firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 14 Sep 2022 13:09:32 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 0omIV5b5Mpj24mv1w0spfSvlVanoFyGz9WW_dWxIaRjIcLpCQLu1Fw==
Age: 1575
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash be88d3e043e3b95b52e41812e50fb634
0318ba1ce487817ea7cba61dd9413bed29213800
b5f178d23e633283f226cca7a9ae79b01e6cab2299ff7065c980d3a9953212fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5F178D23E633283F226CCA7A9AE79B01E6CAB2299FF7065C980D3A9953212FD"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3945
Expires: Wed, 14 Sep 2022 14:41:32 GMT
Date: Wed, 14 Sep 2022 13:35:47 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 14 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _425wGsKUpZKN9YjwoM8LunXRFaJglEHybe5HZQh6fxNZ19xF-GnWg==
age: 32432
X-Firefox-Spdy: h2
yongg.duckdns.org/
20.212.4.248301 Moved Permanently 234 B IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5cdbf52d01f3edb61b62b2e893df649a
d4f2a5daa8954569909f3487dddcfa32d4ed190a
41f7fd15354536d2bc9a95558f2a97c541b81d4b330b4f188af76cb46ae66e98
Analyzer Verdict Alert urlquery DynDNS domain detected
GET / HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 14 Sep 2022 13:35:47 GMT
Server: Apache
Location: https://yongg.duckdns.org/
Content-Length: 234
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 13:35:47 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Wed, 14 Sep 2022 13:03:22 GMT
Expires: Wed, 14 Sep 2022 13:06:18 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: l_l8xf4wbkLBjkemgGZGnb-iggPWUF1fQrdbnFuKTPt5zvXTnQQQQw==
Age: 1945
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3ac56507d17ffff5e8b486406985d68
17d26336cd8ea65af3f23db166945f1b3fbbfbab
e7e321340eed681c1269f715b0214e1511d5762fffbe930e7c157b800afa9a39
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2422
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 13:35:48 GMT
Last-Modified: Wed, 14 Sep 2022 12:55:26 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css
104.17.24.14200 OK 5.8 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash a7e25a22602a2b2ed35f90fd5210cff1
148c4f275b60e6cf6253d6b4c7bdc486515b2202
312d94bafa68e11e3a4a8d7c06bc25ee161d1d965afb1fa99db79815a272d0bf
GET /ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Sep 2022 13:35:48 GMT
content-type: text/css; charset=utf-8
content-length: 5845
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed9-1149f"
last-modified: Mon, 04 May 2020 16:12:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 5318191
expires: Mon, 04 Sep 2023 13:35:48 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SpGFgP11%2FUErMI%2FyqZDQsu9Ou9cph3ycjAE4WOF%2FryJDULPzkgrG79I8566DUachFBwR91SYUz1%2B1g4p1CS%2B0FQQ%2Bhf6xYlCOCrfrsVObk4hLXBxywVVKo99nu6ENk84eo6UPt5A"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74a98207597a0b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash abea4dc307fd4da34aac369f4316657c
ef7be7963fa8154c83b78d6ca8518b8448f079ff
1c50a6b2765a5108f31d7a31c98c62d293440c84e8bf63f9dac685be9e3d77d5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 13:35:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yongg.duckdns.org/
20.212.4.248200 OK 36 kB IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- assembler source, Unicode text, UTF-8 text, with CRLF line terminators
Hash 840e9fcedcb45bc0925e8ac12cf7a613
3ed171a232ce102f1014d9f87226961242ec870f
492db21a647b462c73d6cda6b7d0168d26f0ae41ce1109ac837e976ae9e63e49
Analyzer Verdict Alert urlquery DynDNS domain detected
GET / HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:48 GMT
Server: Apache
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash abea4dc307fd4da34aac369f4316657c
ef7be7963fa8154c83b78d6ca8518b8448f079ff
1c50a6b2765a5108f31d7a31c98c62d293440c84e8bf63f9dac685be9e3d77d5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 13:35:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
54.149.101.24101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.101.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: m2zLCJrSdAvgGLilN9N/1A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: mWveEKlTRrORTDBBcSQZjVqkgmg=
i.postimg.cc/bdB94RGs/footer-socmed-3.png
141.94.200.42200 OK 6.6 kB URL HTTP/2 i.postimg.cc/bdB94RGs/footer-socmed-3.png
IP 141.94.200.42:0
File type PNG image data, 180 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash bc99de2d262f8daf5c75d55ea0328990
8af7007005a8725a1c2e2a4710101be68a7ebfea
d1e50bf94ebb01626c1045d43541f5989f67f6b3d62d3d6eb38e34fe0be94595
GET /bdB94RGs/footer-socmed-3.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 13:35:48 GMT
content-type: image/png
content-length: 6571
last-modified: Tue, 22 Mar 2022 04:48:19 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
i.postimg.cc/Sxyy8Kzz/footer-socmed-6.png
141.94.200.42200 OK 4.3 kB URL HTTP/2 i.postimg.cc/Sxyy8Kzz/footer-socmed-6.png
IP 141.94.200.42:0
File type PNG image data, 184 x 140, 8-bit/color RGBA, non-interlaced\012- data
Hash 27eb10858d473bfd39cca3251fe35a26
f472c341ec3696a0c7bb85799495995ff72f941f
e0e93e88b46229223de82294608854d6578f0ade6f696b31f830cda37aae9b0e
GET /Sxyy8Kzz/footer-socmed-6.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 13:35:48 GMT
content-type: image/png
content-length: 4316
last-modified: Wed, 13 Apr 2022 13:57:35 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
i.postimg.cc/pV8Q4L9L/footer-img.png
141.94.200.42200 OK 14 kB URL HTTP/2 i.postimg.cc/pV8Q4L9L/footer-img.png
IP 141.94.200.42:0
File type PNG image data, 669 x 99, 8-bit/color RGBA, non-interlaced\012- data
Hash d8e7ade119fece88de74909f9625a4f4
fcd55a597136e98a1ef13fb4ec78b5fdfe5ddffb
49c48ca56906e272d341083c726fc29a7304b7e66647ffd08b4ce7edd67430b4
GET /pV8Q4L9L/footer-img.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 13:35:48 GMT
content-type: image/png
content-length: 14457
last-modified: Sun, 26 Dec 2021 01:40:34 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
i.postimg.cc/dtyfWFF2/login-Method2.png
141.94.200.42200 OK 4.3 kB URL HTTP/2 i.postimg.cc/dtyfWFF2/login-Method2.png
IP 141.94.200.42:0
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash fef946b8bba756359e2a1e87ccd915ea
acc364946077b0e32b2343474ce4066ad3ee524c
1be5d05ce6faad469f7f9c5a5879f2d9f8d267b60eb394e92c19217268bcea8f
GET /dtyfWFF2/login-Method2.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 13:35:48 GMT
content-type: image/png
content-length: 4298
last-modified: Sun, 26 Dec 2021 01:53:00 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
i.postimg.cc/Thwcks3z/footer-socmed-2.png
141.94.200.42200 OK 11 kB URL HTTP/2 i.postimg.cc/Thwcks3z/footer-socmed-2.png
IP 141.94.200.42:0
File type PNG image data, 180 x 148, 8-bit/color RGBA, non-interlaced\012- data
Hash 80c10d25063bc5137b0fcf63b4d6165f
9655f83c214eaccb92d34d8b8ca83581a56fb2a7
16f1ccc0e0a89629ef11948c8de6ca77591a6f9b937b8de44ebc18358225bd80
GET /Thwcks3z/footer-socmed-2.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 13:35:48 GMT
content-type: image/png
content-length: 10864
last-modified: Tue, 22 Mar 2022 04:48:19 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
i.postimg.cc/jnLQLD1x/footer-socmed-1.png
141.94.200.42200 OK 5.8 kB URL HTTP/2 i.postimg.cc/jnLQLD1x/footer-socmed-1.png
IP 141.94.200.42:0
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash bef4c998aafaa09e5d29d60f46525c62
6c7f350282f0f6dc01f577c3785e0aaea0fcc2e6
dfba7a0c7d120366be1d50ada6b75adcf62ac2038a1c08fd6e1c77071a38b5d1
GET /jnLQLD1x/footer-socmed-1.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 13:35:48 GMT
content-type: image/png
content-length: 5796
last-modified: Tue, 22 Mar 2022 04:48:19 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
i.postimg.cc/YvcfCqz7/footer-socmed-4.png
141.94.200.42200 OK 14 kB URL HTTP/2 i.postimg.cc/YvcfCqz7/footer-socmed-4.png
IP 141.94.200.42:0
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 023bfaf2a56a2b76e7afc94885893502
225d5166c4b3f7346e3bfef148d6bfb87b5b4a96
8014774799900154e012ac41d6cdd404adc93c5955535ee4bd5372e054e90443
GET /YvcfCqz7/footer-socmed-4.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 13:35:48 GMT
content-type: image/png
content-length: 13796
last-modified: Tue, 22 Mar 2022 04:48:19 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
i.postimg.cc/w7RQzsJF/footer-socmed-5.png
141.94.200.42200 OK 9.2 kB URL HTTP/2 i.postimg.cc/w7RQzsJF/footer-socmed-5.png
IP 141.94.200.42:0
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 2a03905025f0e6e39ce3934cb40b170f
72ccd4a954ae859709be05f27c5e425dc0c810eb
a72b0b2226327f8af54d11c68347fd2930f05d48004c0f05e1ef39c3505d8ba0
GET /w7RQzsJF/footer-socmed-5.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 13:35:48 GMT
content-type: image/png
content-length: 9205
last-modified: Tue, 22 Mar 2022 04:48:19 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
i.postimg.cc/SxQ04Qn4/navbar-logo.png
141.94.200.42200 OK 177 kB URL HTTP/2 i.postimg.cc/SxQ04Qn4/navbar-logo.png
IP 141.94.200.42:0
File type PNG image data, 1074 x 800, 8-bit/color RGBA, non-interlaced\012- data
Size 177 kB (177317 bytes)
Hash d2d4c42a8bef48daa7c8151a838870c9
7ad25c9e369e069f97093188699bd58a2b298888
a817051e4bb4f6a94ffc632b32ba786440fb33f2028b99a83c836631299ff587
GET /SxQ04Qn4/navbar-logo.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 13:35:48 GMT
content-type: image/png
content-length: 177317
last-modified: Tue, 22 Mar 2022 04:46:34 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
yongg.duckdns.org/index_files/css
20.212.4.248200 OK 62 kB URL HTTP/1.1 yongg.duckdns.org/index_files/css
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (1116)
Hash 755df17a408beddb747e36f27ae4dedc
53daa61ef477c0badec68fa8942cb5ffce0c38b0
a2db023c6c27693f044211498c952a94f002c75b80926bde95c24d5dbab187f4
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /index_files/css HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:48 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 23:04:26 GMT
Accept-Ranges: bytes
Content-Length: 62268
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
yongg.duckdns.org/css-zone/facebook.css
20.212.4.248200 OK 3.6 kB URL HTTP/1.1 yongg.duckdns.org/css-zone/facebook.css
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash f7cb8899564e89c7f43e28f6cd08381b
aa295a91fac80db801911f85e981ba1112234bcc
a9be972440ab34d9ad1b8d8e1a741edd4ec4d1a8b2962a092ba55d4002160ae5
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /css-zone/facebook.css HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:48 GMT
Server: Apache
Last-Modified: Fri, 22 Jul 2022 09:18:22 GMT
Accept-Ranges: bytes
Content-Length: 3591
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
yongg.duckdns.org/css-zone/twitter.css
20.212.4.248200 OK 2.2 kB URL HTTP/1.1 yongg.duckdns.org/css-zone/twitter.css
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 47b8b47da47291c523d35e3d692744d3
9141acf6018ef384f3414d44e388e6b5b8594bf1
ef6fa69663c38fc545f1e70addf87be8477ab16aba7dafcadc4c9f03f004597c
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /css-zone/twitter.css HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:48 GMT
Server: Apache
Last-Modified: Fri, 22 Jul 2022 09:18:24 GMT
Accept-Ranges: bytes
Content-Length: 2233
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
yongg.duckdns.org/js-zone/jquery.js
20.212.4.248200 OK 2.3 kB URL HTTP/1.1 yongg.duckdns.org/js-zone/jquery.js
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type exported SGML document, ASCII text, with very long lines (1757)
Hash 27335de838e10bf2a4b4d5999c517d76
83b660b19244c170d715f4da30013cf57284682b
e654612977b4226247e6dacd00df39e20942b906c9aed2fe405da0de47af6e91
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /js-zone/jquery.js HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:48 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 23:03:42 GMT
Accept-Ranges: bytes
Content-Length: 2253
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
yongg.duckdns.org/js-zone/main-zone.js
20.212.4.248200 OK 610 B URL HTTP/1.1 yongg.duckdns.org/js-zone/main-zone.js
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (316)
Hash 61c46dba509ed4003d18053b613edb39
f20c38330a2dd1ec8fae7f53220d8a3a5cff8177
6a66a6f467e40c2ef0c8f0c6c77ff558538b20a4f9f0ce7c9c31331df5bf4b9e
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /js-zone/main-zone.js HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:48 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 23:03:42 GMT
Accept-Ranges: bytes
Content-Length: 610
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
yongg.duckdns.org/js-zone/myScript.js
20.212.4.248404 Not Found 315 B URL HTTP/1.1 yongg.duckdns.org/js-zone/myScript.js
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /js-zone/myScript.js HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Wed, 14 Sep 2022 13:35:48 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
yongg.duckdns.org/index_files/gift-zone.js
20.212.4.248200 OK 1.7 kB URL HTTP/1.1 yongg.duckdns.org/index_files/gift-zone.js
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash ac813cbf4df0e7e8ab2319c43dd8a680
cbe244000f9036173f55c9a31b5dcafecc8747b3
af0366a50b0afc180e60714817feffac0a5da579117e48aaa04a01746829bd2d
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /index_files/gift-zone.js HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:48 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 23:04:22 GMT
Accept-Ranges: bytes
Content-Length: 1685
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
yongg.duckdns.org/js-zone/showHide.js
20.212.4.248200 OK 1.1 kB URL HTTP/1.1 yongg.duckdns.org/js-zone/showHide.js
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with CRLF line terminators
Hash d3e46c4a7d95270da519489746521b1a
5f5a383b6a1a635695e2c72aace79363708f82be
8023fc37af7de956061342860b38dd1646ce1f1fa7ecc2ce703e2b544b2bd283
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /js-zone/showHide.js HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:48 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 23:03:44 GMT
Accept-Ranges: bytes
Content-Length: 1075
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
yongg.duckdns.org/js-zone/slider.js
20.212.4.248200 OK 588 B URL HTTP/1.1 yongg.duckdns.org/js-zone/slider.js
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with CRLF line terminators
Hash 2164c6d5165fe540ed4889f6396ae32b
e0a83804b1872a933d8398195c860861990d08fa
20087c03a5deb12faebad778ee76e59d846595b075de68810b366db32ffcee56
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /js-zone/slider.js HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:48 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 23:03:46 GMT
Accept-Ranges: bytes
Content-Length: 588
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
yongg.duckdns.org/css-zone/animate.css
20.212.4.248200 OK 78 kB URL HTTP/1.1 yongg.duckdns.org/css-zone/animate.css
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 8eae1a9cfafdc593321d4d59ec4905ea
232f5f3f4c3a0a56823e0e933f9c7fec3aa9cbcc
e89c81987c5cbc157097eaa6657d6a594abf030cc89bb63f0d2154d8383e9fab
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /css-zone/animate.css HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:48 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 23:04:08 GMT
Accept-Ranges: bytes
Content-Length: 77906
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
yongg.duckdns.org/js-zone/script.js
20.212.4.248200 OK 187 kB URL HTTP/1.1 yongg.duckdns.org/js-zone/script.js
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (65536), with no line terminators
Size 187 kB (187095 bytes)
Hash eec8318415ffc986bd23f1874576b0ea
1c6dd46b477e97aa39726de899bfdce5ccd34e6d
cadee7a6bcac7c39cefed904847dafe541693525f2c1bc04976f51f9eb94852c
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /js-zone/script.js HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:49 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 23:34:48 GMT
Accept-Ranges: bytes
Content-Length: 187095
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
i.ibb.co/Wg8qQxh/facebook-text.png
217.182.228.53200 OK 29 kB URL HTTP/2 i.ibb.co/Wg8qQxh/facebook-text.png
IP 217.182.228.53:0
File type PNG image data, 604 x 158, 8-bit/color RGBA, non-interlaced\012- data
Hash 74190b93fc4f5d88f0c8e6411ba20bd8
89ce2ecb660a90b8e6ed1b335443d7767c59f28a
092a3cd5f86b3f039feefdeb86694cd16ae545af214cfda614bdbbe2d1bde401
GET /Wg8qQxh/facebook-text.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 13:35:49 GMT
content-type: image/png
content-length: 28789
last-modified: Mon, 18 Oct 2021 19:35:50 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
yongg.duckdns.org/index_files/jquery.min.js.download
20.212.4.248200 OK 87 kB URL HTTP/1.1 yongg.duckdns.org/index_files/jquery.min.js.download
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (65451)
Hash a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /index_files/jquery.min.js.download HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:48 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 23:04:24 GMT
Accept-Ranges: bytes
Content-Length: 86927
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
yongg.duckdns.org/js-zone/myScript.js
20.212.4.248404 Not Found 315 B URL HTTP/1.1 yongg.duckdns.org/js-zone/myScript.js
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /js-zone/myScript.js HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Wed, 14 Sep 2022 13:35:49 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.pubgmobile.com/en/images/nav_download.svg
23.36.76.227200 OK 485 B URL HTTP/2 www.pubgmobile.com/en/images/nav_download.svg
IP 23.36.76.227:0
ASN #20940 Akamai International B.V.
File type SVG Scalable Vector Graphics image\012- HTML document, Unicode text, UTF-8 text, with very long lines (999), with no line terminators
Hash 105955f14143a23be57cadef8e91950e
98cc1e76113b4b2a2a77805bb1f1d6b364344d88
b85bdfd2887c4fe7681cae97896e604e74d27f150feb49598e1e7efebd3c6fc2
GET /en/images/nav_download.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:17 GMT
etag: "62387c81-3ef"
accept-ranges: bytes
unused62: 8096267
vary: Accept-Encoding
content-encoding: gzip
date: Wed, 14 Sep 2022 13:35:49 GMT
content-length: 485
X-Firefox-Spdy: h2
www.pubgmobile.com/en/images/nav_language.svg
23.36.76.227200 OK 675 B URL HTTP/2 www.pubgmobile.com/en/images/nav_language.svg
IP 23.36.76.227:0
ASN #20940 Akamai International B.V.
File type SVG Scalable Vector Graphics image\012- HTML document, Unicode text, UTF-8 text, with very long lines (1107), with no line terminators
Hash 77e7b8dcd13159c59219706782b1a897
a3c73409a8e9841a00b771d96ce6cb0ce76d222e
4f61e0a210a58bdf43f8a93bf658275291e6a16979f8090c0731f06b6fb3c5a4
GET /en/images/nav_language.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:18 GMT
etag: "62387c82-45b"
accept-ranges: bytes
unused62: 8096267
vary: Accept-Encoding
content-encoding: gzip
date: Wed, 14 Sep 2022 13:35:49 GMT
content-length: 675
X-Firefox-Spdy: h2
yongg.duckdns.org/img/reward/withBg/5.png
20.212.4.248200 OK 9.7 kB URL HTTP/1.1 yongg.duckdns.org/img/reward/withBg/5.png
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x480, components 3\012- data
Hash fdd37485da8d316c2c037f2b51752b97
19209485e201395bd894cc72def0c7392278f324
62976d022342c5ddfa27c0f87238d4ff15e0602ce1faba6b8a33394b6c3a06a9
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /img/reward/withBg/5.png HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:49 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 03:22:50 GMT
Accept-Ranges: bytes
Content-Length: 9678
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
104.18.10.207200 OK 94 kB URL HTTP/2 stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.18.10.207:0
File type ASCII text, with very long lines (30837)
Hash 4f4a2ef78a3f9ae71112c925bb5358ee
734d28f9e34e0e8ab644aa36e9ea2a36949c0298
8a0d4a053d06247f44430cee0aabfe7bbb7e84b39e1cabdaaab48617041e866a
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://yongg.duckdns.org
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Sep 2022 13:35:48 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 08/20/2022 02:30:56
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 868de607b93881a6b924cab1bd43740e
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74a982075e79fac8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21279
Expires: Wed, 14 Sep 2022 19:30:28 GMT
Date: Wed, 14 Sep 2022 13:35:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21279
Expires: Wed, 14 Sep 2022 19:30:28 GMT
Date: Wed, 14 Sep 2022 13:35:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21279
Expires: Wed, 14 Sep 2022 19:30:28 GMT
Date: Wed, 14 Sep 2022 13:35:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21279
Expires: Wed, 14 Sep 2022 19:30:28 GMT
Date: Wed, 14 Sep 2022 13:35:49 GMT
Connection: keep-alive
yongg.duckdns.org/img/reward/withBg/4.png
20.212.4.248200 OK 20 kB URL HTTP/1.1 yongg.duckdns.org/img/reward/withBg/4.png
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x480, components 3\012- data
Hash d3fec55231002f6ebef9c357431e5d45
4db040a8a2ad2fc59fc3b93d371328febce59287
49f5b5a8ce09176e4e7aee4999fed1c14ed67fad8dd191cf8a2e8594d354f7fa
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /img/reward/withBg/4.png HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:49 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 03:22:50 GMT
Accept-Ranges: bytes
Content-Length: 20401
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16b1b829-b672-479c-964a-2f636f65f91e.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16b1b829-b672-479c-964a-2f636f65f91e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fef8234ab83f6f8f8b29665f592cbc9f
a3e706d6309e4a9d7b293f2b9255f1550ba5e9b7
569c8c9736026fc310e148d4d74081e96a86245baaa1f784280d44a1cbd25ed0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16b1b829-b672-479c-964a-2f636f65f91e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14151
x-amzn-requestid: d5bc9be4-af3a-40fd-bfc9-1ac4769d2d3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yauv4GhboAMF2dA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f7ff-375df72d2d67582635b9e4ae;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: CZRpgjU_AxNYoyeSTOwhJhONl2DS4pvCLJ62RgAFp0flw-kPz3GkpQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 21:48:11 GMT
age: 56858
etag: "a3e706d6309e4a9d7b293f2b9255f1550ba5e9b7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34a3d36b-806f-4fea-a370-b26c1e8473d0.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34a3d36b-806f-4fea-a370-b26c1e8473d0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f5befd5bb8e6d5dad2465be69d5a33e4
e5b46c3ca439a09950290cada1af5e27cede10f2
4dc0a3373fb4c1830c4e2420dddbcbe8dceecf10e969cbe8d02368e41207832c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34a3d36b-806f-4fea-a370-b26c1e8473d0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5988
x-amzn-requestid: a0d81c7a-14e3-443d-8fb7-19241f06d3c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yaux0H77IAMF2_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f80b-0fe6fbbe75e891b925f88dc2;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:15 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 1X79jBMZa4UQmWsLdg_QIg5MQeersp1O3iSgpKd6R2f8Kl7PAJh0hQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 21:49:32 GMT
etag: "e5b46c3ca439a09950290cada1af5e27cede10f2"
content-type: image/jpeg
age: 56777
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0dd9e47f-6214-4e20-b9ff-3e738ad551e3.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0dd9e47f-6214-4e20-b9ff-3e738ad551e3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 47ae5cf125ce99bad80c283de8a85cec
0c0c1f84d8693d0c150c97faed21204622d48132
95f5b8cddbfcdb2b6105ed5a0d5ff0dd86390839e5df7416d4f879d69fcf20c1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0dd9e47f-6214-4e20-b9ff-3e738ad551e3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6269
x-amzn-requestid: 8f3cabdd-78c3-47d2-841b-02b674a79123
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ1k_FSCoAMFywQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d02ec-4b44c935456026ba700a5759;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:34:36 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: TnWZhLnecuseTYzrivm2OgMn1lXVKVzeXivXm4XhGVzhv_jV9MQQdQ==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 22:23:42 GMT
age: 54727
etag: "0c0c1f84d8693d0c150c97faed21204622d48132"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8cb650f7-1b0f-4a3d-898f-97b846afe9db.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8cb650f7-1b0f-4a3d-898f-97b846afe9db.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0789404fdbe3613d465d8fa89a63d7b8
0617d2e513097ca415a1d07cd39b1cb64d832ecf
80e55e383f354113c3694bbcc00fd1c544a97079bd3c462f1b90e952c0634bac
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8cb650f7-1b0f-4a3d-898f-97b846afe9db.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10138
x-amzn-requestid: bdf798d9-6729-4363-a900-f32c4041d0c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YU5qsGZ-oAMFQ1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ea311-7b146c0620a83d5c00446f87;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 03:10:09 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OM9K72ukk0cuyR1ZcV5xWXnEd8U9OgeQi7bkCe0Pzn3BfdLMvSdSXg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 03:02:44 GMT
age: 37985
etag: "0617d2e513097ca415a1d07cd39b1cb64d832ecf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2b71bb0-fd92-43d0-8cd0-b426d0b88ee8.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2b71bb0-fd92-43d0-8cd0-b426d0b88ee8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 56811a1a20a467464e1f3da171ef8b14
366b2090d409d694b72b4b4131df46dd65d69c5a
4c208fb88884166adf4ecc5882f75948b4a87d85c76ad6e7137e8edbd125c996
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2b71bb0-fd92-43d0-8cd0-b426d0b88ee8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15547
x-amzn-requestid: a78f7d90-84c3-4198-88bf-1d722c37f09f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yauv4EUDoAMF13A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f7ff-49535e5525606250306488ba;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: yP22CSG5x3BVfq29UMdw30TZcvuaL-kUDgjBZDUEMpRVDWqlZrCgdQ==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 21:42:05 GMT
age: 57224
etag: "366b2090d409d694b72b4b4131df46dd65d69c5a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f2157f7cfbdeb607f28ae51eb090f2c3
33d0dcadaa42179b2eae914c8ad16c9c088afbc9
135cd89c2c82f0f5e53d2612d5eac868c175b28a567a07e63a2073942e36a066
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6078
x-amzn-requestid: e09c099f-5a2d-49d7-b6ab-e16f09c28bd0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YavJEEM5IAMFreQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f8a0-0fbb7b3d0cd6fbfa04f5a5d2;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:39:44 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Ur-HTN2DS8b3ojSQldJOZi6YW2wtCwRfbGqxg49ZUJ_00hC_rFxYEw==
via: 1.1 9b21fd56256eda6d1379e32829c4c446.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 21:51:32 GMT
age: 56657
etag: "33d0dcadaa42179b2eae914c8ad16c9c088afbc9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
yongg.duckdns.org/img/reward/withBg/2.png
20.212.4.248200 OK 92 kB URL HTTP/1.1 yongg.duckdns.org/img/reward/withBg/2.png
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 960x960, components 3\012- data
Hash 19082a7cfe73f2a62700f8d074f73ba1
1b1beafe66f625c29f4d67c4c9e5fd540b8791ce
7ab8c58f4108e21edb46532dc36d9753fa6ba66d78ad282b63e77bc79e443954
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /img/reward/withBg/2.png HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:49 GMT
Server: Apache
Last-Modified: Mon, 12 Sep 2022 17:47:24 GMT
Accept-Ranges: bytes
Content-Length: 92078
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
yongg.duckdns.org/js-zone/zero-zone.js
20.212.4.248200 OK 861 B URL HTTP/1.1 yongg.duckdns.org/js-zone/zero-zone.js
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type exported SGML document, ASCII text, with very long lines (612)
Hash e2fa33d030064bc3c6e44da71cf39659
4907034831c9244c5bce315c3aabbbbdf06cd687
b6b1475306c19ac27e78c3483123346379ea4a356ad9bf0d01319cee2b8f30c6
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /js-zone/zero-zone.js HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:49 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 23:03:48 GMT
Accept-Ranges: bytes
Content-Length: 861
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
yongg.duckdns.org/img/header.jpg
20.212.4.248200 OK 100 kB URL HTTP/1.1 yongg.duckdns.org/img/header.jpg
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Hash b780c66f5fe81c5bd0a80ce817a7b076
d0ebeb32c7bdabe06e3cfbf991033fdca38c1cad
b6f34eb32e16602bc56e51c3fbd030e9900b0d97c52b2ea5a9d1c5b53539cdb9
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /img/header.jpg HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:49 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 03:23:46 GMT
Accept-Ranges: bytes
Content-Length: 99966
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
yongg.duckdns.org/js-zone/alert-zone.js
20.212.4.248200 OK 121 kB URL HTTP/1.1 yongg.duckdns.org/js-zone/alert-zone.js
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (64301)
Size 121 kB (120664 bytes)
Hash 2d8819d4b15ffe076a804a074e0229da
0e76d42421e78a58d71c99e233335f39b8b47645
b49a2dab55008d7ba1277b3adbb0b5f590f9b3ee25e3e89a9d78696efd262dde
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /js-zone/alert-zone.js HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:49 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 23:03:40 GMT
Accept-Ranges: bytes
Content-Length: 120664
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
yongg.duckdns.org/img/popup-close.png
20.212.4.248200 OK 800 B URL HTTP/1.1 yongg.duckdns.org/img/popup-close.png
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9ad933a2811231bb0281a36a869afbf2
c7ce486358fb5a1f1809337b1b665f7ee9b29193
6a8126f7f95412ae2e2dd862ed80a94f043731bcb9772afc54e984ae894213c2
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /img/popup-close.png HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:49 GMT
Server: Apache
Last-Modified: Wed, 03 Aug 2022 16:21:16 GMT
Accept-Ranges: bytes
Content-Length: 800
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
yongg.duckdns.org/css-zone/style-zone.css
20.212.4.248200 OK 24 kB URL HTTP/1.1 yongg.duckdns.org/css-zone/style-zone.css
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (411), with CRLF line terminators
Hash 7bf1e285ed3ef0f64b9f27a3eb255526
de13d101204f77e2b36e1da99af37b07a164e8f8
fd0b38713344af4ef33167176959f079479fbbfb61675155c730926057b782ed
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /css-zone/style-zone.css HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:50 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 23:04:12 GMT
Accept-Ranges: bytes
Content-Length: 23747
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
yongg.duckdns.org/css-zone/zero-zone.css
20.212.4.248200 OK 5.5 kB URL HTTP/1.1 yongg.duckdns.org/css-zone/zero-zone.css
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with CRLF line terminators
Hash f0189e228f5c721e4bb056b09e53f5be
0b5bad2346f8d1b8582909b7d614d2956a6ec5a7
3424d464cd8426570ab35cbba35811fa37a9c09ba71d26e48dff621ed5e3aa42
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /css-zone/zero-zone.css HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:50 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 23:04:14 GMT
Accept-Ranges: bytes
Content-Length: 5487
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
i.postimg.cc/02KwtTc7/footer-bg.jpg
141.94.200.42200 OK 12 kB URL HTTP/2 i.postimg.cc/02KwtTc7/footer-bg.jpg
IP 141.94.200.42:0
File type JPEG image data, progressive, precision 8, 579x800, components 3\012- data
Hash 27b8ceba13cb26a4ac6951cecdd4a5d3
accbec4f1b6038f0bcd2032da80c2ee342033d2e
d1740f2a847c3b67a1071442fe2af27298bca56ab267e90ea8aec3d4e9b9552f
GET /02KwtTc7/footer-bg.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 13:35:50 GMT
content-type: image/jpeg
content-length: 11651
last-modified: Wed, 23 Mar 2022 19:15:53 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
www.pubgmobile.com/en/images/nav_menu.svg
23.36.76.227200 OK 426 B URL HTTP/2 www.pubgmobile.com/en/images/nav_menu.svg
IP 23.36.76.227:0
ASN #20940 Akamai International B.V.
File type SVG Scalable Vector Graphics image\012- HTML document, Unicode text, UTF-8 text, with very long lines (876), with no line terminators
Hash 76f5753e4fe160785df31ef342ada1c1
a78cc3e318b79b7fe5e7eb8df11683706b518e8f
52c48564638e7f165f23fae7f76b72d07905f2179ff659b939bfab7ec8b82a26
GET /en/images/nav_menu.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:18 GMT
etag: "62387c82-374"
accept-ranges: bytes
unused62: 8096267
vary: Accept-Encoding
content-encoding: gzip
date: Wed, 14 Sep 2022 13:35:50 GMT
content-length: 426
X-Firefox-Spdy: h2
www.pubgmobile.com/id/event/royalepass10/images/icon_logo.jpg
23.36.76.227200 OK 75 kB URL HTTP/2 www.pubgmobile.com/id/event/royalepass10/images/icon_logo.jpg
IP 23.36.76.227:0
ASN #20940 Akamai International B.V.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 500x500, components 3\012- data
Hash 92c19dc5bd77186e5bb8ed35ce668979
646bf70d1c669c7d7388f95a0a33755e4721289c
0d9cf7eb8fb12be77685134e63f7dae9a95fbf9306ae0529bd0347582d18a8ef
GET /id/event/royalepass10/images/icon_logo.jpg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: image/jpeg
content-length: 75149
last-modified: Wed, 15 Sep 2021 06:46:59 GMT
etag: "614196e3-1258d"
accept-ranges: bytes
unused62: 8096267
cache-control: max-age=276
expires: Wed, 14 Sep 2022 13:40:26 GMT
date: Wed, 14 Sep 2022 13:35:50 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b7e665b6b70fa840ee6a1417da402132
658fa05afcf7752e8cb02979c28874efb0f4ddd8
9905cee109c441b937300b368ceccd186877a0923164bf3e1eb0971a2a224400
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 13:35:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b7e665b6b70fa840ee6a1417da402132
658fa05afcf7752e8cb02979c28874efb0f4ddd8
9905cee109c441b937300b368ceccd186877a0923164bf3e1eb0971a2a224400
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 13:35:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/teko/v15/LYjCdG7kmE0gdVBesCRgqA.woff2
142.250.74.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/teko/v15/LYjCdG7kmE0gdVBesCRgqA.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 13196, version 1.0\012- data
Hash 5b9fce771bd530ab9767e2b5aebd28c1
28ee5935b59df8b2d6876707e1f0f0e6768d2d31
a3bf77e9dea5a047c348fa98ccbeb5d5e07de3541ce0a2dfb243690da964804c
GET /s/teko/v15/LYjCdG7kmE0gdVBesCRgqA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://yongg.duckdns.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13196
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Sep 2022 20:03:44 GMT
expires: Tue, 12 Sep 2023 20:03:44 GMT
cache-control: public, max-age=31536000
age: 149526
last-modified: Wed, 27 Apr 2022 16:17:49 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/teko/v15/LYjNdG7kmE0gfaN9pQ.woff2
142.250.74.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/teko/v15/LYjNdG7kmE0gfaN9pQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 13324, version 1.0\012- data
Hash b4082c888eefa2dca3fe2c9d46a87180
05aeb6c58175f659fe59eaca5a9d3735dd0530e3
352ad1513eeaeec51060f01d5bed32345862ec4d9c0802b81e0a47885951e4b6
GET /s/teko/v15/LYjNdG7kmE0gfaN9pQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://yongg.duckdns.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13324
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 20:23:38 GMT
expires: Thu, 07 Sep 2023 20:23:38 GMT
cache-control: public, max-age=31536000
age: 580332
last-modified: Wed, 27 Apr 2022 17:05:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.pubgmobile.com/en/images/nav_shop.svg
23.36.76.227200 OK 526 B URL HTTP/2 www.pubgmobile.com/en/images/nav_shop.svg
IP 23.36.76.227:0
ASN #20940 Akamai International B.V.
File type SVG Scalable Vector Graphics image\012- HTML document, Unicode text, UTF-8 text, with very long lines (985), with no line terminators
Hash ad0548f5478991acc360e6464247e82a
40e3e327eebfc39a8e45b1aa46b725d65390cdcc
6654577abe5f4be7b3f9089fa76e5f746c8d0f5c7eae1cc8202a94fae1193fe3
GET /en/images/nav_shop.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:18 GMT
etag: "62387c82-3e1"
accept-ranges: bytes
unused62: 8096267
vary: Accept-Encoding
content-encoding: gzip
date: Wed, 14 Sep 2022 13:35:50 GMT
content-length: 526
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Teko&display=swap
142.250.74.10200 OK 305 kB URL HTTP/2 fonts.googleapis.com/css2?family=Teko&display=swap
IP 142.250.74.10:0
Size 305 kB (304768 bytes)
Hash 48d4e50d9bdab92376ebbe5413f9e999
5c25607ce8d0606dcb58a14d6bf53a4d6f3d2032
f75325529715307bcb667f1d5b830597b6863995d16522d8dcbd1d5d3eccc61b
GET /css2?family=Teko&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 13:35:48 GMT
date: Wed, 14 Sep 2022 13:35:48 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b7e665b6b70fa840ee6a1417da402132
658fa05afcf7752e8cb02979c28874efb0f4ddd8
9905cee109c441b937300b368ceccd186877a0923164bf3e1eb0971a2a224400
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 13:35:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stackpath.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
104.18.10.207200 OK 77 kB URL HTTP/2 stackpath.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 104.18.10.207:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://yongg.duckdns.org
Connection: keep-alive
Referer: https://stackpath.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 13:35:50 GMT
content-type: font/woff2
content-length: 77160
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "af7ae505a9eed503f8b8e6982036873e"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 08/17/2022 18:20:14
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 752
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 32e1e19cabb93c66025fbd758e0fb83b
cdn-cache: HIT
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74a982129e9cfac8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
yongg.duckdns.org/img/selow.jpg
20.212.4.248200 OK 34 kB URL HTTP/1.1 yongg.duckdns.org/img/selow.jpg
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x256, components 3\012- data
Hash 31e5d2282ef681dd37d9100bd1a9d79a
28ec9b2bf5c238f3e095dcbfeed9e948905c0576
3e70b163fbcbb4336a23dc7e14dcf707c8cc65d71077657476b43cabb525f416
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /img/selow.jpg HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:50 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 03:22:52 GMT
Accept-Ranges: bytes
Content-Length: 33457
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
yongg.duckdns.org/img/container.jpg
20.212.4.248200 OK 156 kB URL HTTP/1.1 yongg.duckdns.org/img/container.jpg
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x960, components 3\012- data
Size 156 kB (156519 bytes)
Hash e78cb56696399eacca68a9c58cc86e8d
18fbf007bb90bbea5327beb12a5fc273fda14a98
b73572d05568fec320d2a2417e42292789f8219e3b304d9dc5eaa14d16ed1c75
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /img/container.jpg HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/css-zone/style-zone.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:50 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 03:23:44 GMT
Accept-Ranges: bytes
Content-Length: 156519
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
yongg.duckdns.org/img/btn-on.png
20.212.4.248200 OK 10 kB URL HTTP/1.1 yongg.duckdns.org/img/btn-on.png
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x142, components 3\012- data
Hash d35bd1031f3e14f1b534e1be4e3844e6
6477f16736c97a850d3eaceba5fb601346e36cc9
1152d493c0826e16a4e61b8e1bf6317f5ff81e5fac266c2d79b003f6920fd168
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /img/btn-on.png HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:50 GMT
Server: Apache
Last-Modified: Fri, 15 Jul 2022 01:35:20 GMT
Accept-Ranges: bytes
Content-Length: 10293
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
yongg.duckdns.org/img/bg.png
20.212.4.248200 OK 20 kB URL HTTP/1.1 yongg.duckdns.org/img/bg.png
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 802x1280, components 3\012- data
Hash 1ecce4f68ef93f75761815865cb08339
4ee0579f7e577d32a05d195adb01035f6fef8f0e
3f0438928a3a0fddcaedec9f928b23918a64befad399cadc72e7a55e55cc49ad
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /img/bg.png HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/css-zone/style-zone.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:50 GMT
Server: Apache
Last-Modified: Fri, 05 Aug 2022 16:02:46 GMT
Accept-Ranges: bytes
Content-Length: 20107
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
yongg.duckdns.org/img/alert.jpg
20.212.4.248200 OK 13 kB URL HTTP/1.1 yongg.duckdns.org/img/alert.jpg
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x214, components 3\012- data
Hash 49b03a0b740f6741c3c5937061258457
ef6e484c11f2cec7d093b73e9978140ca56daa65
2694c31b51814a011c79c9dc4d2ea0423dd6ba3595186e3a54346f1969bb2425
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /img/alert.jpg HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:50 GMT
Server: Apache
Last-Modified: Thu, 04 Aug 2022 12:03:30 GMT
Accept-Ranges: bytes
Content-Length: 13295
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
yongg.duckdns.org/fonts/pubg.woff2
20.212.4.248200 OK 8.2 kB URL HTTP/1.1 yongg.duckdns.org/fonts/pubg.woff2
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type TrueType Font data, 11 tables, 1st "OS/2", 32 names, Macintosh, Copyright 2014, 2015 Adobe Systems Incorporated (http://www.adobe.com/).pubg-headline-boldRegul\012- data
Hash 46c47ed3c526deb2920d3e0568166bcd
c807bd8c7803733f7fa76134ef1e8102c72e8430
cb43ac49eedab33f20aaf47304230a47a4f0da8e26e76dde2710f37a5aed0978
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /fonts/pubg.woff2 HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:50 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 23:04:30 GMT
Accept-Ranges: bytes
Content-Length: 8156
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: font/woff2
yongg.duckdns.org/img/popup-navbar2.png
20.212.4.248200 OK 13 kB URL HTTP/1.1 yongg.duckdns.org/img/popup-navbar2.png
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x138, components 3\012- data
Hash 940392e86a001b3533b3535158bd02cb
9e3080417bdc0487ee51aa288ebed3e01f25d950
050e3f367e338632993a722711d76a1ecaefd01e5a5ad864ce68f5cc1d073f46
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /img/popup-navbar2.png HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:50 GMT
Server: Apache
Last-Modified: Thu, 04 Aug 2022 13:40:04 GMT
Accept-Ranges: bytes
Content-Length: 12959
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
yongg.duckdns.org/img/popup-box-bg2.png
20.212.4.248200 OK 15 kB URL HTTP/1.1 yongg.duckdns.org/img/popup-box-bg2.png
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x527, components 3\012- data
Hash cc936288e8627360e61ce5609dea8531
f8d1cd6da19416f6a0967df07ac58b65d69a75ac
1d5f1e93b958f19916a96283b2d9957c0442f08cc07cadcdce000ec9b2254fb0
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /img/popup-box-bg2.png HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:50 GMT
Server: Apache
Last-Modified: Thu, 04 Aug 2022 13:40:04 GMT
Accept-Ranges: bytes
Content-Length: 15355
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
yongg.duckdns.org/img/popup-footer2.png
20.212.4.248200 OK 6.1 kB URL HTTP/1.1 yongg.duckdns.org/img/popup-footer2.png
IP 20.212.4.248:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x120, components 3\012- data
Hash b685440d4528b8587832f9cc386f261c
9d313eb0cdff61955b9d89338d868444cecf7522
326142e948fa0861144e45a8a383f0fa341709bb04dcd9b246cdb1aeb073efe8
Analyzer Verdict Alert urlquery DynDNS domain detected
GET /img/popup-footer2.png HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:50 GMT
Server: Apache
Last-Modified: Thu, 04 Aug 2022 13:40:04 GMT
Accept-Ranges: bytes
Content-Length: 6112
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
www.pubgmobile.com/common/images/icon_logo.jpg
23.36.76.227200 OK 982 kB URL HTTP/2 www.pubgmobile.com/common/images/icon_logo.jpg
IP 23.36.76.227:0
ASN #20940 Akamai International B.V.
File type JPEG image data, baseline, precision 8, 1024x1024, components 3\012- data
Size 982 kB (982437 bytes)
Hash b83d8d3e9beecfac081f4e742d27661c
448330670bef8c2ee17baf6d2410ca974341cb88
5899c82b2f0563679a9c1ee79b5b28f2545864d95c7627c1a70e36a2f034497d
GET /common/images/icon_logo.jpg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/jpeg
content-length: 982437
last-modified: Mon, 30 Nov 2020 12:10:45 GMT
etag: "5fc4e145-efda5"
accept-ranges: bytes
unused62: 8096267
cache-control: max-age=256
expires: Wed, 14 Sep 2022 13:40:06 GMT
date: Wed, 14 Sep 2022 13:35:50 GMT
X-Firefox-Spdy: h2
platform.twitter.com/widgets.js
151.101.84.157200 OK 29 kB URL HTTP/2 platform.twitter.com/widgets.js
IP 151.101.84.157:0
File type Unicode text, UTF-8 text, with very long lines (33915)
Hash 8f378d26acad29e3c7e0980df0f09106
e10d14b287d22786ad0ae0a59e578282d700fba9
da23fe862ea27708533fc25453d57676907259c6dced22bd591493b323ef8d57
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 31 Aug 2022 20:41:50 GMT
cache-control: public, max-age=1800
content-type: application/javascript; charset=utf-8
etag: "f116c7e6b28e2aebeb60ade5bdc8e2b4+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:50 GMT
x-served-by: cache-iad-kcgs7200045-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 29220
X-Firefox-Spdy: h2
platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fyongg.duckdns.org
151.101.84.157200 OK 105 kB URL HTTP/2 platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fyongg.duckdns.org
IP 151.101.84.157:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size 105 kB (105445 bytes)
Hash 2c908e4df66c813c91eb41dd02376079
29df916bd525b6e273f6a62adb7d6df80789edfb
767b670476dae60cf2ddfda9bf3695fd9be641e1a338564b0d23b80cedaed567
GET /widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fyongg.duckdns.org HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 31 Aug 2022 20:40:57 GMT
cache-control: public, max-age=315360000
content-type: text/html; charset=utf-8
etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:51 GMT
x-served-by: cache-iad-kiad7000062-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 105445
X-Firefox-Spdy: h2
www.pubgmobile.com/en/images/footer_link_bg.png
23.36.76.227200 OK 1.6 kB URL HTTP/2 www.pubgmobile.com/en/images/footer_link_bg.png
IP 23.36.76.227:0
ASN #20940 Akamai International B.V.
File type PNG image data, 560 x 127, 8-bit/color RGBA, non-interlaced\012- data
Hash 92ae645b6114492e8c1c5464d949466a
1d27f2644c0f5e899e9478c78136a9bc94131150
f1bd509f6032d31635a91d57de9428b83929221b854768c38c8f1643877a9417
GET /en/images/footer_link_bg.png HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/png
content-length: 1630
last-modified: Mon, 21 Mar 2022 13:24:17 GMT
etag: "62387c81-65e"
accept-ranges: bytes
unused62: 8096267
cache-control: max-age=296
expires: Wed, 14 Sep 2022 13:40:47 GMT
date: Wed, 14 Sep 2022 13:35:51 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 319027b805e4395449d76299e8f321c9
b206fa12e4ed6b7aea8911d498dded8fd5743cf2
860b34dbd76e3be31d51d6c82d4d4b0200df4ad541c86eeaa05aa840c39ba207
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5080
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 13:35:51 GMT
Last-Modified: Wed, 14 Sep 2022 12:11:12 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 313
syndication.twitter.com/settings?session_id=f4e7b73de61df9a6f75223b159080d9f2f55055f
104.244.42.8200 OK 315 B URL HTTP/2 syndication.twitter.com/settings?session_id=f4e7b73de61df9a6f75223b159080d9f2f55055f
IP 104.244.42.8:0
File type JSON data\012- , ASCII text, with very long lines (724), with no line terminators
Hash 337895171bedda99072b721c70846968
b4d7f3bd6ecef71c0733dc21723344cb94e6a45f
798f4be409e38ca283cc33755def17dfabcaeae8b90b252bda96b5eea19e4eaa
GET /settings?session_id=f4e7b73de61df9a6f75223b159080d9f2f55055f HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 14 Sep 2022 13:35:50 GMT
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Wed, 14 Sep 2022 13:35:51 GMT
content-length: 315
content-encoding: gzip
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 109
x-connection-hash: 32b77bd7acbf1f21ba5129649e1590737a1eb240735f360e5f63e802da7f55c9
X-Firefox-Spdy: h2
platform.twitter.com/js/horizon_timeline.4836f7a62ef55f5880337b3b6602854f.js
151.101.84.157200 OK 2.7 kB URL HTTP/2 platform.twitter.com/js/horizon_timeline.4836f7a62ef55f5880337b3b6602854f.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (7729), with no line terminators
Hash 3c17247ed7ba792f01a2cf2353ee4bb5
2c7859cf99c15f591587c0aa12e530aea56485f6
4c22c49ebc4dc7795fd9954d80d2ddb1acb14e0a7bc282481c2805e94c0d119c
GET /js/horizon_timeline.4836f7a62ef55f5880337b3b6602854f.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 31 Aug 2022 20:40:49 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "34e2e8018518a39f9995c88495115818+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:51 GMT
x-served-by: cache-iad-kiad7000067-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 2685
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot/embeds?l=%7B%22experiment_key%22%3A%22tfw_horizon_timeline_12034%22%2C%22bucket%22%3A%22treatment%22%2C%22version%22%3Anull%2C%22data%22%3A%7B%7D%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663162537386%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22format_version%22%3A1%2C%22widget_origin%22%3A%22%22%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22ddg%22%2C%22section%22%3A%22tfw_horizon_timeline_12034%22%2C%22action%22%3A%22experiment%22%7D%7D&session_id=f4e7b73de61df9a6f75223b159080d9f2f55055f
104.244.42.8200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22experiment_key%22%3A%22tfw_horizon_timeline_12034%22%2C%22bucket%22%3A%22treatment%22%2C%22version%22%3Anull%2C%22data%22%3A%7B%7D%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663162537386%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22format_version%22%3A1%2C%22widget_origin%22%3A%22%22%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22ddg%22%2C%22section%22%3A%22tfw_horizon_timeline_12034%22%2C%22action%22%3A%22experiment%22%7D%7D&session_id=f4e7b73de61df9a6f75223b159080d9f2f55055f
IP 104.244.42.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22experiment_key%22%3A%22tfw_horizon_timeline_12034%22%2C%22bucket%22%3A%22treatment%22%2C%22version%22%3Anull%2C%22data%22%3A%7B%7D%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663162537386%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22format_version%22%3A1%2C%22widget_origin%22%3A%22%22%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22ddg%22%2C%22section%22%3A%22tfw_horizon_timeline_12034%22%2C%22action%22%3A%22experiment%22%7D%7D&session_id=f4e7b73de61df9a6f75223b159080d9f2f55055f HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 13:35:50 GMT
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Wed, 14 Sep 2022 13:35:51 GMT
content-length: 43
strict-transport-security: max-age=631138519
x-response-time: 116
x-connection-hash: 32b77bd7acbf1f21ba5129649e1590737a1eb240735f360e5f63e802da7f55c9
X-Firefox-Spdy: h2
syndication.twitter.com/srv/timeline-profile/screen-name/PUBGMOBILE?dnt=false&embedId=twitter-widget-0&frame=false&hideBorder=false&hideFooter=true&hideHeader=true&hideScrollBar=false&lang=en&maxHeight=inherit&origin=https%3A%2F%2Fyongg.duckdns.org%2F&sessionId=f4e7b73de61df9a6f75223b159080d9f2f55055f&showHeader=false&showReplies=false&theme=dark&transparent=false&widgetsVersion=1bfeb5c3714e8%3A1661975971032
104.244.42.8200 OK 15 kB URL HTTP/2 syndication.twitter.com/srv/timeline-profile/screen-name/PUBGMOBILE?dnt=false&embedId=twitter-widget-0&frame=false&hideBorder=false&hideFooter=true&hideHeader=true&hideScrollBar=false&lang=en&maxHeight=inherit&origin=https%3A%2F%2Fyongg.duckdns.org%2F&sessionId=f4e7b73de61df9a6f75223b159080d9f2f55055f&showHeader=false&showReplies=false&theme=dark&transparent=false&widgetsVersion=1bfeb5c3714e8%3A1661975971032
IP 104.244.42.8:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (65380), with no line terminators
Hash e0c994ea28e8d83189c19965c8326a63
00dafa82fd31f59e3ee1a50ed62b96f8c7c6df5b
d001b61dd80b6c8f52182392f940680a0273ef6c25f72d742ace3826f3894c00
GET /srv/timeline-profile/screen-name/PUBGMOBILE?dnt=false&embedId=twitter-widget-0&frame=false&hideBorder=false&hideFooter=true&hideHeader=true&hideScrollBar=false&lang=en&maxHeight=inherit&origin=https%3A%2F%2Fyongg.duckdns.org%2F&sessionId=f4e7b73de61df9a6f75223b159080d9f2f55055f&showHeader=false&showReplies=false&theme=dark&transparent=false&widgetsVersion=1bfeb5c3714e8%3A1661975971032 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 13:35:51 GMT
etag: "20141-6I4lzHDH5cFByVcrghPF8JJ7Ppo"
server: tsa_o
content-type: text/html; charset=utf-8
cache-control: must-revalidate, max-age=60
x-xss-protection: 0
strict-transport-security: max-age=631138519
content-encoding: gzip
content-length: 14953
x-response-time: 542
x-connection-hash: 32b77bd7acbf1f21ba5129649e1590737a1eb240735f360e5f63e802da7f55c9
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/chunks/runtime-c5040a30986fc1d092cc.js
151.101.84.157200 OK 2.1 kB URL HTTP/2 platform.twitter.com/_next/static/chunks/runtime-c5040a30986fc1d092cc.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (3831), with no line terminators
Hash ea7694ee2573238a6cf6228e899aa861
afa4dcc5c4333f6c590e8e9af146e5b57612f573
93975e48b4114496ed84f84608e9ae4485854c7abe9dcaefe7ee9a98ef4d6315
GET /_next/static/chunks/runtime-c5040a30986fc1d092cc.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Sep 2022 19:07:42 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "e3bac7bbcce0b4c5a7d1d12f33d62321+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-iad-kjyo7100052-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 2103
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/chunks/modules.c7def0268c66f6a548ed.js
151.101.84.157200 OK 96 kB URL HTTP/2 platform.twitter.com/_next/static/chunks/modules.c7def0268c66f6a548ed.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash e44429ed410e85b6513d5b732c3261a3
126e116e2e1da2d1b6cbe82576aa17aec7135fd5
80f9944656c76f5e49f8419e1a0aa60e60f45e73c4948cb8dcc7f8a9efc95c2e
GET /_next/static/chunks/modules.c7def0268c66f6a548ed.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 17 Aug 2022 17:37:21 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "51acddf0dbfab928b183f36c1ee67619+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-iad-kjyo7100085-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 95749
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/chunks/main-e9db78f5e7b3d83edd5e.js
151.101.84.157200 OK 85 B URL HTTP/2 platform.twitter.com/_next/static/chunks/main-e9db78f5e7b3d83edd5e.js
IP 151.101.84.157:0
File type ASCII text, with no line terminators
Hash b8b2d50ef6298a552e16e83cbfa53a6e
3daca5bf4c3bb217c9a32ded540e661136bff3c8
f53e2f8b049c387ad83b59cd40790d8c642493499a844a91fad0f816078a0748
GET /_next/static/chunks/main-e9db78f5e7b3d83edd5e.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 17 Aug 2022 17:37:20 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "8e33207e7b788da9abde5b6d33da0b00+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-iad-kjyo7100169-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 85
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/chunks/pages/_app-6b59be76f6e3292c4dd6.js
151.101.84.157200 OK 668 B URL HTTP/2 platform.twitter.com/_next/static/chunks/pages/_app-6b59be76f6e3292c4dd6.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (1338), with no line terminators
Hash 5f7471f4f504b1272dfa395b93cba6b3
cd2dc0ca68a173fbc556f3def8f8c600ad65289f
87e7085e6737c1c42df4905661aa767ec05d5eefbccbba13c2c1f096742dfbed
GET /_next/static/chunks/pages/_app-6b59be76f6e3292c4dd6.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Sep 2022 19:07:41 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "be3e428d416daa9027cecf70b5f26bf9+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-iad-kcgs7200123-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 668
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/chunks/pages/timeline-profile/screen-name/%5BscreenName%5D-568c81a96d7917ec4ebb.js
151.101.84.157200 OK 1.3 kB URL HTTP/2 platform.twitter.com/_next/static/chunks/pages/timeline-profile/screen-name/%5BscreenName%5D-568c81a96d7917ec4ebb.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (12981), with no line terminators
Hash 395898559125303a189a0ed3faf61677
59147e44763a2b010782f49eadc605f1ee81a023
0e55c4299279db956c3b5f27ec683379cca47c9161d37ffce593721f94049ec6
GET /_next/static/chunks/pages/timeline-profile/screen-name/%5BscreenName%5D-568c81a96d7917ec4ebb.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Sep 2022 19:07:42 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "91226f111c965b9d32e61425d0e4a158+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-iad-kiad7000045-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 1258
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/fJUFW1qGayM-Fl0txyHpE/_ssgManifest.js
151.101.84.157200 OK 60 B URL HTTP/2 platform.twitter.com/_next/static/fJUFW1qGayM-Fl0txyHpE/_ssgManifest.js
IP 151.101.84.157:0
File type ASCII text, with no line terminators
Hash 3a3a21a8555661b82b582a230c270275
4b95dd3d9816126f2b3231ef3ee11fcfa646e015
6ec0f0d1830724535d444117c7724130da4633be58b3cf7bef512fdaab631429
GET /_next/static/fJUFW1qGayM-Fl0txyHpE/_ssgManifest.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Sep 2022 19:07:41 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "abee47769bf307639ace4945f9cfd4ff+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-iad-kcgs7200124-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 60
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/chunks/2.691622e4391d1973cb65.js
151.101.84.157200 OK 7.7 kB URL HTTP/2 platform.twitter.com/_next/static/chunks/2.691622e4391d1973cb65.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (23122), with no line terminators
Hash 4e68298e4344aa0d3d13719534a3438e
ac46127e7ea4b8a1d548414dcc7760c87c92afa6
b1225020ac004667f5143b07e601c42f334723d978141edaf2f1288d34ec9e68
GET /_next/static/chunks/2.691622e4391d1973cb65.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 17 Aug 2022 17:37:20 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "942b5b928a24465d1906b4716131d896+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-iad-kcgs7200030-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 7674
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/chunks/13.1400171dc985d5f47aaf.js
151.101.84.157200 OK 12 kB URL HTTP/2 platform.twitter.com/_next/static/chunks/13.1400171dc985d5f47aaf.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (37725), with no line terminators
Hash 9f7c72125ab146f6b0ab3d0cb2187181
4b8dc9e0963f9fcdeab3874ece94144311e46ffc
a22e46bf2f6a6cbcda2838168a3d4bc6bb653c0e3c3d2eb08d9f8a5eb44244ad
GET /_next/static/chunks/13.1400171dc985d5f47aaf.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Sep 2022 19:07:42 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "15b5ec14cb278c05621cea19cb44555b+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-iad-kjyo7100072-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 11940
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/chunks/4.096fc3966cc81b0f4642.js
151.101.84.157200 OK 1.2 kB URL HTTP/2 platform.twitter.com/_next/static/chunks/4.096fc3966cc81b0f4642.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (2496), with no line terminators
Hash e91000050268bee96fc0effd9f0b2a6d
eee109f92ccc5648f86ae6a6991cc36bd803e2d8
0efd3154138ae2950333e0d597097e8026b190363fc345d41c60fbafd0f68e54
GET /_next/static/chunks/4.096fc3966cc81b0f4642.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Sep 2022 19:07:42 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "74fc8570e9c4ef27736b0fd8e9534b6f+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-iad-kiad7000162-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 1249
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/chunks/0.8f205dbb7b06b224e307.js
151.101.84.157200 OK 187 kB URL HTTP/2 platform.twitter.com/_next/static/chunks/0.8f205dbb7b06b224e307.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 187 kB (186671 bytes)
Hash c53840ee83134ba334814d56e1897678
5870bb7d87171b967d6bf5e59547810ca6352260
f1f27040417ef7a2d6eb9a66943b4d0a4ff14d86e0088d7cfe7958301efd6ab3
GET /_next/static/chunks/0.8f205dbb7b06b224e307.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 17 Aug 2022 17:37:22 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "11f6449263029b9f59f18afa52cc99ed+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-iad-kcgs7200092-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 186671
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/chunks/ondemand.Dropdown.5730e0a49ea6a6dde3b4.js
151.101.84.157200 OK 2.6 kB URL HTTP/2 platform.twitter.com/_next/static/chunks/ondemand.Dropdown.5730e0a49ea6a6dde3b4.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (6637), with no line terminators
Hash 800e12bfec1a8d00e991a4656176410a
26f4ab4196d79d1c7e0ff598e6776f06140a4990
fe518fe09b34dc60c540420f7884228a1f3aa6c4f8b33710d85bb0ed1627fed1
GET /_next/static/chunks/ondemand.Dropdown.5730e0a49ea6a6dde3b4.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Sep 2022 19:07:42 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "deb1205c6e01f2720f75bbd978f5925b+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-iad-kiad7000127-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 2597
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/1f929.svg
104.244.43.131200 OK 640 B URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/1f929.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1270), with no line terminators
Hash 0f0b95b6177aa258d1ef63cfd27c27da
a3183aab483df4b675fdf372c284f4b0fd753d37
f4e898f9b2b334d16f2995ccad7bba6c49eea9b1de5e5e643229f5e31c3dc5fa
GET /emoji/v2/svg/1f929.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/svg+xml
etag: "/6kvwsjwp4HVrp/77O+gVA=="
expires: Fri, 10 Jun 2022 08:33:39 GMT
last-modified: Wed, 21 Feb 2018 22:31:14 GMT
strict-transport-security: max-age=631138519
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-fty21368-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 640
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/1f4f2.svg
104.244.43.131200 OK 218 B URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/1f4f2.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash 46411731164ce1b34b9d6dd1a553a6a8
1025c7170f071b08cfa50fa5fd1000bfba77602c
936372005a9f3a4acde6b1d9c25541db83efca2f02fa3ba1c990a71da3a67aae
GET /emoji/v2/svg/1f4f2.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "FLgxf9DPH40eionebIQcdg=="
expires: Wed, 08 Jun 2022 10:50:59 GMT
content-type: image/svg+xml
last-modified: Mon, 17 Sep 2018 19:15:41 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-fty13724-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 218
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/1f4a5.svg
104.244.43.131200 OK 510 B URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/1f4a5.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (842), with no line terminators
Hash ff27ba60235ab333c13b17fdddfe0c46
1603045040556444cebc68b2deee5bb4a6ee6619
3208d9e2ed85785a3208d4b754e2329e22d0089a6203c0c96fc12364ef443b2b
GET /emoji/v2/svg/1f4a5.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "0Zj5K5kRx/27ErqmlKgZog=="
expires: Fri, 04 Nov 2022 08:13:12 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:31:04 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-fty21377-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 510
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/2705.svg
104.244.43.131200 OK 318 B URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/2705.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (482), with no line terminators
Hash f3e9154302b8b2cebffda2e8daa0bfef
3ab0bb35c9ce28a20bc3b9d1688cbbc57fa1dc14
7e0f796b2c8094291c040b84fcd92510092c277fee3811ab6e42b1bcc09d8156
GET /emoji/v2/svg/2705.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "IS4w5HIyvgMDOofcWO2qlQ=="
expires: Thu, 16 Mar 2023 06:40:08 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:32:28 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-fty21328-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 318
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/1f3d6.svg
104.244.43.131200 OK 680 B URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/1f3d6.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1388), with no line terminators
Hash dfd08ee0e24f8dc8fbf35ae3fb6c37da
e665d528e9a98ae8ebe58f80655bda05beefe5ed
431e20bcd0a8bb96ef86420178be8c652c0fc9b44f8f2c000109731da86b6c39
GET /emoji/v2/svg/1f3d6.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "5rZM/sczPIOPqO+ZSFT83w=="
expires: Thu, 16 Mar 2023 07:38:27 GMT
content-type: image/svg+xml
last-modified: Thu, 17 May 2018 19:32:36 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-fty21348-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 680
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/1f40a.svg
104.244.43.131200 OK 577 B URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/1f40a.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1201), with no line terminators
Hash 3613965e06fb3a7d2ed53d9915dee4d7
6c7dfbea87878bb6e74910ce318a232574c7d8c1
a84a09dce4562206aeed8101644953792df62f71f6aaf64204a9a9c05b965958
GET /emoji/v2/svg/1f40a.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "/6zgKOh90Vbbf3ctUAkhHg=="
expires: Thu, 16 Mar 2023 07:39:51 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:30:54 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-fty21380-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 577
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/1f389.svg
104.244.43.131200 OK 1.4 kB URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/1f389.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3153), with no line terminators
Hash 9150b1a80e9092976df4c598f67b009a
a06b31c8b56d9bc80123c9a0062e1e9aeeb48e7f
46a5652add1705de2a358f144d4b94d064b55f5027ed121d6fb8f19029646264
GET /emoji/v2/svg/1f389.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/svg+xml
etag: "sFKkvvV8Gqc818/1vE+2HQ=="
expires: Wed, 15 Jun 2022 08:08:00 GMT
last-modified: Wed, 21 Feb 2018 22:30:50 GMT
strict-transport-security: max-age=631138519
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-fty21329-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 1369
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/1f62f.svg
104.244.43.131200 OK 423 B URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/1f62f.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (749), with no line terminators
Hash 14e39db836192ce7486362718cd0da19
ce19a6d5142a0442658e66f6595841cefe9272bf
b729c29ca80c71cbaa304038239bf911a34eb9ab5a1e999adb4e14c25c4cc474
GET /emoji/v2/svg/1f62f.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "8tLIhccdfJi1P8FSFuNOhw=="
expires: Wed, 31 May 2023 08:31:52 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:31:08 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-fty21344-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 423
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/chunks/1.d77d8092171c9a9ccc4c.js
151.101.84.157200 OK 1.5 kB URL HTTP/2 platform.twitter.com/_next/static/chunks/1.d77d8092171c9a9ccc4c.js
IP 151.101.84.157:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2969), with no line terminators
Hash cb0d9bf3f9b5379ec4a2766cbd08b721
daa3be952f011d3d4c1549881b29eeee6988fa8b
3b0d6c4cdc2696fdbefacec32fa49cda3cc7b39c834b0ee1ac2ec6180dc359aa
GET /_next/static/chunks/1.d77d8092171c9a9ccc4c.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Sep 2022 19:07:42 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "d951ba70c2a27d88a8b99a82c9a7361b+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-iad-kcgs7200101-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 296589
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/1f3a8.svg
104.244.43.131200 OK 387 B URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/1f3a8.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (656), with no line terminators
Hash e7b8f55c478b08b65505ce393afca7d5
90ad410322a7b03a55424474014a26699eda2c21
b5a0b1c0537c382d38fd23040ea04094c4c03f58ef896da4d657e59171f5d982
GET /emoji/v2/svg/1f3a8.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/svg+xml
etag: "XN9yU1/SNrKn5quOSCazpA=="
expires: Fri, 10 Jun 2022 06:44:23 GMT
last-modified: Wed, 21 Feb 2018 22:30:50 GMT
strict-transport-security: max-age=631138519
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-fty21383-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 387
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/1f4c5.svg
104.244.43.131200 OK 777 B URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/1f4c5.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1923), with no line terminators
Hash 36a8bee11d04021d318ccee48a112541
0e6d1c39212e5a287f74597af20dde84c99e28b0
7f30293c652da180ab2e49daec3e8ace0b83c3b49c0f1d019755ef2509c10b8c
GET /emoji/v2/svg/1f4c5.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "xfcio3p+OAC3imHD69LddA=="
expires: Thu, 15 Jun 2023 08:05:15 GMT
content-type: image/svg+xml
last-modified: Mon, 13 Jul 2020 16:54:02 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-fty13729-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 777
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/1f517.svg
104.244.43.131200 OK 302 B URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/1f517.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (502), with no line terminators
Hash 1c677789f1f87398bdd4bb9b6189c4f2
51e2ecdbb8828310a8c3c54ef81a102c15a40493
1cf9971e15e8d0802349ea7726b6b7bf5d87ee683df608d3cecf95a5f3737b74
GET /emoji/v2/svg/1f517.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "fBOqDe9sy2ky9H3t0z9ZwQ=="
expires: Mon, 22 Aug 2022 07:29:34 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:31:06 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-fty13721-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 302
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/1f63c.svg
104.244.43.131200 OK 1.1 kB URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/1f63c.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2414), with no line terminators
Hash 70f89c68c950e27a41aa9e87cbff7fdc
87ef801624abe0d2ed2bcca935c852cb674f40d4
126b2070d0b1889a50ed8f18a680f35f45a78b73089c2d07c82f962db2bc0032
GET /emoji/v2/svg/1f63c.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "4lEoUQwmsKrZ1xvGz0nfZw=="
expires: Fri, 28 Oct 2022 08:24:06 GMT
content-type: image/svg+xml
last-modified: Fri, 18 Jan 2019 21:00:14 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-fty21364-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 1141
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/1f5fa.svg
104.244.43.131200 OK 2.7 kB URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/1f5fa.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (5682), with no line terminators
Hash 75a44d4884635cefa265f71d6b879502
626bce78d8670773c4ab69cb10d805e7b8b76a97
30af9a622d461dce55165ec8a55e8409168763676d1edbdf05408d49d1943a9b
GET /emoji/v2/svg/1f5fa.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "iN4KQa6wn8Oz0SWNH5QijQ=="
expires: Thu, 01 Jun 2023 05:40:34 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:31:08 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-fty21373-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 2700
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/2600.svg
104.244.43.131200 OK 310 B URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/2600.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (759), with no line terminators
Hash afbd64874b85df1f9841ee9ca5799a90
3162438703afce71af1b541f24a3976cf3499a16
f8f948d1f6cb1d27c31f6b5c2fceb0a416145be027e1402aea066c2419edd7e0
GET /emoji/v2/svg/2600.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/svg+xml
etag: "EDjO5HoKgxPcLUAGFF/O5g=="
expires: Fri, 10 Jun 2022 07:56:15 GMT
last-modified: Wed, 21 Feb 2018 22:32:26 GMT
strict-transport-security: max-age=631138519
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-fty21366-FTY, cache-bma1673-BMA
x-cache: HIT, MISS
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 310
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/1f6a8.svg
104.244.43.131200 OK 577 B URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/1f6a8.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1108), with no line terminators
Hash 7f943e8cf2f0d893d64b1620b5c4418f
0d5b54fc73ecf6fb91588a148201cfe470bc7c02
e5f1c4800121406a7bdbcd97933a2e675d3c0048e36d1d9f3c4b2f84feb1483f
GET /emoji/v2/svg/1f6a8.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "tW5BCICP+eiGx1oTXM23hA=="
expires: Thu, 10 Nov 2022 10:21:36 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:31:11 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21352-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 577
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/1f3f0.svg
104.244.43.131200 OK 477 B URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/1f3f0.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1010), with no line terminators
Hash 197f226b9a4c6d93b22662f910b24524
bb35d0d0205029217ab08094dd4dfdaeb9225710
21877d248bd53d059ba23c1566c85d7136eab81485a61665305bd14ae6a7e71c
GET /emoji/v2/svg/1f3f0.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "7BXVtQFBbktycMsd0WJGMQ=="
expires: Wed, 07 Jun 2023 09:30:59 GMT
content-type: image/svg+xml
last-modified: Thu, 16 Apr 2020 20:41:38 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21336-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 477
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/1f4ad.svg
104.244.43.131200 OK 336 B URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/1f4ad.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (490), with no line terminators
Hash 0e1e76ea73559b290cc09824ca054115
6cd5c2da6a40bf01d2b2fbbad21f4c69bf2cce5b
bea52b82d562e56cffcb14f0f87c5e29856591ee49367de9cf899c0fb902bacc
GET /emoji/v2/svg/1f4ad.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "CTPEhghoJSvvwFUJFlodtA=="
expires: Wed, 15 Mar 2023 05:46:40 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:31:04 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21369-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 336
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/1f914.svg
104.244.43.131200 OK 830 B URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/1f914.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1573), with no line terminators
Hash d329c92224ab413eca1baf3499692881
c41c2c257763b60a6f97881e88eda8133e79780b
19ffc0ca4c16b2101f3f82857df084f68f8e56ae9dec5487cd018717a532b3bc
GET /emoji/v2/svg/1f914.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "Jjp/TutvaeRtlp+keRiFkg=="
expires: Fri, 07 Oct 2022 06:57:38 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:31:13 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty13724-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 830
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/1f3dd.svg
104.244.43.131200 OK 1.5 kB URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/1f3dd.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3201), with no line terminators
Hash 975aa940aaf17d0c0902bebbcbc54b6f
b2daf3c4a76550ec903c76892d35d4a9b15cb17e
684aedf9a8ad3aca5c575af63a7f86e2105f09bcee9aef1aa184183a9c2f2344
GET /emoji/v2/svg/1f3dd.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "G9IzDpKscawm/mtatfrn3Q=="
expires: Wed, 26 Apr 2023 06:44:32 GMT
content-type: image/svg+xml
last-modified: Thu, 17 May 2018 19:32:37 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty13723-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 1507
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/1f525.svg
104.244.43.131200 OK 496 B URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/1f525.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (822), with no line terminators
Hash 86a4b822aec109c562b67b24501b77f0
814cf2cce4cfe9892fbb43fcac8a66cd60811c36
42e702e299a6769e24e6a50b1bed3d44bc6303691a5385bff20f84983ff2c0b2
GET /emoji/v2/svg/1f525.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "ZwaaE+AGNFzijsxYHy7RYg=="
expires: Fri, 10 Jun 2022 07:03:53 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:31:06 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21382-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 496
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/1f698.svg
104.244.43.131200 OK 851 B URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/1f698.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1803), with no line terminators
Hash 134dcb4f4666e55b328a34c671f9b6c9
163b51ed3c32693d835098ba724d39b1320d1392
81f9af010b03d945c2f75f2df87bf103b036160a3c160419c2ab48fd0246bdc3
GET /emoji/v2/svg/1f698.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "ZyJhHYHk6PE0miR2tI9aQA=="
expires: Wed, 12 Jul 2023 00:06:32 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:31:11 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21378-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 851
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/1f3c6.svg
104.244.43.131200 OK 647 B URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/1f3c6.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1237), with no line terminators
Hash 8bda34f55f8015bc184121088d802eb3
8e7d4edf374656c9ea550e41bcf0337adbefa470
68f9eef2c4e75218bc680c4e391ca48fa4ea112a82e9e8ab490dd18c68602fa7
GET /emoji/v2/svg/1f3c6.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "CgDoZcRF1C37n2S+36uM+A=="
expires: Fri, 15 Jul 2022 08:25:06 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:30:52 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21347-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 647
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/1f60d.svg
104.244.43.131200 OK 517 B URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/1f60d.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (941), with no line terminators
Hash 1b1b9d4f4c427f574c643fd9ce1443dc
51a3dd1d23acc243c04dddd16d437430e1b9f043
40bc211d8e8ff715ccce4606b574003a0f8537f311b351df733b8a628809289c
GET /emoji/v2/svg/1f60d.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "5V9VK9CxzzaLRmQiQIyEAQ=="
expires: Sat, 18 Jun 2022 06:38:05 GMT
content-type: image/svg+xml
last-modified: Fri, 10 Aug 2018 17:45:01 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21326-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 517
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/1f381.svg
104.244.43.131200 OK 359 B URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/1f381.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (656), with no line terminators
Hash ba368ed073b9f030934fe9cc1e780b01
a910d3fa2004cd8ec1a51baa682b7011d9fe420f
5d019dbbd6d1d730353931f3d52267b88d285df500e7cf6a0192acfe3b6f7838
GET /emoji/v2/svg/1f381.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "en/zXyJ9ZZ6179gX4gUhdA=="
expires: Thu, 10 Nov 2022 10:56:53 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:30:50 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21357-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 359
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/1f447.svg
104.244.43.131200 OK 361 B URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/1f447.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (558), with no line terminators
Hash e7bbc34baf6a224b6c198bcd589b36f2
13731cdada03b4b1e7a1c1a71d112b99125b26da
3355531d098e09b18230772f999236564a6908dccae138a9afab8194f07b2657
GET /emoji/v2/svg/1f447.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/svg+xml
etag: "mFuy0jmL5x4baLx+IQPJkw=="
expires: Wed, 08 Jun 2022 10:51:43 GMT
last-modified: Wed, 21 Feb 2018 22:30:55 GMT
strict-transport-security: max-age=631138519
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21382-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 361
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/26a0.svg
104.244.43.131200 OK 331 B URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/26a0.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (548), with no line terminators
Hash ef25a88edd59ffba5740333663b1386d
79a33c2889fe940346819736880f31b4b6b1bd24
0d1c2aa233fa1b90aab8cece920d5776a90a0d03ba9c9c7163d6e895b15d1ef3
GET /emoji/v2/svg/26a0.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/svg+xml
etag: "KJZzhY4G36Lg46fuYQw6MA=="
expires: Thu, 09 Jun 2022 06:47:43 GMT
last-modified: Wed, 21 Feb 2018 22:32:27 GMT
strict-transport-security: max-age=631138519
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21321-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 331
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/1f92f.svg
104.244.43.131200 OK 1.5 kB URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/1f92f.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3078), with no line terminators
Hash b69f1288deb51921ceea2840dd82e5f5
a7b882ce07c85e0cb1f89d8a2f7e834f3b41aa7d
ec43b734fe9eeb1dd8332010221c3fbee092959afc3262c0213f258b18a1f656
GET /emoji/v2/svg/1f92f.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "3epFAKJS+Ay/bWyS2xUXjg=="
expires: Fri, 14 Oct 2022 07:15:40 GMT
content-type: image/svg+xml
last-modified: Wed, 15 Apr 2020 20:59:41 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21381-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 1488
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/1fa96.svg
104.244.43.131200 OK 525 B URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/1fa96.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1276), with no line terminators
Hash 308a2f95316974f514d0448d6bdfd4d4
11cbe86e87b454423543ba39bf5a3a904bd0230e
4f036655957faf55ca7d0fcc2787c0d09f06c3367f5d162a5ac9c50324f339c8
GET /emoji/v2/svg/1fa96.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "2cY2D+clpAVJafK1lQbcDQ=="
expires: Wed, 03 May 2023 06:48:19 GMT
content-type: image/svg+xml
last-modified: Fri, 08 May 2020 21:01:17 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21358-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 525
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/2697.svg
104.244.43.131200 OK 626 B URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/2697.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1232), with no line terminators
Hash 543be3a2f9c2a5aeae08c4a557e988d2
332d9cdc8e7ac25196adc8fe6973bd3a0d2cd5b5
8ad64caf7d360f8cb0dede3b098e0c19d6f2ec0a115fdbd03416121f86043c50
GET /emoji/v2/svg/2697.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "u+M/4zBa1dMhIVcBRYQxfw=="
expires: Thu, 31 Aug 2023 09:11:30 GMT
content-type: image/svg+xml
last-modified: Wed, 11 Apr 2018 17:51:29 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty13727-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 626
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/1f369.svg
104.244.43.131200 OK 1.5 kB URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/1f369.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3174), with no line terminators
Hash 3682b33ae77d439a001acb6f83479ada
916e8659a99f01fa4c71ee96426ad655f3fd1bc5
619cbb69c39938ec5e87628339c2a27f01a90f3e322a1d08cc815d2563338025
GET /emoji/v2/svg/1f369.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "tZjxJLhvkdna7SAtZOKRaQ=="
expires: Thu, 06 Jul 2023 07:11:38 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:30:50 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21376-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 1472
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/1f440.svg
104.244.43.131200 OK 437 B URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/1f440.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1060), with no line terminators
Hash 89527706c13401fc860738589367bc1b
a5924fdd78bbfb5736204351c00076a3a2b830ab
85d3c75f4b838af7f72f505770d757dbaddc47628a450e5a73551a93d6931f4c
GET /emoji/v2/svg/1f440.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "TFp3qJcWNSaG9ZCm8BR3DA=="
expires: Fri, 26 Aug 2022 06:44:32 GMT
content-type: image/svg+xml
last-modified: Wed, 11 Apr 2018 17:50:49 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21356-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 437
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/1f3af.svg
104.244.43.131200 OK 505 B URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/1f3af.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1029), with no line terminators
Hash 5c6606da57b0a2de0de1f2127f3bae64
08330f8248df45cc02b084278caccf8d2ef089d1
8a593ddcf797ba9d2a21ec8dfb711ae68ad7208831633c70adab755b6f396a3c
GET /emoji/v2/svg/1f3af.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "kOuDh3EyhPhU2Eroal/4EQ=="
expires: Thu, 09 Jun 2022 06:48:28 GMT
content-type: image/svg+xml
last-modified: Wed, 10 Mar 2021 20:22:54 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty13729-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 505
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/2764.svg
104.244.43.131200 OK 268 B URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/2764.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (368), with no line terminators
Hash 95e1d04b43b41695bcabf7c8f4b121cf
785b7a4f7b0819f76b228ee74e2bc209d7a32d57
398e85423b6964eb4dbd3581bfb4eacfa5c7db0eabb8506cd9ee1838ab8f26af
GET /emoji/v2/svg/2764.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/svg+xml
etag: "BIPytkjcyYbQE4UGIFKuHA=="
expires: Thu, 09 Jun 2022 07:29:22 GMT
last-modified: Fri, 10 Aug 2018 17:46:01 GMT
strict-transport-security: max-age=631138519
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21366-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 268
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/1f975.svg
104.244.43.131200 OK 746 B URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/1f975.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1454), with no line terminators
Hash 6a8e1c1fb86d780a2682bed36c6d732c
3adc92d119f04367f04ccccabe3515f224b2c245
e14d3c075b428d1f8091e3ad5b04cbd091c5a0a7973c67e703a322e55cc64139
GET /emoji/v2/svg/1f975.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/svg+xml
etag: "NyUYsTXUFPku3NBrieFGiw=="
expires: Fri, 10 Jun 2022 06:26:08 GMT
last-modified: Mon, 04 Jun 2018 23:15:19 GMT
strict-transport-security: max-age=631138519
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty13720-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 746
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/21aa.svg
104.244.43.131200 OK 247 B URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/21aa.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (336), with no line terminators
Hash b710a3b3dc0ce7281946381cdc4ffc74
26cccd23062f6da4c0cbda42b4bac14c53396fdc
a9566ce3a4ea5f4f9a86cb4e9c4ac94bf836917a6360f2d2d69eaa7c9d1ba23a
GET /emoji/v2/svg/21aa.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "OXzCp+50O/wARwGvyBi4Sg=="
expires: Wed, 23 Aug 2023 07:16:01 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:32:26 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21341-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 247
X-Firefox-Spdy: h2
abs-0.twimg.com/emoji/v2/svg/1f446.svg
104.244.43.131200 OK 363 B URL HTTP/2 abs-0.twimg.com/emoji/v2/svg/1f446.svg
IP 104.244.43.131:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (553), with no line terminators
Hash 552aee055bb365387c441bd35fd7f0e3
4ffa4b50f43d8c4369c852096dbf4e8d6516d668
b352707d26b0f8b1c9e6c4a8c7fd829ba7e39b28df99674260790ae70e78c393
GET /emoji/v2/svg/1f446.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "hj1Hrk/dpNeDxX3ZxJa31g=="
expires: Thu, 16 Mar 2023 06:38:49 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:30:55 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21328-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 363
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/chunks/vendors~ondemand.LottieWeb.84a69543ec64b75cae2a.js
151.101.84.157200 OK 42 kB URL HTTP/2 platform.twitter.com/_next/static/chunks/vendors~ondemand.LottieWeb.84a69543ec64b75cae2a.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 80850064250ad67b82f8748a8b8da9fc
eb412501982d2a28a1651b19da0f238d595351fa
81fa18b369d524ebbb7407ca8f97e473217ef387f845af838706f08096597383
GET /_next/static/chunks/vendors~ondemand.LottieWeb.84a69543ec64b75cae2a.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 17 Aug 2022 17:37:21 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "72929dff5e574c1b877555fd36c7683a+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-iad-kiad7000089-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 41941
X-Firefox-Spdy: h2
abs.twimg.com/sticky/animations/like.3.json
152.199.21.141200 OK 1.6 kB URL HTTP/2 abs.twimg.com/sticky/animations/like.3.json
IP 152.199.21.141:0
File type ASCII text, with very long lines (19834)
Hash 07da5ecc2e4029fc7d3befffa5f3c536
1b57e1656f3cbf73adc77bf2a1a732b7882b2aca
faffe9c75fe31ec6ba41e043e88b0ad50c13ad847a468e1b34ecde308fa6f569
GET /sticky/animations/like.3.json HTTP/1.1
Host: abs.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://syndication.twitter.com/
Origin: https://syndication.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 1211055
content-type: application/json
date: Wed, 14 Sep 2022 13:35:53 GMT
etag: "b9munHAdxNyPtNl2GaO2bw=="
expires: Thu, 14 Sep 2023 13:35:53 GMT
last-modified: Tue, 15 Feb 2022 21:43:54 GMT
server: ECAcc (ska/F796)
strict-transport-security: max-age=631138519
surrogate-key: twitter-assets
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
vary: Accept-Encoding
x-cache: HIT
x-connection-hash: b2416fb8c94532ef46b2069f2a8d4ab6aa32507f9132cb6f6efe61940801c5b3
x-content-type-options: nosniff
x-response-time: 9
x-ton-expected-size: 19835
content-length: 1627
X-Firefox-Spdy: h2
pbs.twimg.com/media/FclmsdMXgAEJNRj.jpg
151.101.84.159200 OK 169 kB URL HTTP/2 pbs.twimg.com/media/FclmsdMXgAEJNRj.jpg
IP 151.101.84.159:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x675, components 3\012- data
Size 169 kB (169118 bytes)
Hash 7ec5115a70fc21e3aba1010da8e997fd
d78d5882a816ca355041c61f9c682d2b25ce64de
ce2bcbe5870ca759678f60d7983fedad76ecae1ab399e239dc0965239340ad39
GET /media/FclmsdMXgAEJNRj.jpg HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=604800, must-revalidate
last-modified: Wed, 14 Sep 2022 03:58:29 GMT
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
content-type: image/jpeg
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-cache: HIT, HIT
x-tw-cdn: FT
x-served-by: cache-lhr7325-LHR, cache-bma1647-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 169118
X-Firefox-Spdy: h2
pbs.twimg.com/ext_tw_video_thumb/1567195213629636609/pu/img/XVhMbW8LYbdrM5PQ.jpg
151.101.84.159200 OK 126 kB URL HTTP/2 pbs.twimg.com/ext_tw_video_thumb/1567195213629636609/pu/img/XVhMbW8LYbdrM5PQ.jpg
IP 151.101.84.159:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 675x1200, components 3\012- data
Size 126 kB (126251 bytes)
Hash 669f32020bc07051da04a52987f73732
2d54ec3cfd737fddd17f49849af151df77de99a6
9cb7942006e5388061c8c2bedcf2ef9b8b09f395c631940f927a7dc816557869
GET /ext_tw_video_thumb/1567195213629636609/pu/img/XVhMbW8LYbdrM5PQ.jpg HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=604800, must-revalidate
last-modified: Tue, 06 Sep 2022 16:55:10 GMT
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
content-type: image/jpeg
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-cache: HIT, HIT
x-tw-cdn: FT
x-served-by: cache-lhr7365-LHR, cache-bma1647-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 126251
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot?l=%7B%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663162539561%2C%22event_namespace%22%3A%7B%22action%22%3A%22results%22%2C%22client%22%3A%22tfw%22%2C%22page%22%3A%22timeline-profile%22%2C%22section%22%3A%22main%22%7D%2C%22context%22%3A%22horizon%22%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22dnt%22%3Afalse%2C%22widget_id%22%3A%22twitter-widget-0%22%2C%22widget_origin%22%3A%22https%3A%2F%2Fyongg.duckdns.org%2F%22%2C%22widget_frame%22%3A%22false%22%2C%22widget_partner%22%3A%22%22%2C%22widget_site_screen_name%22%3A%22%22%2C%22widget_site_user_id%22%3A%22%22%2C%22widget_creator_screen_name%22%3A%22%22%2C%22widget_creator_user_id%22%3A%22%22%2C%22widget_iframe_version%22%3A%2254fb0dd%3A1662057638149%22%2C%22widget_data_source%22%3A%22screen-name%3APUBGMOBILE%22%7D&session_id=f4e7b73de61df9a6f75223b159080d9f2f55055f
104.244.42.8200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot?l=%7B%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663162539561%2C%22event_namespace%22%3A%7B%22action%22%3A%22results%22%2C%22client%22%3A%22tfw%22%2C%22page%22%3A%22timeline-profile%22%2C%22section%22%3A%22main%22%7D%2C%22context%22%3A%22horizon%22%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22dnt%22%3Afalse%2C%22widget_id%22%3A%22twitter-widget-0%22%2C%22widget_origin%22%3A%22https%3A%2F%2Fyongg.duckdns.org%2F%22%2C%22widget_frame%22%3A%22false%22%2C%22widget_partner%22%3A%22%22%2C%22widget_site_screen_name%22%3A%22%22%2C%22widget_site_user_id%22%3A%22%22%2C%22widget_creator_screen_name%22%3A%22%22%2C%22widget_creator_user_id%22%3A%22%22%2C%22widget_iframe_version%22%3A%2254fb0dd%3A1662057638149%22%2C%22widget_data_source%22%3A%22screen-name%3APUBGMOBILE%22%7D&session_id=f4e7b73de61df9a6f75223b159080d9f2f55055f
IP 104.244.42.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot?l=%7B%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663162539561%2C%22event_namespace%22%3A%7B%22action%22%3A%22results%22%2C%22client%22%3A%22tfw%22%2C%22page%22%3A%22timeline-profile%22%2C%22section%22%3A%22main%22%7D%2C%22context%22%3A%22horizon%22%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22dnt%22%3Afalse%2C%22widget_id%22%3A%22twitter-widget-0%22%2C%22widget_origin%22%3A%22https%3A%2F%2Fyongg.duckdns.org%2F%22%2C%22widget_frame%22%3A%22false%22%2C%22widget_partner%22%3A%22%22%2C%22widget_site_screen_name%22%3A%22%22%2C%22widget_site_user_id%22%3A%22%22%2C%22widget_creator_screen_name%22%3A%22%22%2C%22widget_creator_user_id%22%3A%22%22%2C%22widget_iframe_version%22%3A%2254fb0dd%3A1662057638149%22%2C%22widget_data_source%22%3A%22screen-name%3APUBGMOBILE%22%7D&session_id=f4e7b73de61df9a6f75223b159080d9f2f55055f HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/srv/timeline-profile/screen-name/PUBGMOBILE?dnt=false&embedId=twitter-widget-0&frame=false&hideBorder=false&hideFooter=true&hideHeader=true&hideScrollBar=false&lang=en&maxHeight=inherit&origin=https%3A%2F%2Fyongg.duckdns.org%2F&sessionId=f4e7b73de61df9a6f75223b159080d9f2f55055f&showHeader=false&showReplies=false&theme=dark&transparent=false&widgetsVersion=1bfeb5c3714e8%3A1661975971032
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 13:35:53 GMT
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Wed, 14 Sep 2022 13:35:53 GMT
content-length: 43
strict-transport-security: max-age=631138519
x-response-time: 112
x-connection-hash: 32b77bd7acbf1f21ba5129649e1590737a1eb240735f360e5f63e802da7f55c9
X-Firefox-Spdy: h2
pbs.twimg.com/profile_images/1569933031959572485/LuzDB80M_normal.jpg
151.101.84.159200 OK 2.3 kB URL HTTP/2 pbs.twimg.com/profile_images/1569933031959572485/LuzDB80M_normal.jpg
IP 151.101.84.159:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 48x48, components 3\012- data
Hash 0401922fe9a23b859174e4b67ce2d0cc
27db96f1e042007872926d9ee5af7747167e5397
bea4962af7d4010adf545cc334f838ea91cc2278762860c950c01d2cf49df63e
GET /profile_images/1569933031959572485/LuzDB80M_normal.jpg HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, must-revalidate
last-modified: Wed, 14 Sep 2022 06:14:17 GMT
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
content-type: image/jpeg
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-cache: HIT, HIT
x-tw-cdn: FT
x-served-by: cache-lhr7355-LHR, cache-bma1647-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 2263
X-Firefox-Spdy: h2
pbs.twimg.com/media/Fclg3ECXgAE0Pg9?format=jpg&name=120x120
151.101.84.159200 OK 4.9 kB URL HTTP/2 pbs.twimg.com/media/Fclg3ECXgAE0Pg9?format=jpg&name=120x120
IP 151.101.84.159:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 120x63, components 3\012- data
Hash 1931f3e5ac6f04c4de23bde914fe5577
dbadf3ba610eee0f2aee4ee8eb8f7c4fa1690c4a
e7c01b2eb763fcafede5d81da79780a376ad9d13bc267f461f5d3791a11cb766
GET /media/Fclg3ECXgAE0Pg9?format=jpg&name=120x120 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
cache-control: max-age=604800, must-revalidate
last-modified: Wed, 14 Sep 2022 03:33:00 GMT
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:54 GMT
x-cache: HIT, HIT
x-tw-cdn: FT
x-served-by: cache-lhr6629-LHR, cache-bma1647-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 4864
X-Firefox-Spdy: h2
pbs.twimg.com/profile_images/1446736246320025602/JVKEcvvN_normal.jpg
151.101.84.159200 OK 2.2 kB URL HTTP/2 pbs.twimg.com/profile_images/1446736246320025602/JVKEcvvN_normal.jpg
IP 151.101.84.159:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 48x48, components 3\012- data
Hash 81cc44f83ea361d5ae9e3d3e27e93824
1a70433bac48151595d7cb5d69a8391d39a3d9cf
1030da79dd69746220da402b7686e4080bc1cb0cb345d834a26ed4ab954126bf
GET /profile_images/1446736246320025602/JVKEcvvN_normal.jpg HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, must-revalidate
last-modified: Sat, 09 Oct 2021 07:14:14 GMT
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
content-type: image/jpeg
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:55 GMT
x-cache: HIT, HIT
x-tw-cdn: FT
x-served-by: cache-lhr7325-LHR, cache-bma1647-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 2187
X-Firefox-Spdy: h2
pbs.twimg.com/media/FclUCx2XkAE8UI_?format=jpg&name=360x360
151.101.84.159200 OK 31 kB URL HTTP/2 pbs.twimg.com/media/FclUCx2XkAE8UI_?format=jpg&name=360x360
IP 151.101.84.159:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x203, components 3\012- data
Hash 5d533a00b31d5aa0de83a919f65a1013
a3a2af82ad8cb01f338b7e6ef43556d7e36f1720
777dc10856fc89e894958ebf8d177931f3501dc7123a707c14d39f9e87c466fa
GET /media/FclUCx2XkAE8UI_?format=jpg&name=360x360 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
cache-control: max-age=604800, must-revalidate
last-modified: Wed, 14 Sep 2022 02:37:00 GMT
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:55 GMT
x-cache: HIT, MISS
x-tw-cdn: FT
x-served-by: cache-lhr6621-LHR, cache-bma1647-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 31213
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8c86775f-a6ef-49b2-85ad-4272db5b9f42.webp
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8c86775f-a6ef-49b2-85ad-4272db5b9f42.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 80786e640acccfa61ef2aaa27a2a95fa
94663318844e6567f2d160d620eb9ed777fba2a3
686348c1aa038c5109c39c3491524a98bcfc5b1559568391ba7fb240a285a064
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8c86775f-a6ef-49b2-85ad-4272db5b9f42.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9467
x-amzn-requestid: d14b460e-2aa5-41c8-9a8b-4da671156014
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yauv3HJJoAMFWgg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f7fe-0643dea6458034ab51d840d5;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:02 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: rVAqQoiN5d1Ph-lVvB7luXmG0zQJuvLi8I_B-xGbJjLkyyAid6rktw==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 21:45:09 GMT
age: 57047
etag: "94663318844e6567f2d160d620eb9ed777fba2a3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot?l=%7B%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663162542509%2C%22event_namespace%22%3A%7B%22action%22%3A%22impression%22%2C%22client%22%3A%22tfw%22%2C%22page%22%3A%22timeline-profile%22%2C%22section%22%3A%22main%22%7D%2C%22context%22%3A%22horizon%22%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22dnt%22%3Afalse%2C%22widget_id%22%3A%22twitter-widget-0%22%2C%22widget_origin%22%3A%22https%3A%2F%2Fyongg.duckdns.org%2F%22%2C%22widget_frame%22%3A%22false%22%2C%22widget_partner%22%3A%22%22%2C%22widget_site_screen_name%22%3A%22%22%2C%22widget_site_user_id%22%3A%22%22%2C%22widget_creator_screen_name%22%3A%22%22%2C%22widget_creator_user_id%22%3A%22%22%2C%22widget_iframe_version%22%3A%2254fb0dd%3A1662057638149%22%2C%22widget_data_source%22%3A%22screen-name%3APUBGMOBILE%22%7D&session_id=f4e7b73de61df9a6f75223b159080d9f2f55055f
104.244.42.8200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot?l=%7B%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663162542509%2C%22event_namespace%22%3A%7B%22action%22%3A%22impression%22%2C%22client%22%3A%22tfw%22%2C%22page%22%3A%22timeline-profile%22%2C%22section%22%3A%22main%22%7D%2C%22context%22%3A%22horizon%22%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22dnt%22%3Afalse%2C%22widget_id%22%3A%22twitter-widget-0%22%2C%22widget_origin%22%3A%22https%3A%2F%2Fyongg.duckdns.org%2F%22%2C%22widget_frame%22%3A%22false%22%2C%22widget_partner%22%3A%22%22%2C%22widget_site_screen_name%22%3A%22%22%2C%22widget_site_user_id%22%3A%22%22%2C%22widget_creator_screen_name%22%3A%22%22%2C%22widget_creator_user_id%22%3A%22%22%2C%22widget_iframe_version%22%3A%2254fb0dd%3A1662057638149%22%2C%22widget_data_source%22%3A%22screen-name%3APUBGMOBILE%22%7D&session_id=f4e7b73de61df9a6f75223b159080d9f2f55055f
IP 104.244.42.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot?l=%7B%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663162542509%2C%22event_namespace%22%3A%7B%22action%22%3A%22impression%22%2C%22client%22%3A%22tfw%22%2C%22page%22%3A%22timeline-profile%22%2C%22section%22%3A%22main%22%7D%2C%22context%22%3A%22horizon%22%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22dnt%22%3Afalse%2C%22widget_id%22%3A%22twitter-widget-0%22%2C%22widget_origin%22%3A%22https%3A%2F%2Fyongg.duckdns.org%2F%22%2C%22widget_frame%22%3A%22false%22%2C%22widget_partner%22%3A%22%22%2C%22widget_site_screen_name%22%3A%22%22%2C%22widget_site_user_id%22%3A%22%22%2C%22widget_creator_screen_name%22%3A%22%22%2C%22widget_creator_user_id%22%3A%22%22%2C%22widget_iframe_version%22%3A%2254fb0dd%3A1662057638149%22%2C%22widget_data_source%22%3A%22screen-name%3APUBGMOBILE%22%7D&session_id=f4e7b73de61df9a6f75223b159080d9f2f55055f HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/srv/timeline-profile/screen-name/PUBGMOBILE?dnt=false&embedId=twitter-widget-0&frame=false&hideBorder=false&hideFooter=true&hideHeader=true&hideScrollBar=false&lang=en&maxHeight=inherit&origin=https%3A%2F%2Fyongg.duckdns.org%2F&sessionId=f4e7b73de61df9a6f75223b159080d9f2f55055f&showHeader=false&showReplies=false&theme=dark&transparent=false&widgetsVersion=1bfeb5c3714e8%3A1661975971032
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Sep 2022 13:35:55 GMT
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Wed, 14 Sep 2022 13:35:56 GMT
content-length: 43
strict-transport-security: max-age=631138519
x-response-time: 106
x-connection-hash: 32b77bd7acbf1f21ba5129649e1590737a1eb240735f360e5f63e802da7f55c9
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:300,400,500,700|Teko:300,400,500
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,500,700|Teko:300,400,500
IP 142.250.74.10:0
GET /css?family=Roboto:300,400,500,700|Teko:300,400,500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 13:35:48 GMT
date: Wed, 14 Sep 2022 13:35:48 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2