c552770-1652500933.png IP42.112.21.2:0 ASN#18403 FPT Telecom Company
File typePNG image data, 219 x 250, 8-bit colormap, non-interlaced\012- data Hashce66290d842ae55e0d6b687b2fa733c5 6d131de6cf5a6c85a12bcf6050172b74239bef82 624343ce61246c6ad2228e9f63ec546b1f40441a39c9cdbdca46c86f85cfea1d
GET /upload/brand/2022/05/14/vc-627f29c552770-1652500933.png HTTP/1.1
Host: core.vchat.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://core.vchat.vn/service/chat?code=15049&jwt=569f9758dd2380c4c04e9f90c9ea3c43&key=&ref=https://shandongyuesao.com/&plf=Linux%20x86_64&url=https://www.taixiu.cc/&tit=%F0%9F%8E%96%EF%B8%8F%20NH%C3%80%20C%C3%81I%20UY%20T%C3%8DN%20NH%E1%BA%A4T%202022%20%E2%9C%94%EF%B8%8F%20NHACAISODO.NET&gid=0&gdf=%22%22&fs=%22%22
Cookie: _gta_uni=20221124.135058879.2765063; vnp_guest_15049_135058879=2022-11-24+15%3A28%3A03
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Thu, 24 Nov 2022 08:28:04 GMT
content-type: image/png
content-length: 21576
last-modified: Sat, 14 May 2022 04:02:13 GMT
etag: "627f29c5-5448"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| core.vchat.vn/upload/eyechat/2022/05/14/vc-627f2b3fa7f50-1652501311.png | 42.112.21.2 | 200 OK | 22 kB |
URL HTTP/2core.vchat.vn/upload/eyechat/2022/05/14/vc-627f2b3fa7f50-1652501311.png IP42.112.21.2:0 ASN#18403 FPT Telecom Company
File typePNG image data, 219 x 250, 8-bit colormap, non-interlaced\012- data Hashce66290d842ae55e0d6b687b2fa733c5 6d131de6cf5a6c85a12bcf6050172b74239bef82 624343ce61246c6ad2228e9f63ec546b1f40441a39c9cdbdca46c86f85cfea1d
GET /upload/eyechat/2022/05/14/vc-627f2b3fa7f50-1652501311.png HTTP/1.1
Host: core.vchat.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.taixiu.cc/
Cookie: _gta_uni=20221124.135058879.2765063; vnp_guest_15049_135058879=2022-11-24+15%3A28%3A03
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Thu, 24 Nov 2022 08:28:04 GMT
content-type: image/png
content-length: 21576
last-modified: Sat, 14 May 2022 04:08:31 GMT
etag: "627f2b3f-5448"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| wss1.vchat.vn/socket.io/?data=%7B%22channel%22%3A%5B135058879%5D%2C%22checksum%22%3A%221e17a493b60546370a84dfb29e143a8f%22%2C%22check_id%22%3A%227efbe3780eea6bd657138a1d49f26732%22%2C%22data%22%3A%22%22%7D&EIO=3&transport=polling&t=OIem4T7 | 42.112.21.2 | 200 OK | 103 B |
URL HTTP/2wss1.vchat.vn/socket.io/?data=%7B%22channel%22%3A%5B135058879%5D%2C%22checksum%22%3A%221e17a493b60546370a84dfb29e143a8f%22%2C%22check_id%22%3A%227efbe3780eea6bd657138a1d49f26732%22%2C%22data%22%3A%22%22%7D&EIO=3&transport=polling&t=OIem4T7 IP42.112.21.2:0 ASN#18403 FPT Telecom Company
File typeASCII text, with no line terminators Hash536f642989380b2217e39f6cde60170c 29a1ba97d2d4073e8011f89768498e4327752616 6abb83f1ec1c42ebc490d1aa269d5523e4864ca7f1c3425b9ef48877b8755576
GET /socket.io/?data=%7B%22channel%22%3A%5B135058879%5D%2C%22checksum%22%3A%221e17a493b60546370a84dfb29e143a8f%22%2C%22check_id%22%3A%227efbe3780eea6bd657138a1d49f26732%22%2C%22data%22%3A%22%22%7D&EIO=3&transport=polling&t=OIem4T7 HTTP/1.1
Host: wss1.vchat.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://core.vchat.vn
Connection: keep-alive
Referer: https://core.vchat.vn/
Cookie: _gta_uni=20221124.135058879.2765063; vnp_guest_15049_135058879=2022-11-24+15%3A28%3A03
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Thu, 24 Nov 2022 08:28:04 GMT
content-type: text/plain; charset=UTF-8
content-length: 103
access-control-allow-credentials: true
access-control-allow-origin: https://core.vchat.vn
set-cookie: io=mZZlK7LJg1NkOyyeFdfS; Path=/; HttpOnly; SameSite=Strict
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/analytics.js | 142.250.74.174 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP142.250.74.174:0
File typeASCII text, with very long lines (1325) Hash47e6f374ca946fddd5b59871b325736c baa9282efc8785e84d247c3bff518eaa45f101c4 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://core.vchat.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 24 Nov 2022 06:41:08 GMT
expires: Thu, 24 Nov 2022 08:41:08 GMT
cache-control: public, max-age=7200
age: 6417
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| wss1.vchat.vn/socket.io/?data=%7B%22channel%22%3A%5B135058879%5D%2C%22checksum%22%3A%221e17a493b60546370a84dfb29e143a8f%22%2C%22check_id%22%3A%227efbe3780eea6bd657138a1d49f26732%22%2C%22data%22%3A%22%22%7D&EIO=3&transport=polling&t=OIem4ay&sid=mZZlK7LJg1NkOyyeFdfS | 42.112.21.2 | 200 OK | 2 B |
URL HTTP/2wss1.vchat.vn/socket.io/?data=%7B%22channel%22%3A%5B135058879%5D%2C%22checksum%22%3A%221e17a493b60546370a84dfb29e143a8f%22%2C%22check_id%22%3A%227efbe3780eea6bd657138a1d49f26732%22%2C%22data%22%3A%22%22%7D&EIO=3&transport=polling&t=OIem4ay&sid=mZZlK7LJg1NkOyyeFdfS IP42.112.21.2:0 ASN#18403 FPT Telecom Company
File typeASCII text, with no line terminators Hash444bcb3a3fcf8389296c49467f27e1d6 7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /socket.io/?data=%7B%22channel%22%3A%5B135058879%5D%2C%22checksum%22%3A%221e17a493b60546370a84dfb29e143a8f%22%2C%22check_id%22%3A%227efbe3780eea6bd657138a1d49f26732%22%2C%22data%22%3A%22%22%7D&EIO=3&transport=polling&t=OIem4ay&sid=mZZlK7LJg1NkOyyeFdfS HTTP/1.1
Host: wss1.vchat.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain;charset=UTF-8
Content-Length: 164
Origin: https://core.vchat.vn
Connection: keep-alive
Referer: https://core.vchat.vn/
Cookie: _gta_uni=20221124.135058879.2765063; vnp_guest_15049_135058879=2022-11-24+15%3A28%3A03
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Thu, 24 Nov 2022 08:28:05 GMT
content-type: text/html
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://core.vchat.vn
set-cookie: io=mZZlK7LJg1NkOyyeFdfS; Path=/; HttpOnly; SameSite=Strict
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Awp5MKg.woff2 | 216.58.207.195 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Awp5MKg.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 15620, version 1.0\012- data Hash4828ba09d4e14055459ad5b3044f3a96 c73fb1f9f827c047c4953263d7112cc33df30252 d190b33e3768d3d52e4ace23765ec377bbb939773376813d72cc22c298a59f3c
GET /s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Awp5MKg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://core.vchat.vn
Connection: keep-alive
Referer: https://core.vchat.vn/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Nov 2022 01:26:08 GMT
expires: Sun, 19 Nov 2023 01:26:08 GMT
cache-control: public, max-age=31536000
age: 457317
last-modified: Mon, 22 Apr 2019 23:42:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94YtzCwY.woff2 | 216.58.207.195 | 200 OK | 22 kB |
URL HTTP/2fonts.gstatic.com/s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94YtzCwY.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 21700, version 1.0\012- data Hash7d75a9eb3b38b5dd04b8a7ce4f1b87cc 68f598c84936c9720c5ffd6685294f5c94000dff 6c24799e77b963b00401713a1dbd9cba3a00249b9363e2c194d01b13b8cdb3d7
GET /s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94YtzCwY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://core.vchat.vn
Connection: keep-alive
Referer: https://core.vchat.vn/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21700
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:01:53 GMT
expires: Thu, 23 Nov 2023 19:01:53 GMT
cache-control: public, max-age=31536000
age: 48372
last-modified: Mon, 22 Apr 2019 23:43:33 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F707b8d34-3bd2-4793-9e17-c60d0b285f84.jpeg | 34.120.237.76 | 200 OK | 9.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F707b8d34-3bd2-4793-9e17-c60d0b285f84.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashdc118bae963b381ce5450890130ecf15 9355a16a81b11e024dd2c5c0024aba1121fff925 cb5bc2cc49e05c133434eeb725690b3e32a0d3c6b75074582f941eee3bf7e1c1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F707b8d34-3bd2-4793-9e17-c60d0b285f84.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9828
x-amzn-requestid: bf2f8429-416d-40d4-a237-7593ee26c27a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEv0KHywIAMFvtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e934d-349e1dcc595b1be906a83577;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bQcpPUgu6eN6PQeLMGWwBlf01iHj77_aXHjKmh8SH7HsWlUX6kipDg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:23 GMT
age: 37842
etag: "9355a16a81b11e024dd2c5c0024aba1121fff925"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Bwp5MKg.woff2 | 216.58.207.195 | 200 OK | 9.2 kB |
URL HTTP/2fonts.gstatic.com/s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Bwp5MKg.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 9244, version 1.0\012- data Hashd9a0a4c9215c5a3ea3984214933bc7c3 a76d2921046b94462523e1ecec4bdaad83cd0c73 7de05785c5fcfc8680569077741375e23017e524c9fd97d4ff05766f4a70e9ee
GET /s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Bwp5MKg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://core.vchat.vn
Connection: keep-alive
Referer: https://core.vchat.vn/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9244
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 20 Nov 2022 19:01:19 GMT
expires: Mon, 20 Nov 2023 19:01:19 GMT
cache-control: public, max-age=31536000
age: 307606
last-modified: Mon, 22 Apr 2019 23:42:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| w.ladicdn.com/61416d65d1330500bc1e1272/favicon-1-20220525080014.ico | 138.199.36.7 | 200 OK | 0 B |
URL HTTP/2w.ladicdn.com/61416d65d1330500bc1e1272/favicon-1-20220525080014.ico IP138.199.36.7:0 ASN#60068 Datacamp Limited
GET /61416d65d1330500bc1e1272/favicon-1-20220525080014.ico HTTP/1.1
Host: w.ladicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.taixiu.cc/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:03 GMT
content-type: image/x-icon
vary: Accept-Encoding
server: BunnyCDN-DE1-1047
cdn-pullzone: 575124
cdn-uid: 595f2f5d-bafe-46b1-9efc-ee9b65944aba
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"628de211-423e"
last-modified: Wed, 25 May 2022 08:00:17 GMT
cdn-storageserver: NY-430
cdn-requestpullsuccess: True
cdn-fileserver: 353
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/24/2022 08:28:03
cdn-edgestorageid: 722
cdn-status: 200
cdn-requestid: fd958f65987bcea7923c55bbe200c299
cdn-cache: MISS
content-encoding: br
X-Firefox-Spdy: h2
|
|
| a.ladipage.com/event | 54.169.143.198 | 200 OK | 0 B |
IP54.169.143.198:0
OPTIONS /event HTTP/1.1
Host: a.ladipage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,ladi_camp_form_submit,ladi_camp_id,ladi_camp_name,ladi_camp_origin_url,ladi_camp_page_view,ladi_camp_target_url,ladi_camp_type,ladi_client_id,ladi_form_submit,ladi_page_view
Referer: https://www.taixiu.cc/
Origin: https://www.taixiu.cc
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 08:28:02 GMT
content-type: application/json; charset=utf-8
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
access-control-allow-origin: *
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, Accept-Encoding, ladi_camp_form_submit, ladi_camp_form_submit_daily, ladi_camp_id, ladi_camp_name, ladi_camp_origin_url, ladi_camp_page_view, ladi_camp_page_view_daily, ladi_camp_target_url, ladi_camp_type, ladi_client_id, ladi_form_submit, ladi_form_submit_daily, ladi_page_view, ladi_page_view_daily
access-control-max-age: 2592000
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| shandongyuesao.com/ | 104.21.57.198 | 404 Not Found | 0 B |
IP104.21.57.198:0
GET / HTTP/1.1
Host: shandongyuesao.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
date: Thu, 24 Nov 2022 08:27:57 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6ODoSmV9ZGK3ibV65cp7DHG05aw3Qnj06s7PnNVe7BGBRzPmUA0qkXO19DjObH3r7U74XWcai%2Fekzl2D1CH6w0xCI9iv0yxNoQDJwKZU%2BW9SHQzC0IEku8tItTj9fgKzeors43s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f0c4b0ec28b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|