ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 5db2a02fc675bd141277f8b482a66fc0
e6313189dfb08f02700aa50d525f7dcae29a9061
d4fb294e81ebd9500296e0711fa33b0c9f089b9f1478577d0196846639427fd6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 22:37:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.tapioni.com/asg_embed.js
104.22.39.71200 OK 53 kB URL GET HTTP/2 cdn.tapioni.com/asg_embed.js
IP 104.22.39.71:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint98:6F:5C:E6:12:D1:E1:1F:BF:CE:7D:0C:FA:D2:F3:F0:AA:18:B7:66
ValidityThu, 23 Mar 2023 00:00:00 GMT - Thu, 21 Mar 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65472), with no line terminators
Hash b69caff74c1008ec300ae5926968890c
96d1fa5764672196b5e3cb1eb7d4e09f5b89c79d
6c6215a9e27411be98a99b2361d048d49a966a5e4faa2fe347cc1a13d4f4e36b
GET /asg_embed.js HTTP/1.1
Host: cdn.tapioni.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:37:08 GMT
content-type: application/javascript
content-length: 53097
last-modified: Thu, 06 Apr 2023 12:38:07 GMT
vary: Accept-Encoding
etag: "642ebd2f-cf69"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 33271
accept-ranges: bytes
server: cloudflare
cf-ray: 7b3d838108f709a9-ARN
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-1DTX7D4FHE
142.250.74.168200 OK 79 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-1DTX7D4FHE
IP 142.250.74.168:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintC4:BD:8E:3A:2D:C8:D9:8E:16:99:55:F4:59:46:63:7E:70:05:3B:35
ValidityMon, 13 Mar 2023 08:16:52 GMT - Mon, 05 Jun 2023 08:16:51 GMT
File type ASCII text, with very long lines (19390)
Hash 1a420bc2b0a7ee49960a6854aa5931ad
9a42bc54715e859e2301e7b3d79be7f8dcdd4ca6
08b3e36cac190d8cc24d2837fbb8eddab465c3581f6bd2e75c215cb8a009f656
GET /gtag/js?id=G-1DTX7D4FHE HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 06 Apr 2023 22:37:08 GMT
expires: Thu, 06 Apr 2023 22:37:08 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78668
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 5db2a02fc675bd141277f8b482a66fc0
e6313189dfb08f02700aa50d525f7dcae29a9061
d4fb294e81ebd9500296e0711fa33b0c9f089b9f1478577d0196846639427fd6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 22:37:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.tapioni.com/adgpt.js
104.22.39.71200 OK 817 B IP 104.22.39.71:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint98:6F:5C:E6:12:D1:E1:1F:BF:CE:7D:0C:FA:D2:F3:F0:AA:18:B7:66
ValidityThu, 23 Mar 2023 00:00:00 GMT - Thu, 21 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (1681), with no line terminators
Hash fb4582435ef4db24ed703fb6210b46eb
3c94f080e1e2c9b4e59e5a771c0799baf9cea41a
6348c3f7f47eafc18dc6d482df912d0935b144c6cd3f298079b503398c3c4c83
GET /adgpt.js HTTP/1.1
Host: cdn.tapioni.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:37:08 GMT
content-type: application/javascript
content-length: 817
last-modified: Thu, 06 Apr 2023 12:38:07 GMT
vary: Accept-Encoding
etag: "642ebd2f-331"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 33270
accept-ranges: bytes
server: cloudflare
cf-ray: 7b3d8381f9ef09a9-ARN
X-Firefox-Spdy: h2
cdn.tapioni.com/adgpt.js
104.22.39.71200 OK 817 B IP 104.22.39.71:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint98:6F:5C:E6:12:D1:E1:1F:BF:CE:7D:0C:FA:D2:F3:F0:AA:18:B7:66
ValidityThu, 23 Mar 2023 00:00:00 GMT - Thu, 21 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (1681), with no line terminators
Hash fb4582435ef4db24ed703fb6210b46eb
3c94f080e1e2c9b4e59e5a771c0799baf9cea41a
6348c3f7f47eafc18dc6d482df912d0935b144c6cd3f298079b503398c3c4c83
GET /adgpt.js HTTP/1.1
Host: cdn.tapioni.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:37:08 GMT
content-type: application/javascript
content-length: 817
last-modified: Thu, 06 Apr 2023 12:38:07 GMT
vary: Accept-Encoding
etag: "642ebd2f-331"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 33270
accept-ranges: bytes
server: cloudflare
cf-ray: 7b3d8381f9f109a9-ARN
X-Firefox-Spdy: h2
assets.fs1.app/assets/images/logo.png
188.114.97.1200 OK 12 kB URL GET HTTP/3 assets.fs1.app/assets/images/logo.png
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type PNG image data, 388 x 102, 8-bit/color RGBA, non-interlaced\012- data
Hash 14480fda80ed2747171678e5ba86b3cb
9c55625b043d5150c810026bad722a49aca38944
07003923ec1c436a45014ae9fba77343c640a0ba410de625a006d3ec75f0bde1
GET /assets/images/logo.png HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:08 GMT
content-type: image/png
content-length: 12066
last-modified: Sun, 09 Sep 2018 17:11:42 GMT
etag: "5b95544e-2f22"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=daGB5uHaasqRBEo6iDcVt5Tu4vA%2Frr%2FIxdqwp55mdgCCKjqW2bfAEz3EvCom4Kae%2F72Nz1TBuA%2FvGGfJrQDz0usMdLAGaIPYMUwZWs2GHw7HSOloYnhA2p5mg9AQmOkIlA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d83809d1fb509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
assets.fs1.app/assets/images/theporndude.png
188.114.97.1200 OK 1.6 kB URL GET HTTP/3 assets.fs1.app/assets/images/theporndude.png
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash e05d03cbbf9dc784d2f4a3ecb4ad6987
113aaa3555a1e3646fbfd19b4eb8156084e14db3
fadc546b6a83cd7a968038d42d7dc6b98b25f4c535d95e0607877faaceaa4bad
GET /assets/images/theporndude.png HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:08 GMT
content-type: image/png
content-length: 1576
last-modified: Mon, 22 Nov 2021 16:44:39 GMT
etag: "619bc8f7-628"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nejwVYiLjOMMDY6uosZTqNyA6v784QMaQbZDv33CwIBYRVfkUPay2D3L7nwdGT%2B0cSA8Q3QIBVr979Iwq3d82cA2SGGF%2BJOycnUANRkQBKOWSzPM8lkwkIIe9lhVkpSqIA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d83809d1cb509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
video.ktkjmp.com/adsbygoogle.js
104.18.48.21200 OK 16 B URL GET HTTP/2 video.ktkjmp.com/adsbygoogle.js
IP 104.18.48.21:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectvideo.ktkjmp.com
FingerprintD6:F4:DC:36:6D:BC:E5:36:F7:AC:71:BE:47:40:06:E8:12:9F:23:EC
ValidityMon, 01 Aug 2022 00:00:00 GMT - Tue, 01 Aug 2023 23:59:59 GMT
Hash 3d7f7a60216d40dea48e495fef6903c9
fecdb5184f55cf012563d78940eb97b10b9cc99b
96d83ac9f20fc0b88404f307f135e212642e02d6ea295c96b28aed0d771a224f
GET /adsbygoogle.js HTTP/1.1
Host: video.ktkjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fs1.app/
Origin: https://fs1.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:37:08 GMT
content-type: application/javascript
content-length: 16
x-amz-id-2: QUXnNy2w3SVgBBJ04JxjSn5YsvWZNpcO0WhRwsvO5enR4jmqtkkomAFVsVTSR4oLeLnl07S5f78=
x-amz-request-id: ZTWEE1QFDM4B3Q44
last-modified: Thu, 10 Mar 2022 13:52:07 GMT
etag: "3d7f7a60216d40dea48e495fef6903c9"
x-amz-meta-s3cmd-attrs: atime:1646920284/ctime:1646920283/gid:20/gname:staff/md5:3d7f7a60216d40dea48e495fef6903c9/mode:33188/mtime:1646920283/uid:501/uname:mikhailchubar
x-amz-version-id: eIgLIBoMMcsEXtxOH6UDjWyfAquRpkIG
access-control-allow-origin: https://fs1.app
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
cf-cache-status: HIT
expires: Fri, 07 Apr 2023 02:37:08 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
set-cookie: __cflb=0H28uukSkGJRy5UBr1AgJmhafgYhtGas1EGWWFoMu6L; SameSite=None; Secure; path=/; expires=Fri, 07-Apr-23 21:37:08 GMT; HttpOnly
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d83827f2b1c06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash bd859d4305710ed48b80ff5552f8da71
0314a8f4f9352ffab5c46dac76991603586025f6
e0b8489937a8abf1099a2fe6d60716f47ce30d156b1d1ac6dccf8f5859cf5580
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 22:37:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
assets.fs1.app/assets/images/placeholder-md.jpg
188.114.97.1200 OK 15 kB URL GET HTTP/3 assets.fs1.app/assets/images/placeholder-md.jpg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5.1 Windows, datetime=2019:03:31 18:12:59], progressive, precision 8, 336x188, components 3\012- data
Hash ac9ea1a555198470671238d214b2e489
4a22f147e57e2781e0b302ac2c156d1999793cdb
58be1d54819c76bc997fee25de298613a1565c7f6c8ef01629511315422b7468
GET /assets/images/placeholder-md.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:08 GMT
content-type: image/jpeg
content-length: 14601
last-modified: Sun, 31 Mar 2019 10:13:04 GMT
etag: "5ca092b0-3909"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fbbBmdSH6iKCpA5YI1e1cVfR0BlSj0NUXvcgKe%2FuKG6lPJ8zVdpTo%2Bzv5G%2FPs7GH1HtDW6dwVYL5gUbOn1dejhCeDlhtHUw5PpwOhBbp5QNUnJRLAQNi0tLw31PHBJe5CA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d83809d2ab509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
assets.fs1.app/assets/images/flag/zh.svg
188.114.97.1200 OK 1.1 kB URL GET HTTP/3 assets.fs1.app/assets/images/flag/zh.svg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (909)
Hash a2bea6de01323e90e988246a1c05586a
7b9e3c5dda9e6fb2269be82db8e8de4c9d5d0b20
4ddb88b022bf4846e5e03d8cff2c9dad4acfbddcea6b212c157f805ac99c2148
GET /assets/images/flag/zh.svg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:08 GMT
content-type: image/svg+xml
last-modified: Sat, 18 May 2019 16:52:07 GMT
vary: Accept-Encoding
etag: W/"5ce03837-41c"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VRl0cxsimIiGX7PC8XAAqQNIjYs2vHIL4zqdzjpb%2F0yjuZlfD5M9wL0%2FHxATJitjfomPwLSzitIW%2Bs8JwaHD4TRLdwg5yH6KCglNLmPE315MbQIZ2eDJJgpFxFmo%2FDVWyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b3d83809d27b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
assets-cdn.jable.tv/assets/images/placeholder-md.jpg
51.161.118.150200 OK 15 kB URL GET HTTP/2 assets-cdn.jable.tv/assets/images/placeholder-md.jpg
IP 51.161.118.150:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerZeroSSL
Subjectassets-cdn.jable.tv
FingerprintD7:49:FA:93:40:28:52:47:2E:08:28:03:C0:BA:B8:07:84:EF:5B:F0
ValidityTue, 31 Jan 2023 00:00:00 GMT - Mon, 01 May 2023 23:59:59 GMT
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5.1 Windows, datetime=2019:03:31 18:12:59], progressive, precision 8, 336x188, components 3\012- data
Hash ac9ea1a555198470671238d214b2e489
4a22f147e57e2781e0b302ac2c156d1999793cdb
58be1d54819c76bc997fee25de298613a1565c7f6c8ef01629511315422b7468
GET /assets/images/placeholder-md.jpg HTTP/1.1
Host: assets-cdn.jable.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Thu, 06 Apr 2023 22:37:08 GMT
content-type: image/jpeg
content-length: 14601
last-modified: Sun, 31 Mar 2019 10:13:04 GMT
etag: "5ca092b0-3909"
strict-transport-security: max-age=15768000
expires: Sat, 06 May 2023 22:37:08 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 15 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint1C:AF:ED:FD:AA:9B:87:E6:A4:D5:27:D7:B6:5D:60:78:61:2E:CC:28
ValidityMon, 13 Mar 2023 08:24:32 GMT - Mon, 05 Jun 2023 08:24:31 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fs1.app
Connection: keep-alive
Referer: https://assets.fs1.app/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Apr 2023 11:09:06 GMT
expires: Fri, 05 Apr 2024 11:09:06 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 41283
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash bd859d4305710ed48b80ff5552f8da71
0314a8f4f9352ffab5c46dac76991603586025f6
e0b8489937a8abf1099a2fe6d60716f47ce30d156b1d1ac6dccf8f5859cf5580
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 22:37:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.35200 OK 15 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.35:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint1C:AF:ED:FD:AA:9B:87:E6:A4:D5:27:D7:B6:5D:60:78:61:2E:CC:28
ValidityMon, 13 Mar 2023 08:24:32 GMT - Mon, 05 Jun 2023 08:24:31 GMT
File type Web Open Font Format (Version 2), TrueType, length 15436, version 1.0\012- data
Hash 037d830416495def72b7881024c14b7b
619389190b3cafafb5db94113990350acc8a0278
1d5b7c64458f4af91dcfee0354be47adde1f739b5aded03a7ab6068a1bb6ca97
GET /s/roboto/v18/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fs1.app
Connection: keep-alive
Referer: https://assets.fs1.app/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15436
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Apr 2023 10:35:01 GMT
expires: Wed, 03 Apr 2024 10:35:01 GMT
cache-control: public, max-age=31536000
age: 216128
last-modified: Mon, 16 Oct 2017 17:33:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
creative.admjmp.com/widgets/Spot/lang/en.json
104.18.51.106200 OK 16 kB URL GET HTTP/3 creative.admjmp.com/widgets/Spot/lang/en.json
IP 104.18.51.106:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectcreative.admjmp.com
FingerprintF5:BC:E5:4B:69:86:E0:72:1B:ED:C9:0B:10:D7:BE:A0:86:F3:1D:71
ValiditySat, 30 Jul 2022 00:00:00 GMT - Sun, 30 Jul 2023 23:59:59 GMT
File type JSON data\012- , ASCII text
Hash 6b48ecc6bf02d819bbba940c0b32786b
4b683ba7c1ad7e80542a34f9b1ff87d835d9fb61
d6d967acb7ffc65660b07d70045180bdfd52b83d9206643d8d49abf928ba6a54
GET /widgets/Spot/lang/en.json HTTP/1.1
Host: creative.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fs1.app/
Origin: https://fs1.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:08 GMT
content-type: application/json
last-modified: Tue, 04 Apr 2023 03:06:56 GMT
etag: W/"642b9450-1c"
expires: Thu, 06 Apr 2023 22:37:18 GMT
cache-control: max-age=10
access-control-allow-origin: *
cf-cache-status: HIT
set-cookie: __cflb=02DiuDfsBaY2bRYJiCeScBLPeXxw9eeb8jXDJWGP9HEPv; SameSite=None; Secure; path=/; expires=Fri, 07-Apr-23 21:37:08 GMT; HttpOnly
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d83825e0eb4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash bd859d4305710ed48b80ff5552f8da71
0314a8f4f9352ffab5c46dac76991603586025f6
e0b8489937a8abf1099a2fe6d60716f47ce30d156b1d1ac6dccf8f5859cf5580
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 22:37:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
assets.fs1.app/contents/videos_screenshots/22000/22668/preview.jpg
188.114.97.1200 OK 162 kB URL GET HTTP/3 assets.fs1.app/contents/videos_screenshots/22000/22668/preview.jpg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 162 kB (162243 bytes)
Hash 952090e731b35553cf8088caf08c414d
2f0837c9d67ac099b6f2f7e2240d99809a3abded
5708caf4dc5d55b7eb7180887b1911092a10489f7cc4249e17e7eb3641183711
GET /contents/videos_screenshots/22000/22668/preview.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:09 GMT
content-type: image/jpeg
content-length: 162243
last-modified: Mon, 14 Mar 2022 07:34:11 GMT
etag: "622eeff3-279c3"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2O%2FXZFH%2B%2FXAIQO7ioNEcHZAiGSHXCBHYpPwBf9mglGajhh6i2HzCDRRyoyxjR%2BIlMIlUL%2Biur4nWnZEejvpFkvWLl2ELXkx9nGoKau4Qnp%2BHKyGOnEWFYPyf4XMe%2FKgy3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d83809d2cb509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cdn.tapioni.com/adgpt.js
104.22.39.71200 OK 817 B IP 104.22.39.71:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint98:6F:5C:E6:12:D1:E1:1F:BF:CE:7D:0C:FA:D2:F3:F0:AA:18:B7:66
ValidityThu, 23 Mar 2023 00:00:00 GMT - Thu, 21 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (1681), with no line terminators
Hash fb4582435ef4db24ed703fb6210b46eb
3c94f080e1e2c9b4e59e5a771c0799baf9cea41a
6348c3f7f47eafc18dc6d482df912d0935b144c6cd3f298079b503398c3c4c83
GET /adgpt.js HTTP/1.1
Host: cdn.tapioni.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:37:09 GMT
content-type: application/javascript
content-length: 817
last-modified: Thu, 06 Apr 2023 12:38:07 GMT
vary: Accept-Encoding
etag: "642ebd2f-331"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 33271
accept-ranges: bytes
server: cloudflare
cf-ray: 7b3d83856dc409a9-ARN
X-Firefox-Spdy: h2
a.labadena.com/api/click/10796926700297891095?c=90
135.181.208.216200 OK 0 B URL GET HTTP/2 a.labadena.com/api/click/10796926700297891095?c=90
IP 135.181.208.216:443
ASN #24940 Hetzner Online GmbH
Requested by https://a.labadena.com/api/spots/220808?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjecta.labadena.com
FingerprintB3:CC:65:92:BF:73:55:95:BD:FD:91:93:93:C9:91:8A:88:6E:67:3F
ValidityWed, 15 Feb 2023 23:27:10 GMT - Tue, 16 May 2023 23:27:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/click/10796926700297891095?c=90 HTTP/1.1
Host: a.labadena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a.labadena.com/api/spots/220808?p=1&s1=%subid1%&kw=
Cookie: nauid=4tpNCUozgj925A2IBvsR
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 06 Apr 2023 22:37:09 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: private
X-Firefox-Spdy: h2
syndication.realsrv.com/splash.php?native-settings=1&idzone=3377859&cookieconsent=true&&p=https%3A%2F%2Ffs1.app%2Fvideos%2Febod-898%2F
95.211.229.246200 OK 1.9 kB URL GET HTTP/1.1 syndication.realsrv.com/splash.php?native-settings=1&idzone=3377859&cookieconsent=true&&p=https%3A%2F%2Ffs1.app%2Fvideos%2Febod-898%2F
IP 95.211.229.246:443
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
FingerprintC2:CA:14:12:90:2A:B3:84:F3:3C:B8:A9:E8:82:89:E0:CB:B9:EE:49
ValidityMon, 27 Feb 2023 07:33:27 GMT - Sun, 28 May 2023 07:33:26 GMT
File type JSON data\012- , ASCII text, with very long lines (3582), with no line terminators
Hash e9af0019022343f4457e0b5035ad5492
019b4aafbca10ef2eff22a1192cf885c73aca900
15dc0ff7c8daed2eba878e163aa445222512d4125cca8b4a13034eba71d2ad60
GET /splash.php?native-settings=1&idzone=3377859&cookieconsent=true&&p=https%3A%2F%2Ffs1.app%2Fvideos%2Febod-898%2F HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Apr 2023 22:37:09 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://fs1.app
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22642f4995864981.823313233673620104%22%3B%7D; expires=Sat, 05 Apr 2025 22:37:09 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
c-tag=%7B%22tag-banner%22%3A%22v3%7C%7CNOR%7C3377859%7C71987188%7C100644%7C%7C99%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7Cab0a7bd76752bd17115f3b390f746706%7C0%7Cfs1.app%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D; expires=Fri, 07 Apr 2023 22:37:09 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
img.strpst.com/thumbs/1680820560/99604173
104.18.63.132200 OK 37 kB URL GET HTTP/2 img.strpst.com/thumbs/1680820560/99604173
IP 104.18.63.132:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 0x0, segment length 16, progressive, precision 8, 640x360, components 3\012- data
Hash 75d8adcbb0c577257b88358003b662c5
6da3eae3b5b7245a07387094b8023f0a5495d929
c4d6144ca03ee5a5fd7e31e633e55cfdd311e31bbe9cc84b0c4833be7b7deaa1
GET /thumbs/1680820560/99604173 HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:37:09 GMT
content-type: image/jpeg
content-length: 37021
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: public, max-age=1800, s-maxage=1800, stale-while-revalidate=1, max-stale=1, stale-if-error=1
cf-bgj: imgq:100,h2pri
cf-polished: origSize=38214, status=webp_bigger
etag: "8ebfd71c178019da301c9c28985f3004"
last-modified: Thu, 06 Apr 2023 22:35:22 GMT
cf-cache-status: HIT
age: 48
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d83876f280b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
go.admjmp.com/abc.gif?userId=4c25683baa7e541ee7ce0014496c85471ee87c5671f43cd3d2de65eaed1cbb98&campaignId=bottomslider&modelsLimit=1&stripcashR=0&thumbType=default&thumbFit=cover&quality=original&language=en&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=1&segment=hls-newAPI&landing=Spot&referrer&i=0&ib=0&filtersMatch=1
104.18.59.150200 OK 103 B URL GET HTTP/3 go.admjmp.com/abc.gif?userId=4c25683baa7e541ee7ce0014496c85471ee87c5671f43cd3d2de65eaed1cbb98&campaignId=bottomslider&modelsLimit=1&stripcashR=0&thumbType=default&thumbFit=cover&quality=original&language=en&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=1&segment=hls-newAPI&landing=Spot&referrer&i=0&ib=0&filtersMatch=1
IP 104.18.59.150:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectgo.admjmp.com
FingerprintA9:B0:8A:8F:28:5A:98:E7:DE:B5:54:6F:78:D2:68:ED:81:ED:D8:63
ValiditySat, 30 Jul 2022 00:00:00 GMT - Sun, 30 Jul 2023 23:59:59 GMT
Hash 8c99886486b9a004383cb4df29011c43
d79ca4754481fc59598bc08fcdf354900918bffe
bda00b0f6892b1c6991e793b42654ad1807694e2ffabcbc4eb1399379737ef6c
GET /abc.gif?userId=4c25683baa7e541ee7ce0014496c85471ee87c5671f43cd3d2de65eaed1cbb98&campaignId=bottomslider&modelsLimit=1&stripcashR=0&thumbType=default&thumbFit=cover&quality=original&language=en&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=1&segment=hls-newAPI&landing=Spot&referrer&i=0&ib=0&filtersMatch=1 HTTP/1.1
Host: go.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: go.admjmp.com
Connection: keep-alive
Referer: https://fs1.app/
Cookie: __cflb=02DiuDfsBaY2bRYJiCfFHYpfgnRfzoh6KEWm8Gs3MuN2x
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:09 GMT
content-type: image/gif
content-length: 103
access-control-allow-origin: *
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7b3d83872ed80b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
syndication.realsrv.com/v1/api.php
95.211.229.247200 OK 2.9 kB URL POST HTTP/1.1 syndication.realsrv.com/v1/api.php
IP 95.211.229.247:443
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://a.labadena.com/api/spots/220808?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
FingerprintC2:CA:14:12:90:2A:B3:84:F3:3C:B8:A9:E8:82:89:E0:CB:B9:EE:49
ValidityMon, 27 Feb 2023 07:33:27 GMT - Sun, 28 May 2023 07:33:26 GMT
File type JSON data\012- , ASCII text, with very long lines (6236), with no line terminators
Hash 957cfdb783857420aec448111e528ba3
b2371ada630edf39112950010ff5df96b5c85ef6
0bf125a9c8b3c0da6893d8edbec6d0d1c2b75d26782e2522feeeab3f0c684db7
POST /v1/api.php HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 313
Origin: https://a.labadena.com
Connection: keep-alive
Referer: https://a.labadena.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Apr 2023 22:37:09 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://a.labadena.com
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22642f49959adc28.236927133558369994%22%3B%7D; expires=Sat, 05-Apr-2025 22:37:09 GMT; Max-Age=63072000; path=/; domain=realsrv.com; secure; SameSite=None
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
s3t3d2y8.afcdn.net/library/676799/c1cd0e42b295de772e5f52bac3a0c90546eb669b.webp
185.76.9.18200 OK 7.1 kB URL GET HTTP/2 s3t3d2y8.afcdn.net/library/676799/c1cd0e42b295de772e5f52bac3a0c90546eb669b.webp
IP 185.76.9.18:443
ASN #60068 Datacamp Limited
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerLet's Encrypt
Subjectafcdn.net
Fingerprint58:E2:EC:9A:A1:55:22:20:28:3E:43:7C:0D:B9:0A:67:84:6B:EA:FB
ValidityMon, 27 Feb 2023 07:22:15 GMT - Sun, 28 May 2023 07:22:14 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f224bd370ef5ba9d17557c4ceb742b5e
c1cd0e42b295de772e5f52bac3a0c90546eb669b
b95092663aa7944069dcabe54738f46d546c0d2dee82302879b0241341525eeb
GET /library/676799/c1cd0e42b295de772e5f52bac3a0c90546eb669b.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:37:09 GMT
content-type: image/webp
content-length: 7102
last-modified: Mon, 24 Jan 2022 19:06:03 GMT
etag: "61eef89b-1bbe"
expires: Fri, 30 Jun 2023 11:13:05 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
server: CDN77-Turbo
x-robots-tag: noindex, follow
x-77-nzt: AblMCQ1rmBL/+qtwAQ
x-77-nzt-ray: c0a4cc283d9026f695492f646dc94430
x-accel-expires: @1688195355
x-cache: HIT
x-age: 24161274
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA0VOu04EMQz8FX5gIz/j5GpqkEB8QHZvt0DLUVzDSfPxJCkgozhjzcRjIdGFbKH8xOWicaGKyqlSMknshpfXNxijnee1PT7T9v2FHDlqReaizIhSjBQaGu6BLjhJ5FIQXEtwJ+xQUIe4mg2WiLqd0cWP9+d5uUMIvY7IQa1z+hn/to2kVea20lGFirTDKmfZ/fDe+TCipbOt7brf2tyS4JKVwER5hCYW1pExNxlQNhUTLPzXGPohTLndH7cN+LeX+ficIGCzPhw4pGQtYmwH71vR2Fcx3+rha6UI+QWeyKw4YgEAAA==
95.211.229.247200 OK 20 B URL GET HTTP/1.1 syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA0VOu04EMQz8FX5gIz/j5GpqkEB8QHZvt0DLUVzDSfPxJCkgozhjzcRjIdGFbKH8xOWicaGKyqlSMknshpfXNxijnee1PT7T9v2FHDlqReaizIhSjBQaGu6BLjhJ5FIQXEtwJ+xQUIe4mg2WiLqd0cWP9+d5uUMIvY7IQa1z+hn/to2kVea20lGFirTDKmfZ/fDe+TCipbOt7brf2tyS4JKVwER5hCYW1pExNxlQNhUTLPzXGPohTLndH7cN+LeX+ficIGCzPhw4pGQtYmwH71vR2Fcx3+rha6UI+QWeyKw4YgEAAA==
IP 95.211.229.247:443
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://a.labadena.com/api/spots/220808?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
FingerprintC2:CA:14:12:90:2A:B3:84:F3:3C:B8:A9:E8:82:89:E0:CB:B9:EE:49
ValidityMon, 27 Feb 2023 07:33:27 GMT - Sun, 28 May 2023 07:33:26 GMT
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA0VOu04EMQz8FX5gIz/j5GpqkEB8QHZvt0DLUVzDSfPxJCkgozhjzcRjIdGFbKH8xOWicaGKyqlSMknshpfXNxijnee1PT7T9v2FHDlqReaizIhSjBQaGu6BLjhJ5FIQXEtwJ+xQUIe4mg2WiLqd0cWP9+d5uUMIvY7IQa1z+hn/to2kVea20lGFirTDKmfZ/fDe+TCipbOt7brf2tyS4JKVwER5hCYW1pExNxlQNhUTLPzXGPohTLndH7cN+LeX+ficIGCzPhw4pGQtYmwH71vR2Fcx3+rha6UI+QWeyKw4YgEAAA== HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://a.labadena.com
Connection: keep-alive
Referer: https://a.labadena.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22642f49959adc28.236927133558369994%22%3B%7D; c-tag=%7B%22tag-banner%22%3A%22v3%7C%7CNOR%7C3377859%7C71987188%7C100644%7C%7C99%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7Cab0a7bd76752bd17115f3b390f746706%7C0%7Cfs1.app%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Apr 2023 22:37:09 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://a.labadena.com
Access-Control-Allow-Credentials: true
Set-Cookie: __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%2299.0199%22%7D; expires=Sat, 05 Apr 2025 22:37:09 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
s3t3d2y8.afcdn.net/library/676799/69de0359a701f5e50de85549f099c8b5332ee52c.jpg
185.76.9.18200 OK 22 kB URL GET HTTP/2 s3t3d2y8.afcdn.net/library/676799/69de0359a701f5e50de85549f099c8b5332ee52c.jpg
IP 185.76.9.18:443
ASN #60068 Datacamp Limited
Requested by https://a.labadena.com/api/spots/220808?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjectafcdn.net
Fingerprint58:E2:EC:9A:A1:55:22:20:28:3E:43:7C:0D:B9:0A:67:84:6B:EA:FB
ValidityMon, 27 Feb 2023 07:22:15 GMT - Sun, 28 May 2023 07:22:14 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Hash d4b9732fd542e3a185a10dd918050880
69de0359a701f5e50de85549f099c8b5332ee52c
8de3226c3deb48795f20ac0c838efafee55911dbd9d1704046e6366223eb39ec
GET /library/676799/69de0359a701f5e50de85549f099c8b5332ee52c.jpg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a.labadena.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:37:09 GMT
content-type: image/jpeg
content-length: 22261
last-modified: Mon, 24 Jan 2022 19:06:03 GMT
etag: "61eef89b-56f5"
expires: Fri, 30 Jun 2023 18:49:17 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
server: CDN77-Turbo
x-robots-tag: noindex, follow
x-77-nzt: AblMCQ0GEtP/ZqxwAQ
x-77-nzt-ray: c0a4cc283d9026f695492f64d0854930
x-accel-expires: @1688195247
x-cache: HIT
x-age: 24161382
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/28000/28837/320x180/1.jpg
188.114.97.1200 OK 40 kB URL GET HTTP/3 assets.fs1.app/contents/videos_screenshots/28000/28837/320x180/1.jpg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 9337ec6cd8c74ca87b45f06a5d1f6225
a56972dbbcf707295992250ccd05458dbbc631d9
66c7f96510a85c96149d9a246872b264a7b58c455a4d05e1ebf8963958cb35de
GET /contents/videos_screenshots/28000/28837/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: assets.fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1680820629.1.0.1680820629.0.0.0; _ga=GA1.1.1539326741.1680820629
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:09 GMT
content-type: image/jpeg
content-length: 39955
last-modified: Sat, 03 Dec 2022 07:43:02 GMT
etag: "638afe06-9c13"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PjiM%2FQUCaRWdOiwMPb6HZgHBlN3Sc17%2FZ31I5ivGuocyYPFawXY0ARN7tqtid6aWi0tREauGLiaZbVeqYgV7Bv7fZrgE%2FGcXwm0FrE82mLvukkxkTKrD7ookA7V9ckQ4GA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d83863aefb509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
assets.fs1.app/contents/videos_screenshots/8000/8276/320x180/1.jpg
188.114.97.1200 OK 43 kB URL GET HTTP/3 assets.fs1.app/contents/videos_screenshots/8000/8276/320x180/1.jpg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash a7ec7ff4bbd77b0cdad46d09ea3bb6b6
39ae05af0c8a13142afd5913bda8c7220a52127f
8729e2043046fef2d858e73346a543c61b7c614f659e5ecc9338ad777c9fa545
GET /contents/videos_screenshots/8000/8276/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: assets.fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1680820629.1.0.1680820629.0.0.0; _ga=GA1.1.1539326741.1680820629
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:09 GMT
content-type: image/jpeg
content-length: 42944
last-modified: Tue, 09 Jun 2020 20:51:07 GMT
etag: "5edff63b-a7c0"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Jg0j9idk3aMACOANIHkA1EdT8hyyg1Wkoi%2ByF71GvCBVDT6i27vcQKlnDnddjzqatx%2FaswWsOSyT83uPtUS9jR73tiCPNUXlKvubQnkpLKoDonCeHqdVu%2FsKX8cNbDNUfQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d83863aeab509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
assets.fs1.app/contents/videos_screenshots/4000/4877/320x180/1.jpg
188.114.97.1200 OK 46 kB URL GET HTTP/3 assets.fs1.app/contents/videos_screenshots/4000/4877/320x180/1.jpg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 3195c1fac5475c8e1e66ae53c09f5316
fcd0f3be5809a38c6c9e4e85827dad355a3566ba
c7d0d90652bb95bd788880a08bfee3d972f28a3200835bdfd41c870dd2b9f22d
GET /contents/videos_screenshots/4000/4877/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: assets.fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1680820629.1.0.1680820629.0.0.0; _ga=GA1.1.1539326741.1680820629
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:09 GMT
content-type: image/jpeg
content-length: 46245
last-modified: Sat, 18 Jan 2020 02:38:21 GMT
etag: "5e226f9d-b4a5"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uMDV44z3kAkTZVPsQpATInsElzfnXZQIzQlwxlb03Apg%2BsKujpzJcO4S2JvCl7MATZeuXcwffo6%2F0mFnHDwkRVdGOc2pIBOwlIKg27XLxy7NrkuLDKUiUkZfbcPFfEyAKA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d83864af1b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cdn.ggsfq.xyz/creative/20230309_Jable_(300x250)_B_TC_gif.gif
172.67.164.16200 OK 497 kB URL GET HTTP/2 cdn.ggsfq.xyz/creative/20230309_Jable_(300x250)_B_TC_gif.gif
IP 172.67.164.16:443
Requested by https://adserve.work/www/serve/afr.php?zoneid=4&cb=INSERT_RANDOM_NUMBER_HERE
Certificate IssuerGoogle Trust Services LLC
Subject*.ggsfq.xyz
FingerprintA8:3F:E3:1B:53:57:27:3F:C4:96:E9:4B:F5:81:11:9B:C3:AA:0B:7C
ValidityWed, 22 Feb 2023 12:14:05 GMT - Tue, 23 May 2023 12:14:04 GMT
File type GIF image data, version 89a, 300 x 250\012- data
Size 497 kB (496574 bytes)
Hash 4976e1cd83b95495595900eee69eefe5
6a9175c6fb9b699e782e706732e3bc6758cec40f
e7101d91c7f007c47effd84fdc781c8d5474935e8795ba33bffb81dbab664e41
GET /creative/20230309_Jable_(300x250)_B_TC_gif.gif HTTP/1.1
Host: cdn.ggsfq.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adserve.work/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:37:09 GMT
content-type: image/gif
content-length: 496574
etag: "4976e1cd83b95495595900eee69eefe5"
last-modified: Thu, 09 Mar 2023 03:02:45 GMT
x-amz-id-2: ei/a8Wmg8wgEgtsG7xIYJtNEPdcQsMyoqMRE2jropbe09wWNHqP8+Sq+s6k7nfVNfSbmnNf5ikkg
x-amz-request-id: E54FF9C103A90C42
cache-control: max-age=14400
cf-cache-status: HIT
age: 257
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z%2FRoMTsOhWxsPocKHZcR%2BWz84FshCzToPLcl5F8EuQDYz2JoL6Yra3GV4PWAQqwLTcdlxvA4GpStoqrdYY21q3S6B1J4DmPb%2FXyh70UYDdL69G%2B0gABVyQfA%2B0Ofs7cg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d838969351c02-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/28000/28422/320x180/1.jpg
188.114.97.1200 OK 53 kB URL GET HTTP/3 assets.fs1.app/contents/videos_screenshots/28000/28422/320x180/1.jpg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 473f8634517786b6a23c33c8d0c5930b
7749a1af9dca2cc4af245a96aad021e060c0e257
1df1b6c38a697d7738331bd50b34f4ff3135787fe04cd30849ace7582b4d3bd6
GET /contents/videos_screenshots/28000/28422/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: assets.fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1680820629.1.0.1680820629.0.0.0; _ga=GA1.1.1539326741.1680820629
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:10 GMT
content-type: image/jpeg
content-length: 53414
last-modified: Sun, 13 Nov 2022 19:04:09 GMT
etag: "63713fa9-d0a6"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eYnLVByxZk4b3OboQFTPVBLkLC7VKP3cSBwaBq7soUU5iCqCxj%2FUp5e3LdM0%2BwUP9T1r6AMroT0fvLjjMZtjXaUEAQvIOEMatKS86NmFQg0Wat3IV6XCKDh9oR68yIMCYA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d83863ae7b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
assets-cdn.jable.tv/assets/images/252/427-240-3.gif
51.161.118.150200 OK 495 kB URL GET HTTP/2 assets-cdn.jable.tv/assets/images/252/427-240-3.gif
IP 51.161.118.150:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerZeroSSL
Subjectassets-cdn.jable.tv
FingerprintD7:49:FA:93:40:28:52:47:2E:08:28:03:C0:BA:B8:07:84:EF:5B:F0
ValidityTue, 31 Jan 2023 00:00:00 GMT - Mon, 01 May 2023 23:59:59 GMT
File type GIF image data, version 89a, 427 x 240\012- data
Size 495 kB (495284 bytes)
Hash 49a3ab4bb1a3b7ca1c17013d50e8ebd8
449d0fc24fe665307e6e62656acd74ce053feaea
f149232ed8aaca10ffa20561b95ef86bc5e739a9501b8d57abdbc2747d9d0ba8
GET /assets/images/252/427-240-3.gif HTTP/1.1
Host: assets-cdn.jable.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 06 Apr 2023 22:37:09 GMT
content-type: image/gif
content-length: 495284
last-modified: Thu, 23 Jul 2020 07:47:53 GMT
etag: "5f1940a9-78eb4"
strict-transport-security: max-age=15768000
expires: Sat, 06 May 2023 22:37:09 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/21000/21142/320x180/1.jpg
188.114.97.1200 OK 39 kB URL GET HTTP/3 assets.fs1.app/contents/videos_screenshots/21000/21142/320x180/1.jpg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 094cb347c7c21280bc868f5d8c8cde51
d7f449648acd520105e8f5ee2c1ffcfdf41185b2
3b45a533e3bb8855be9f667b92f67424d9da4c25bfe59523c4f01b11a744e4a8
GET /contents/videos_screenshots/21000/21142/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: assets.fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1680820629.1.0.1680820629.0.0.0; _ga=GA1.1.1539326741.1680820629
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:10 GMT
content-type: image/jpeg
content-length: 39189
last-modified: Mon, 10 Jan 2022 05:46:02 GMT
etag: "61dbc81a-9915"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DNzPSpDgZSFAd967Ql%2BDP27K5sQ8Gt55J6tJXMryh30rx6DXDwSIbJcgHqGUZ%2BivKVSwc5SWSqSOYhkAoUS0PgO7f73BTbGjjm8DzBIiHJjITJti2wxPUQ6f1LM%2FXANJ8g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d83864af3b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
masno-terer.mushroomtrack.com/hls/jkFrKtKurPRDHuzABY37fw/1680831417/22000/22668/22668.m3u8
23.237.196.106200 OK 68 kB URL GET HTTP/2 masno-terer.mushroomtrack.com/hls/jkFrKtKurPRDHuzABY37fw/1680831417/22000/22668/22668.m3u8
IP 23.237.196.106:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerLet's Encrypt
Subjectmasno-terer.mushroomtrack.com
FingerprintFD:A4:12:61:36:84:B5:48:2E:61:E9:8E:95:F8:62:95:49:5B:42:E8
ValidityTue, 28 Feb 2023 15:58:05 GMT - Mon, 29 May 2023 15:58:04 GMT
Hash c942794f6ce7e0d2cebe2d795ad16dd3
2a94712f2ae9c5b11f8eb92e62a2600360e9011b
590b5512d42c59950ef311b1402863e75583287d80cb33d50f556c0b9431e132
GET /hls/jkFrKtKurPRDHuzABY37fw/1680831417/22000/22668/22668.m3u8 HTTP/1.1
Host: masno-terer.mushroomtrack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Thu, 06 Apr 2023 22:37:09 GMT
content-type: application/vnd.apple.mpegurl
content-length: 68446
last-modified: Sun, 13 Mar 2022 23:05:44 GMT
etag: "622e78c8-10b5e"
expires: Fri, 07 Apr 2023 22:37:09 GMT
cache-control: max-age=86400
access-control-allow-origin: https://fs1.app
accept-ranges: bytes
X-Firefox-Spdy: h2
masno-terer.mushroomtrack.com/hls/jkFrKtKurPRDHuzABY37fw/1680831417/22000/22668/thumbvtt.ts
23.237.196.106200 OK 9.2 kB URL GET HTTP/2 masno-terer.mushroomtrack.com/hls/jkFrKtKurPRDHuzABY37fw/1680831417/22000/22668/thumbvtt.ts
IP 23.237.196.106:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerLet's Encrypt
Subjectmasno-terer.mushroomtrack.com
FingerprintFD:A4:12:61:36:84:B5:48:2E:61:E9:8E:95:F8:62:95:49:5B:42:E8
ValidityTue, 28 Feb 2023 15:58:05 GMT - Mon, 29 May 2023 15:58:04 GMT
Hash 155d0f2e33d908b95e40e9163b4c0325
26a270726312aa247f83635bb79f701e6a2dc138
d1272865a3ffd6b01cd7b665922d803d49bcc51e6c9aed7b95451c7c3d4202df
GET /hls/jkFrKtKurPRDHuzABY37fw/1680831417/22000/22668/thumbvtt.ts HTTP/1.1
Host: masno-terer.mushroomtrack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Thu, 06 Apr 2023 22:37:09 GMT
content-type: video/mp2t
content-length: 9243
last-modified: Sun, 13 Mar 2022 23:26:06 GMT
etag: "622e7d8e-241b"
expires: Fri, 07 Apr 2023 22:37:09 GMT
cache-control: max-age=86400
access-control-allow-origin: https://fs1.app
accept-ranges: bytes
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/4000/4991/320x180/1.jpg
188.114.97.1200 OK 41 kB URL GET HTTP/3 assets.fs1.app/contents/videos_screenshots/4000/4991/320x180/1.jpg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 5c933f74fc7c4ba4dde92d1841090627
45017a9679e28fbb6b196ca75ee64680ca17d9f5
2578d422cb5e12d30cb2e80f76afb519e792ede7434cf4a9a1f0df6c3fbc8d92
GET /contents/videos_screenshots/4000/4991/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: assets.fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1680820629.1.0.1680820629.0.0.0; _ga=GA1.1.1539326741.1680820629
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:10 GMT
content-type: image/jpeg
content-length: 41351
last-modified: Fri, 10 Jan 2020 14:22:11 GMT
etag: "5e188893-a187"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q1UkODJx1JgLsrdLHIgoqVa0CCWGWkGfrkJsqFUUNifX3cpO1A08jHk0jY%2FE9aU3G8suZA1lWJ%2FC0Scc89b7NLyF0fvowhH751J0JYi6siIuBehI%2FckXw6j5CEl9wYcH%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d8389cf10b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
masno-terer.mushroomtrack.com/hls/jkFrKtKurPRDHuzABY37fw/1680831417/22000/22668/50ea9eeb961de034.ts
23.237.196.106200 OK 16 B URL GET HTTP/2 masno-terer.mushroomtrack.com/hls/jkFrKtKurPRDHuzABY37fw/1680831417/22000/22668/50ea9eeb961de034.ts
IP 23.237.196.106:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerLet's Encrypt
Subjectmasno-terer.mushroomtrack.com
FingerprintFD:A4:12:61:36:84:B5:48:2E:61:E9:8E:95:F8:62:95:49:5B:42:E8
ValidityTue, 28 Feb 2023 15:58:05 GMT - Mon, 29 May 2023 15:58:04 GMT
Hash f228eebbad322d230ac8b10b019fd4b1
aabc5c04d82afcf83d14af679255baf7023eb7d5
d69b540d0abd88cef1a328ec0f51f6dab9e3a1215297936316e01dc90bb030ad
GET /hls/jkFrKtKurPRDHuzABY37fw/1680831417/22000/22668/50ea9eeb961de034.ts HTTP/1.1
Host: masno-terer.mushroomtrack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 06 Apr 2023 22:37:10 GMT
content-type: video/mp2t
content-length: 16
last-modified: Sun, 13 Mar 2022 23:26:05 GMT
etag: "622e7d8d-10"
expires: Fri, 07 Apr 2023 22:37:10 GMT
cache-control: max-age=86400
access-control-allow-origin: https://fs1.app
accept-ranges: bytes
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/26000/26924/320x180/1.jpg
188.114.97.1200 OK 46 kB URL GET HTTP/3 assets.fs1.app/contents/videos_screenshots/26000/26924/320x180/1.jpg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 06598d387972c8a8d37be5f97ca48ff6
8d682d045b592602cc31a57c0505b9517ae6d691
a6e1983da26c5a1f3bac5b2ef540c07a821bf2bc65c6a26bb28e324d097d558a
GET /contents/videos_screenshots/26000/26924/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: assets.fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1680820629.1.0.1680820629.0.0.0; _ga=GA1.1.1539326741.1680820629
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:10 GMT
content-type: image/jpeg
content-length: 45770
last-modified: Thu, 15 Sep 2022 04:01:08 GMT
etag: "6322a384-b2ca"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7E3c39WvP7lXi29ikfQLsqXLkCkdG2xVOjlE5nsS4IWokdePtKmpg573lstCMCy4GL7t8ni%2BTHlDAOavqE9A3mjI2yv1NxakRqFRYtLHrc0NiU4uSX4w%2FSp13aKBWZXhsw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d8389df18b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
assets.fs1.app/contents/videos_screenshots/20000/20105/320x180/1.jpg
188.114.97.1200 OK 45 kB URL GET HTTP/3 assets.fs1.app/contents/videos_screenshots/20000/20105/320x180/1.jpg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 2ec8db54896a3b516ebdb4ad72749d31
3673ed59279df4c3f04f3ff227ae4c981ca126c9
ce41aba53c64fed57eeb13fd488f42876be4b1740d229a9b20749b957efcae14
GET /contents/videos_screenshots/20000/20105/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: assets.fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1680820629.1.0.1680820629.0.0.0; _ga=GA1.1.1539326741.1680820629
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:10 GMT
content-type: image/jpeg
content-length: 45256
last-modified: Wed, 24 Nov 2021 08:46:02 GMT
etag: "619dfbca-b0c8"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fqel9QHTFvfDSs4Y7X6oKP0TJEvc%2Fq%2F1NCg7Hy0CQBPDzsKEmAD05mUSrfdfFbPexzC%2BprbhFfWCsA9T8SZEjJey9lVseQcaw5959nPCyeEe%2Fz8HBAhdVFTLaO2lxBkVgQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d8389df1bb509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
assets.fs1.app/contents/videos_screenshots/24000/24365/320x180/1.jpg
188.114.97.1200 OK 44 kB URL GET HTTP/3 assets.fs1.app/contents/videos_screenshots/24000/24365/320x180/1.jpg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 275e1f7959727c3fa9a71063ca86281a
040437ee529d8968caa51591e10d1c8eec0218d0
14e40a9941edb2c2b675c7d4e096dde0ac336197dd6ec6c0c0499178e206f69e
GET /contents/videos_screenshots/24000/24365/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: assets.fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1680820629.1.0.1680820629.0.0.0; _ga=GA1.1.1539326741.1680820629
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:10 GMT
content-type: image/jpeg
content-length: 43784
last-modified: Mon, 23 May 2022 18:59:12 GMT
etag: "628bd980-ab08"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jeBsuBEjD4Mq5rKrT0cUEuYABFMNEiHHP9gVGjQ3iO0YEb0%2FjOeps7R9evHafWJZTOKk3nbmoW3DOacvg09cJFZAYcJOAAl1xNKys012lgt6Rx%2Fuk43WpyiGVgkUV8ytQQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d8389cf12b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
assets.fs1.app/contents/videos_screenshots/16000/16798/320x180/1.jpg
188.114.97.1200 OK 39 kB URL GET HTTP/3 assets.fs1.app/contents/videos_screenshots/16000/16798/320x180/1.jpg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash dc10b2d4c894b062968ec8775709c7a2
1348289f54f19169394cdaffcd129e775dde7c35
0b3a6e34e05fc69958af9daad363f378f2df146a9334deb8676f3d87100c0ac5
GET /contents/videos_screenshots/16000/16798/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: assets.fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1680820629.1.0.1680820629.0.0.0; _ga=GA1.1.1539326741.1680820629
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:10 GMT
content-type: image/jpeg
content-length: 38894
last-modified: Fri, 25 Jun 2021 09:14:25 GMT
etag: "60d59e71-97ee"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RqlGmtnGkwzrvRYfugT2IXI6waQkEAMip1VmxwiZtR2KrBWUYXDSIfoYfDF3YPuWusoHTxpFiriDuYlofCNv8E8BjPHvS4S76XCmwHQenBDXtk0O6VJnwOdOPj23AlakPQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d8389df1ab509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cloudlogobox.com/rtbfeed.php?001e67e03bf5
195.123.209.175200 OK 106 B URL GET HTTP/1.1 cloudlogobox.com/rtbfeed.php?001e67e03bf5
IP 195.123.209.175:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerLet's Encrypt
Subjectcloudlogobox.com
Fingerprint87:2D:8E:53:41:BA:6E:15:2C:20:A1:71:D0:F7:57:03:26:40:84:F5
ValidityWed, 15 Mar 2023 01:03:48 GMT - Tue, 13 Jun 2023 01:03:47 GMT
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 45519216be3b413c13c1bd623990d1b8
f374f2578e498a536085b57c41d3d2299fa84f5e
4742175aa9e5530bd227e6d0ca2e5d2be4aa5b46ec7ee4a7c8f81c74d7d7884c
GET /rtbfeed.php?001e67e03bf5 HTTP/1.1
Host: cloudlogobox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Apr 2023 22:37:10 GMT
Content-Type: image/png
Content-Length: 106
Last-Modified: Wed, 10 Feb 2021 11:05:43 GMT
Connection: keep-alive
ETag: "6023be07-6a"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 4f1e9ec06731b2d83410a92dc70dee40
f64b7e6dea65a3a3995cb68630656b0686341e14
86fc2108ee8b2cd4ed45dbd29600a912a271b2f6e9906506988422cb3dd7d64d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 22:37:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
imasdk.googleapis.com/js/sdkloader/ima3.js
142.250.74.74200 OK 124 kB URL GET HTTP/2 imasdk.googleapis.com/js/sdkloader/ima3.js
IP 142.250.74.74:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint76:50:4C:9F:C4:BB:29:C8:41:DD:B7:8A:B7:22:AE:3E:4F:A8:04:80
ValidityMon, 13 Mar 2023 08:25:02 GMT - Mon, 05 Jun 2023 08:25:01 GMT
File type ASCII text, with very long lines (2723)
Size 124 kB (123698 bytes)
Hash 6f27a78f50345819b57c641931185010
e5fbfb53f5dfe47d3bfef31bf6122966c02493d2
19f4f555a2d02cb197830a0c2d79d3cfc23db680709c29299f3bd220fc3f1a10
GET /js/sdkloader/ima3.js HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 123698
date: Thu, 06 Apr 2023 22:37:10 GMT
expires: Thu, 06 Apr 2023 22:37:10 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 4f1e9ec06731b2d83410a92dc70dee40
f64b7e6dea65a3a3995cb68630656b0686341e14
86fc2108ee8b2cd4ed45dbd29600a912a271b2f6e9906506988422cb3dd7d64d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 22:37:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
imasdk.googleapis.com/js/core/bridge3.566.2_en.html
142.250.74.74 231 kB URL imasdk.googleapis.com/js/core/bridge3.566.2_en.html
IP 142.250.74.74:0
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint76:50:4C:9F:C4:BB:29:C8:41:DD:B7:8A:B7:22:AE:3E:4F:A8:04:80
ValidityMon, 13 Mar 2023 08:25:02 GMT - Mon, 05 Jun 2023 08:25:01 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (48275)
Size 231 kB (231184 bytes)
Hash d644a098f0c7498e46ce3f8f44d65b01
fc1bdd868c9116f00579599625c6497ede96f416
13e6e4124e77ad6c2b77a9b5db6387330bbd884d53e71718ed5434d8a7d8911f
GET /js/core/bridge3.566.2_en.html HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: imasdk.googleapis.com
Connection: keep-alive
Referer: https://fs1.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 231184
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Apr 2023 15:46:53 GMT
expires: Wed, 03 Apr 2024 15:46:53 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 28 Mar 2023 15:25:51 GMT
content-type: text/html
vary: Accept-Encoding
age: 197418
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 9fb9e25865d789a04e00d4dcaaeb1227
db4e6d5b1ee006e3262f07eecbaaed1dd9e839aa
7d87a30307a6d258dfbc668e9317313e89dd3ba83abd8a09c4506bbe81f3f477
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 22:37:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash f565c1ce74ae9f1210c792b8407b6ad9
5899de829be23b25ddb697892008eb17dded7b05
a38ca149b2cbc2ce99fa385892d5283f6b8445c74aadf29073bacf862993ca48
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 22:37:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/omsdk/releases/live/omweb-v1.js
142.250.74.66200 OK 13 kB URL GET HTTP/2 pagead2.googlesyndication.com/omsdk/releases/live/omweb-v1.js
IP 142.250.74.66:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint54:B7:F5:23:D5:77:63:C0:A7:12:2E:8F:61:C7:BB:63:00:ED:91:B3
ValidityMon, 13 Mar 2023 08:16:49 GMT - Mon, 05 Jun 2023 08:16:48 GMT
File type ASCII text, with very long lines (1514)
Hash e0a80a7ff607cd6b73373b9d4f2f2785
89da55740e0305bdfc3fabedff5057d1cee93559
0fb653ddef8068310e3fb45204026264c638d12e272aad697da6e9590d85d2a3
GET /omsdk/releases/live/omweb-v1.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/omsdk-team-release-policy
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="omsdk-team-release-policy"
report-to: {"group":"omsdk-team-release-policy","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/omsdk-team-release-policy"}]}
content-length: 13208
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Apr 2023 21:45:33 GMT
expires: Thu, 06 Apr 2023 22:45:33 GMT
cache-control: public, max-age=3600
age: 3098
last-modified: Tue, 14 Mar 2023 20:29:12 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=fs1.app
216.58.207.194200 OK 100 B URL GET HTTP/2 adservice.google.com/adsid/integrator.js?domain=fs1.app
IP 216.58.207.194:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintD7:4E:1B:2F:42:55:EA:42:0B:20:9F:F8:3C:07:ED:BE:50:2D:C0:4F
ValidityMon, 13 Mar 2023 08:18:01 GMT - Mon, 05 Jun 2023 08:18:00 GMT
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=fs1.app HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 06 Apr 2023 22:37:11 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
assets.fs1.app/assets/icon/apple-touch-icon.png?v=8
188.114.97.1200 OK 2.2 kB URL GET HTTP/3 assets.fs1.app/assets/icon/apple-touch-icon.png?v=8
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 289c267b299c6efd9d858dce9265d292
a74380024cb5d750f0e6e5367868b62a2f8da979
95a0926985813fbebd6f14d9f599fc8ce908b347e71a4f8957413cdddda6d554
GET /assets/icon/apple-touch-icon.png?v=8 HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: assets.fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1680820629.1.0.1680820629.0.0.0; _ga=GA1.1.1539326741.1680820629
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:11 GMT
content-type: image/png
content-length: 2222
last-modified: Fri, 26 Apr 2019 13:17:54 GMT
etag: "5cc30502-8ae"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PIMtI9rzfvXnJWdycMB8s37hDmEV2d53wG4Ci8hmpF6he%2Fur%2FqbD2sk7RVSAKXh39qwhEPv4SoMGNRDWKAeJS3pErBoVhH1NioqfwS2A%2BsZN55LJIvpGAo6itkpdtn8pIA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d838e6c02b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
b-hls-17.doppiocdn.com/hls/99604173/99604173_480p_init_rbrdINanw9KpSLCL.mp4
104.18.55.220200 OK 1.2 kB URL GET HTTP/2 b-hls-17.doppiocdn.com/hls/99604173/99604173_480p_init_rbrdINanw9KpSLCL.mp4
IP 104.18.55.220:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type ISO Media, MP4 Base Media v5 \012- data
Hash 2518d529eb80de76430503680e4349b0
ae05082bf1dbaf427fe1ece5e33bb55db50c3d18
aeb0447767dd9c916094c2f0544f8fdd6bec7f9b1eb8521aafe0085d6545401f
GET /hls/99604173/99604173_480p_init_rbrdINanw9KpSLCL.mp4 HTTP/1.1
Host: b-hls-17.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:37:11 GMT
content-type: video/mp4
content-length: 1218
last-modified: Thu, 06 Apr 2023 22:09:05 GMT
etag: "642f4301-4c2"
timing-allow-origin: *
cache-control: public, max-age=60, s-maxage=60
access-control-allow-origin: *
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d83908dc4067b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
assets.fs1.app/assets/icon/favicon-16x16.png
188.114.97.1200 OK 211 B URL GET HTTP/3 assets.fs1.app/assets/icon/favicon-16x16.png
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 0dad7e42fdc1857ca6f410ed2b86fc18
9c10b21666e7e804cf6c721416aa0436419614db
e9ee417839b142602744bd5150311d5229ac9696fdc114b93246f01043fc7dfd
GET /assets/icon/favicon-16x16.png HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: assets.fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1680820629.1.0.1680820629.0.0.0; _ga=GA1.1.1539326741.1680820629
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:11 GMT
content-type: image/png
content-length: 211
last-modified: Fri, 26 Apr 2019 13:17:54 GMT
etag: "5cc30502-d3"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BljcKUQjwS%2BQOX5hZtEq4pwsxUtMbrpTeWH2H9r8VliAEJISS1dKWdVWK1FM5jzBcJLOlZXIAMRZMMsQ2rcs1LFtKR97xhEYuIiiDuHwTHKtKbHI4ZCjEmdq1ShSOSRUSQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d838e6c04b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash f565c1ce74ae9f1210c792b8407b6ad9
5899de829be23b25ddb697892008eb17dded7b05
a38ca149b2cbc2ce99fa385892d5283f6b8445c74aadf29073bacf862993ca48
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 22:37:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 9fb9e25865d789a04e00d4dcaaeb1227
db4e6d5b1ee006e3262f07eecbaaed1dd9e839aa
7d87a30307a6d258dfbc668e9317313e89dd3ba83abd8a09c4506bbe81f3f477
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 22:37:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
b-hls-17.doppiocdn.com/hls/99604173/99604173_480p_839_yJFUeQNXig7U4S4O_1680820623.mp4
104.18.55.220200 OK 308 kB URL GET HTTP/2 b-hls-17.doppiocdn.com/hls/99604173/99604173_480p_839_yJFUeQNXig7U4S4O_1680820623.mp4
IP 104.18.55.220:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
Size 308 kB (308085 bytes)
Hash ee319849824547e5017a3e82eccf8a27
2a259012cd4f312fac51fd01959698b8db8f7cee
c1b172755a346c379567e3ee52170c69a6f8a8257c7289d78fa5e85051e3d977
GET /hls/99604173/99604173_480p_839_yJFUeQNXig7U4S4O_1680820623.mp4 HTTP/1.1
Host: b-hls-17.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:37:11 GMT
content-type: video/mp4
content-length: 308085
last-modified: Thu, 06 Apr 2023 22:37:05 GMT
etag: "642f4991-4b375"
timing-allow-origin: *
cache-control: public, max-age=60, s-maxage=60
access-control-allow-origin: *
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d83919e32067b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
masno-terer.mushroomtrack.com/hls/jkFrKtKurPRDHuzABY37fw/1680831417/22000/22668/226680.ts
23.237.196.106200 OK 1.9 MB URL GET HTTP/2 masno-terer.mushroomtrack.com/hls/jkFrKtKurPRDHuzABY37fw/1680831417/22000/22668/226680.ts
IP 23.237.196.106:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerLet's Encrypt
Subjectmasno-terer.mushroomtrack.com
FingerprintFD:A4:12:61:36:84:B5:48:2E:61:E9:8E:95:F8:62:95:49:5B:42:E8
ValidityTue, 28 Feb 2023 15:58:05 GMT - Mon, 29 May 2023 15:58:04 GMT
Size 1.9 MB (1924192 bytes)
Hash dcf4b14b6e5e6a6903b89c7f72f1bda9
79d2bf4726a6ef3600ec0a1823eb7aa9cce4b6b7
cf73375f10f28ec18d2b05745b5316362e8a46a7bf79d7ffb9c074d5429c0488
GET /hls/jkFrKtKurPRDHuzABY37fw/1680831417/22000/22668/226680.ts HTTP/1.1
Host: masno-terer.mushroomtrack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 06 Apr 2023 22:37:10 GMT
content-type: video/mp2t
content-length: 1924192
last-modified: Sun, 13 Mar 2022 23:05:45 GMT
etag: "622e78c9-1d5c60"
expires: Fri, 07 Apr 2023 22:37:10 GMT
cache-control: max-age=86400
access-control-allow-origin: https://fs1.app
accept-ranges: bytes
X-Firefox-Spdy: h2
b-hls-17.doppiocdn.com/hls/99604173/99604173_480p_840_fdNMgEpFEKpKSblf_1680820625.mp4
104.18.55.220200 OK 319 kB URL GET HTTP/3 b-hls-17.doppiocdn.com/hls/99604173/99604173_480p_840_fdNMgEpFEKpKSblf_1680820625.mp4
IP 104.18.55.220:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
Size 319 kB (318945 bytes)
Hash 47293d651f8a783819fe59f61fda057c
2fdd64521ebb5e938d697b222ce5488c9ac7130b
20f96b8fdd853192e16ba29a477db216029d1a1912b3b15d6292c34562eee565
GET /hls/99604173/99604173_480p_840_fdNMgEpFEKpKSblf_1680820625.mp4 HTTP/1.1
Host: b-hls-17.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:11 GMT
content-type: video/mp4
content-length: 318945
last-modified: Thu, 06 Apr 2023 22:37:07 GMT
etag: "642f4993-4dde1"
timing-allow-origin: *
cache-control: public, max-age=60, s-maxage=60
access-control-allow-origin: *
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d83925d32fac0-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
masno-terer.mushroomtrack.com/hls/jkFrKtKurPRDHuzABY37fw/1680831417/22000/22668/thumb.ts
23.237.196.106200 OK 1.3 MB URL GET HTTP/2 masno-terer.mushroomtrack.com/hls/jkFrKtKurPRDHuzABY37fw/1680831417/22000/22668/thumb.ts
IP 23.237.196.106:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerLet's Encrypt
Subjectmasno-terer.mushroomtrack.com
FingerprintFD:A4:12:61:36:84:B5:48:2E:61:E9:8E:95:F8:62:95:49:5B:42:E8
ValidityTue, 28 Feb 2023 15:58:05 GMT - Mon, 29 May 2023 15:58:04 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 95", baseline, precision 8, 2130x1800, components 3\012- data
Size 1.3 MB (1307231 bytes)
Hash a43474d62ccf6d64510d252c951ef8fc
f0d3ac4ab96dcced1289e13d03b88ce7eb653206
e3f369bc0f2b27f9301d8ea141e266bb8abd2baa3513e3fc44d1c279f45b5083
GET /hls/jkFrKtKurPRDHuzABY37fw/1680831417/22000/22668/thumb.ts HTTP/1.1
Host: masno-terer.mushroomtrack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 06 Apr 2023 22:37:10 GMT
content-type: video/mp2t
content-length: 1307231
last-modified: Sun, 13 Mar 2022 23:26:06 GMT
etag: "622e7d8e-13f25f"
expires: Fri, 07 Apr 2023 22:37:10 GMT
cache-control: max-age=86400, public
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash f34f320d2fafb201d131e50ba06e6582
30967e6e4341caf4ac5a727ccf7866ace4a6153a
c1cbd41a4795d3c7fa76ece0452db2acb2ba606fe00ccc9ed2e691e902a54913
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 22:37:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
syndication.exosrv.com/splash.php?idzone=3377419
95.211.229.245200 OK 2.6 kB URL GET HTTP/1.1 syndication.exosrv.com/splash.php?idzone=3377419
IP 95.211.229.245:443
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://imasdk.googleapis.com/js/core/bridge3.566.2_en.html#goog_2108929264
Certificate IssuerLet's Encrypt
Subjectexosrv.com
FingerprintB0:32:AF:54:A7:8F:3E:F6:C6:1A:EE:BD:56:D9:24:65:24:82:81:E1
ValidityMon, 27 Feb 2023 07:27:56 GMT - Sun, 28 May 2023 07:27:55 GMT
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (1541)
Hash 535b9c856d45c596ebf74455eaf3af39
99e75d64d9a7a5e2c89425f851c9e268c083d588
e7c719d6c4948bbc8be737137db8dd485ed9e14447d0c993fd481eb59b100c35
GET /splash.php?idzone=3377419 HTTP/1.1
Host: syndication.exosrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Apr 2023 22:37:11 GMT
Content-Type: text/xml;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22642f4997973ba9.851131882938414738%22%3B%7D; expires=Sat, 05 Apr 2025 22:37:11 GMT; path=; domain=.exosrv.com; Secure; SameSite=none
c-tag=%7B%22tag-video%22%3A%22v3%7C%7CNOR%7C3377419%7C49055702%7C0%7C%7C99%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Cimasdk.googleapis.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D; expires=Fri, 07 Apr 2023 22:37:11 GMT; path=/; domain=.exosrv.com; Secure; SameSite=none
zone-cap-3377419=1; expires=Fri, 07 Apr 2023 04:37:11 GMT; path=/; domain=.exosrv.com; Secure; SameSite=none
Cache-Control: no-store
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: https://imasdk.googleapis.com
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
s0.2mdn.net/instream/video/client.js
172.217.21.166200 OK 17 kB URL GET HTTP/2 s0.2mdn.net/instream/video/client.js
IP 172.217.21.166:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerGoogle Trust Services LLC
Subject*.doubleclick.net
Fingerprint46:3B:22:E3:28:FF:6F:E5:0A:21:12:98:5B:C8:D2:92:59:11:6F:D6
ValidityMon, 13 Mar 2023 08:16:45 GMT - Mon, 05 Jun 2023 08:16:44 GMT
File type ASCII text, with very long lines (2156)
Hash 49295de6ccd23cf80b6418a2d209868f
42a955b4560bb22cb9b5b39577f7a691ea345018
d5a29c73c6200af2ed6918a61106e649b92098ecd476830d725ed4d2ea5a8efa
GET /instream/video/client.js HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
content-length: 16746
date: Thu, 06 Apr 2023 22:37:11 GMT
expires: Thu, 06 Apr 2023 22:37:11 GMT
cache-control: private, max-age=900
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash f34f320d2fafb201d131e50ba06e6582
30967e6e4341caf4ac5a727ccf7866ace4a6153a
c1cbd41a4795d3c7fa76ece0452db2acb2ba606fe00ccc9ed2e691e902a54913
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Apr 2023 22:37:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
masno-terer.mushroomtrack.com/hls/jkFrKtKurPRDHuzABY37fw/1680831417/22000/22668/226681.ts
23.237.196.106200 OK 1.3 MB URL GET HTTP/2 masno-terer.mushroomtrack.com/hls/jkFrKtKurPRDHuzABY37fw/1680831417/22000/22668/226681.ts
IP 23.237.196.106:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerLet's Encrypt
Subjectmasno-terer.mushroomtrack.com
FingerprintFD:A4:12:61:36:84:B5:48:2E:61:E9:8E:95:F8:62:95:49:5B:42:E8
ValidityTue, 28 Feb 2023 15:58:05 GMT - Mon, 29 May 2023 15:58:04 GMT
Size 1.3 MB (1277664 bytes)
Hash 1ac3aec4610e9a547062c96eb82b268e
a67685277edfa5b7ef74b01ca3c554022f9eab75
49cf51dbfc464dc77d526e5555f4e20498414a28a7de0eb29ef61290a3225f8a
GET /hls/jkFrKtKurPRDHuzABY37fw/1680831417/22000/22668/226681.ts HTTP/1.1
Host: masno-terer.mushroomtrack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 06 Apr 2023 22:37:11 GMT
content-type: video/mp2t
content-length: 1277664
last-modified: Sun, 13 Mar 2022 23:05:46 GMT
etag: "622e78ca-137ee0"
expires: Fri, 07 Apr 2023 22:37:11 GMT
cache-control: max-age=86400
access-control-allow-origin: https://fs1.app
accept-ranges: bytes
X-Firefox-Spdy: h2
a.labadena.com/api/users/262182?host=fs1.app&ev=206&wh=1024&ww=1280&uuid=&kw=%E5%88%B6%E6%9C%8D%E8%AA%98%E6%83%91%2C%E8%A7%92%E8%89%B2%E5%8A%87%E6%83%85%2C%E5%B0%91%E5%A5%B3%2C%E5%B7%A8%E4%B9%B3%2C%E6%A0%A1%E6%9C%8D%2C%E8%99%95%E5%A5%B3%E4%BD%9C%2F%E5%BC%95%E9%80%80%E4%BD%9C%2C%E5%AD%B8%E6%A0%A1%2C%E6%B0%B4%E7%9D%80%2C%E8%98%BF%E8%8E%89%2C3P%2C%E9%A1%8F%E5%B0%84%2C%E6%98%9F%E5%AE%AE%E3%82%86%E3%81%AE%E3%82%93&s1=%25subid1%25
135.181.208.216200 OK 39 kB URL GET HTTP/2 a.labadena.com/api/users/262182?host=fs1.app&ev=206&wh=1024&ww=1280&uuid=&kw=%E5%88%B6%E6%9C%8D%E8%AA%98%E6%83%91%2C%E8%A7%92%E8%89%B2%E5%8A%87%E6%83%85%2C%E5%B0%91%E5%A5%B3%2C%E5%B7%A8%E4%B9%B3%2C%E6%A0%A1%E6%9C%8D%2C%E8%99%95%E5%A5%B3%E4%BD%9C%2F%E5%BC%95%E9%80%80%E4%BD%9C%2C%E5%AD%B8%E6%A0%A1%2C%E6%B0%B4%E7%9D%80%2C%E8%98%BF%E8%8E%89%2C3P%2C%E9%A1%8F%E5%B0%84%2C%E6%98%9F%E5%AE%AE%E3%82%86%E3%81%AE%E3%82%93&s1=%25subid1%25
IP 135.181.208.216:443
ASN #24940 Hetzner Online GmbH
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerLet's Encrypt
Subjecta.labadena.com
FingerprintB3:CC:65:92:BF:73:55:95:BD:FD:91:93:93:C9:91:8A:88:6E:67:3F
ValidityWed, 15 Feb 2023 23:27:10 GMT - Tue, 16 May 2023 23:27:09 GMT
Hash e19f62d998852049d111ebbc94c2bf83
cfb28f72db503999968865b3b235d23e9fe221d5
3a34bd3ca13065f9997aca91089dedbddc2f545ac1f4f1a0bc1038f8391b720e
GET /api/users/262182?host=fs1.app&ev=206&wh=1024&ww=1280&uuid=&kw=%E5%88%B6%E6%9C%8D%E8%AA%98%E6%83%91%2C%E8%A7%92%E8%89%B2%E5%8A%87%E6%83%85%2C%E5%B0%91%E5%A5%B3%2C%E5%B7%A8%E4%B9%B3%2C%E6%A0%A1%E6%9C%8D%2C%E8%99%95%E5%A5%B3%E4%BD%9C%2F%E5%BC%95%E9%80%80%E4%BD%9C%2C%E5%AD%B8%E6%A0%A1%2C%E6%B0%B4%E7%9D%80%2C%E8%98%BF%E8%8E%89%2C3P%2C%E9%A1%8F%E5%B0%84%2C%E6%98%9F%E5%AE%AE%E3%82%86%E3%81%AE%E3%82%93&s1=%25subid1%25 HTTP/1.1
Host: a.labadena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: nauid=4tpNCUozgj925A2IBvsR
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 06 Apr 2023 22:37:11 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.plyr.io/3.5.4/plyr.svg
104.27.195.88200 OK 47 kB URL GET HTTP/2 cdn.plyr.io/3.5.4/plyr.svg
IP 104.27.195.88:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerGoogle Trust Services LLC
Subject*.plyr.io
Fingerprint67:CC:61:94:94:F6:73:5C:58:8A:7D:BA:CB:15:AC:A6:22:B2:52:80
ValiditySun, 26 Feb 2023 18:14:22 GMT - Sat, 27 May 2023 18:14:21 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with very long lines (5479), with no line terminators
Hash 5a4a95b28be73fe750d1259f2c6c133a
863da365a2afbef137cc2a667c9e7f7b9fff3eb8
087a7040d1a85e9546d979f950da2b0e90f7d296f9edc1b1a4af1d43a4345a2f
GET /3.5.4/plyr.svg HTTP/1.1
Host: cdn.plyr.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:37:09 GMT
content-type: image/svg+xml
x-amz-id-2: qUKWroGHdboZQophBPCLCPc7/bOhQIREG1U3ePu1g6HAfSL6YnyjWWTRHPZiEsClVxRXBgtBYQo=
x-amz-request-id: NKKM3JSZ5CW7GG61
last-modified: Thu, 25 Apr 2019 02:13:31 GMT
etag: W/"d1f4356635795f17eaa9bd377d172997"
cache-control: max-age=31536000
via: 1.1 varnish, 1.1 varnish
x-served-by: cache-iad-kjyo7100172-IAD, cache-jnb7024-JNB
x-cache: HIT, HIT
x-cache-hits: 1, 5222
x-timer: S1668936166.136618,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Range, Date, Cache-Control, Content-Type, Accept, Origin, Accept
cf-cache-status: HIT
age: 904306
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ciAKjibK7YQ%2B9RNv9RB9I%2BvkqTz21TdEMOmghJEogvCy9pOgXbGdToFRlZ0lC29yZEnDkAYOHn3kIiNjS%2BXPuJ89RRPs1JQI3WGu6aWDh3f84zRcAeBFrqG1wy1D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b3d83851f95b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/22000/22902/320x180/1.jpg
188.114.97.1200 OK 42 kB URL GET HTTP/3 assets.fs1.app/contents/videos_screenshots/22000/22902/320x180/1.jpg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash f01c0244d46a8c335ffafbfed86d944c
a623fd4397fd9a55729d5ccad13e3a25a9825983
0913026f636faa4af22edd86b91fe665e05e7902488791fbc88e075f206967f2
GET /contents/videos_screenshots/22000/22902/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: assets.fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1680820629.1.0.1680820629.0.0.0; _ga=GA1.1.1539326741.1680820629
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:12 GMT
content-type: image/jpeg
content-length: 42346
last-modified: Wed, 23 Mar 2022 16:09:04 GMT
etag: "623b4620-a56a"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XZAwrMnzezbFwQRC%2BW1MwWIKRZAYI1hKicxaVqx8Yuy%2F9X%2FoM3WIvRK5Ql99aZCqT6SnWXqMBixx0yjhEBaqJr%2BL8WXv1yC6Cf3QYO7mcX4y0HvkghZH%2Fq4FG8y3picffQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d83955abcb509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
assets.fs1.app/contents/videos_screenshots/18000/18297/320x180/1.jpg
188.114.97.1200 OK 30 kB URL GET HTTP/3 assets.fs1.app/contents/videos_screenshots/18000/18297/320x180/1.jpg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 563223d7bca888e191e9f9de8ad3946d
4f8e483675a6ac6561f3821cf49c22455f434bfb
5d342f3c252292267dbb9fd872d100a308c6c73d0fe160b08554280b1b643730
GET /contents/videos_screenshots/18000/18297/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: assets.fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1680820629.1.0.1680820629.0.0.0; _ga=GA1.1.1539326741.1680820629
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:12 GMT
content-type: image/jpeg
content-length: 29751
last-modified: Thu, 02 Sep 2021 05:09:54 GMT
etag: "61305ca2-7437"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hyPXkzYx2xV2suhYIne1JE3WtehWy2K2DR7FGv06zJpw436zfJ9CEUzQzkm6gzKAPAtm7vsWApfXHkk67TjTuDK4o%2F4o8NZqnmMVlqcoTdv7tNMtuLIZrTBqF2W1RFv%2FkQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d83955ac6b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
assets.fs1.app/contents/videos_screenshots/29000/29617/320x180/1.jpg
188.114.97.1200 OK 40 kB URL GET HTTP/3 assets.fs1.app/contents/videos_screenshots/29000/29617/320x180/1.jpg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 76752d5a2c066c00bae67b52823f0d0e
39d989ff4f454f887e32e34e0ed7081651d1d480
5ec3249506248d5b2cad55b9aed6a99f8f7ddbeb6f41c7568f50325f910d2491
GET /contents/videos_screenshots/29000/29617/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: assets.fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1680820629.1.0.1680820629.0.0.0; _ga=GA1.1.1539326741.1680820629
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:12 GMT
content-type: image/jpeg
content-length: 39981
last-modified: Tue, 03 Jan 2023 09:52:01 GMT
etag: "63b3fac1-9c2d"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J0Vmqp4aetiqBPosbDoHmWGQmaR%2Fja6KnoeoeI7vK5GiJRr0KJ7myJPoDRZRWk%2BEzjTpLeigp8mhm7lQmhQK6OH6aggF68qXZSrN9Cgl5syK2jFBbOHYmg0g8ZTICeG35g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d83955ab8b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
assets.fs1.app/contents/videos_screenshots/19000/19911/320x180/1.jpg
188.114.97.1200 OK 47 kB URL GET HTTP/3 assets.fs1.app/contents/videos_screenshots/19000/19911/320x180/1.jpg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 3f866b86b06d2b52f43243f6bd511080
dc46436002300514f83be4a09439ce8a9b2b7c00
470cd8309338ce3fc65037969ba19c5cdeb480dc4821e8aa6ef111621853617d
GET /contents/videos_screenshots/19000/19911/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: assets.fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1680820629.1.0.1680820629.0.0.0; _ga=GA1.1.1539326741.1680820629
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:12 GMT
content-type: image/jpeg
content-length: 47130
last-modified: Mon, 15 Nov 2021 02:33:02 GMT
etag: "6191c6de-b81a"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iUsd7JfsP3YtJJ9Cp4ZAKsjfArkpbEVJBwWerMgBewZrnECXrCZsGbxjUNGqj0xhqYQNknSKnuqS7bHQtz3iCkeE4at%2BbOBOFzknzlybTbaZi1WtNkVXXMr8hFadp5zWuw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d83955abbb509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
assets.fs1.app/contents/videos_screenshots/7000/7863/320x180/1.jpg
188.114.97.1200 OK 37 kB URL GET HTTP/3 assets.fs1.app/contents/videos_screenshots/7000/7863/320x180/1.jpg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 4f9cacb98cad24c4902e8dc77244b7dc
2f7f6026c68f4e1e288ace048bb2ec2b5e38acec
f2898c54d0ab19c718b29f4a19ba6ed060c186b9030857b3e49b99f638032fe0
GET /contents/videos_screenshots/7000/7863/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: assets.fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1680820629.1.0.1680820629.0.0.0; _ga=GA1.1.1539326741.1680820629
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:12 GMT
content-type: image/jpeg
content-length: 37336
last-modified: Wed, 20 May 2020 03:47:43 GMT
etag: "5ec4a85f-91d8"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n%2Fu9mt9NY%2FLRu72MSqjUnNYVrlrFeq2x7jXf8apYGuB6GpEl0eEpmSh6%2FuFrE1zhSxths91t5KC5QbavS9qQgIq3AlMylrK79uhIJ06pw%2F5lICjby3tNyPZqKYRnuN0pgQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d83955acdb509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
assets.fs1.app/contents/videos_screenshots/16000/16514/320x180/1.jpg
188.114.97.1200 OK 37 kB URL GET HTTP/3 assets.fs1.app/contents/videos_screenshots/16000/16514/320x180/1.jpg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash a973af938f50e8fb3a1c1ba150044a38
b6139a1d22820f90f6117e8a3a07e4c1b033f34f
214198ac61ce2d2e4b2c11985e911c6b3033e184a6ab6544df416d4ac48dbb20
GET /contents/videos_screenshots/16000/16514/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: assets.fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1680820629.1.0.1680820629.0.0.0; _ga=GA1.1.1539326741.1680820629
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:12 GMT
content-type: image/jpeg
content-length: 37008
last-modified: Mon, 14 Jun 2021 04:17:48 GMT
etag: "60c6d86c-9090"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lkf6L%2BGtRvr8lWRzpHL%2FC0m85E5GsVoZ6EeubhfA3HxA8gyz9o8ycwTZnIy%2Fa7BEAvqch7iHiDtJ4zj1nsDrzii0uED7hUOFcmQxzYqEgC7NEi6pF1swmzbfj%2B4x7ptReQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d83955abeb509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
csi.gstatic.com/csi?v=2&s=ima&puid=1~lg5p7fev&c=7800876715848&slotId=3900438357924&eee=missing-element&bi=missing-id&vast_v=3.0&vmfc=1&vhc=0&icc=1&icrh=0&icri=0&icrs=0&icru=0&icdi=nsxns&lima_p_ich=0&lima_p_icu=0
142.250.192.131204 No Content 0 B URL POST HTTP/2 csi.gstatic.com/csi?v=2&s=ima&puid=1~lg5p7fev&c=7800876715848&slotId=3900438357924&eee=missing-element&bi=missing-id&vast_v=3.0&vmfc=1&vhc=0&icc=1&icrh=0&icri=0&icrs=0&icru=0&icdi=nsxns&lima_p_ich=0&lima_p_icu=0
IP 142.250.192.131:443
Requested by https://imasdk.googleapis.com/js/core/bridge3.566.2_en.html#goog_2108929264
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint1C:AF:ED:FD:AA:9B:87:E6:A4:D5:27:D7:B6:5D:60:78:61:2E:CC:28
ValidityMon, 13 Mar 2023 08:24:32 GMT - Mon, 05 Jun 2023 08:24:31 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csi?v=2&s=ima&puid=1~lg5p7fev&c=7800876715848&slotId=3900438357924&eee=missing-element&bi=missing-id&vast_v=3.0&vmfc=1&vhc=0&icc=1&icrh=0&icri=0&icrs=0&icru=0&icdi=nsxns&lima_p_ich=0&lima_p_icu=0 HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: *
date: Thu, 06 Apr 2023 22:37:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
csi.gstatic.com/csi?v=2&s=ima&puid=2~lg5p7fpu&c=7800876715848&slotId=3900438357924&ghmsh_eids=44748969%2C44765701%2C44772139%2C44773331%2C44777649%2C44781409%2C44781753%2C44782991
142.250.192.131204 No Content 0 B URL POST HTTP/2 csi.gstatic.com/csi?v=2&s=ima&puid=2~lg5p7fpu&c=7800876715848&slotId=3900438357924&ghmsh_eids=44748969%2C44765701%2C44772139%2C44773331%2C44777649%2C44781409%2C44781753%2C44782991
IP 142.250.192.131:443
Requested by https://imasdk.googleapis.com/js/core/bridge3.566.2_en.html#goog_2108929264
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint1C:AF:ED:FD:AA:9B:87:E6:A4:D5:27:D7:B6:5D:60:78:61:2E:CC:28
ValidityMon, 13 Mar 2023 08:24:32 GMT - Mon, 05 Jun 2023 08:24:31 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csi?v=2&s=ima&puid=2~lg5p7fpu&c=7800876715848&slotId=3900438357924&ghmsh_eids=44748969%2C44765701%2C44772139%2C44773331%2C44777649%2C44781409%2C44781753%2C44782991 HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: *
date: Thu, 06 Apr 2023 22:37:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/18000/18286/320x180/1.jpg
188.114.97.1200 OK 45 kB URL GET HTTP/3 assets.fs1.app/contents/videos_screenshots/18000/18286/320x180/1.jpg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash e5163fa0e7610649a9ee32b2653b0b15
03dff098d5c863b9e234e267cd0ecac338998322
9b80f9cb1a17407fbe689209015d6492071c3434311649bb1a2f822548f0f16e
GET /contents/videos_screenshots/18000/18286/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: assets.fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1680820629.1.0.1680820629.0.0.0; _ga=GA1.1.1539326741.1680820629
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:12 GMT
content-type: image/jpeg
content-length: 45062
last-modified: Wed, 01 Sep 2021 11:59:17 GMT
etag: "612f6b15-b006"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZXzJ7LiBT297lxz%2F49zXVhahecj2v9xbt4PJS530s%2F64sPFavv2eTtOf7aWyj9y5ezU6OPYErV3Lk4MzgfMfNU0V3RNnpQt3RLHw1ltpWWGSpAUKrc1zOGUkvPPbsu3Aog%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d83956ad3b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
b-hls-17.doppiocdn.com/hls/99604173/99604173_480p.m3u8
104.18.55.220200 OK 722 B URL GET HTTP/3 b-hls-17.doppiocdn.com/hls/99604173/99604173_480p.m3u8
IP 104.18.55.220:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type M3U playlist, ASCII text, with very long lines (740), with no line terminators
Hash ee8fc171c2296c7c6f28ec7e8b863d9e
4e657d3afa4bbd121c7cc5f0131df7da59f0b726
6eb95825b7271e9eb4e1647b469a1651178e51d528d9955f8dbeda41185d2d5f
GET /hls/99604173/99604173_480p.m3u8 HTTP/1.1
Host: b-hls-17.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:19 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Thu, 06 Apr 2023 22:37:19 GMT
x-proxy-cache: HIT
timing-allow-origin: *
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 7b3d83c1fc23fac0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
creative.admjmp.com/widgets/Spot/vendors~hls.18f09cc78016f06b828b.js
104.18.51.106200 OK 178 kB URL GET HTTP/3 creative.admjmp.com/widgets/Spot/vendors~hls.18f09cc78016f06b828b.js
IP 104.18.51.106:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectcreative.admjmp.com
FingerprintF5:BC:E5:4B:69:86:E0:72:1B:ED:C9:0B:10:D7:BE:A0:86:F3:1D:71
ValiditySat, 30 Jul 2022 00:00:00 GMT - Sun, 30 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (45140)
Size 178 kB (177865 bytes)
Hash d47dabb4fffc74448f81658667859160
9a309deebefda0376c4f7013fba78ee733620284
e3295b3aee4ac84c9eea9a0b702f69c63d98c5aa253b0152333f4fc0edec5534
GET /widgets/Spot/vendors~hls.18f09cc78016f06b828b.js HTTP/1.1
Host: creative.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: creative.admjmp.com
Connection: keep-alive
Referer: https://fs1.app/
Cookie: __cflb=02DiuDfsBaY2bRYJiCfFHYpfgnRfzoh6KDmwc5JPjdhYY
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:10 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 04 Apr 2023 03:07:52 GMT
etag: W/"642b9488-2b6c9"
expires: Thu, 06 Apr 2023 22:37:17 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d838edbb71bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.35200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.35:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint1C:AF:ED:FD:AA:9B:87:E6:A4:D5:27:D7:B6:5D:60:78:61:2E:CC:28
ValidityMon, 13 Mar 2023 08:24:32 GMT - Mon, 05 Jun 2023 08:24:31 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fs1.app
Connection: keep-alive
Referer: https://assets.fs1.app/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Apr 2023 10:31:03 GMT
expires: Wed, 03 Apr 2024 10:31:03 GMT
cache-control: public, max-age=31536000
age: 216366
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
creative.admjmp.com/widgets/Spot/hls.50741c7e234eee284c18.js
104.18.51.106200 OK 61 B URL GET HTTP/3 creative.admjmp.com/widgets/Spot/hls.50741c7e234eee284c18.js
IP 104.18.51.106:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectcreative.admjmp.com
FingerprintF5:BC:E5:4B:69:86:E0:72:1B:ED:C9:0B:10:D7:BE:A0:86:F3:1D:71
ValiditySat, 30 Jul 2022 00:00:00 GMT - Sun, 30 Jul 2023 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 059cfc353c033aee704318a0a67275a2
22d5ea1600df265723b181b484f2e3f85a4bcbbc
68d5bef571c6a9e14d8a182bc2ed9cbe64d353a86dcba0387440760cbeed8f53
GET /widgets/Spot/hls.50741c7e234eee284c18.js HTTP/1.1
Host: creative.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: creative.admjmp.com
Connection: keep-alive
Referer: https://fs1.app/
Cookie: __cflb=02DiuDfsBaY2bRYJiCfFHYpfgnRfzoh6KDmwc5JPjdhYY
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:10 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 04 Apr 2023 03:07:52 GMT
etag: W/"642b9488-3d"
expires: Thu, 06 Apr 2023 22:37:12 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d838edbb91bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
assets.fs1.app/assets/js/player.js
188.114.97.1200 OK 424 kB URL GET HTTP/3 assets.fs1.app/assets/js/player.js
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
Size 424 kB (424056 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/js/player.js HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:08 GMT
content-type: application/javascript
last-modified: Wed, 08 May 2019 04:54:14 GMT
vary: Accept-Encoding
etag: W/"5cd260f6-67878"
expires: Mon, 10 Apr 2023 10:56:03 GMT
cache-control: max-age=604800
strict-transport-security: max-age=15768000
cf-cache-status: HIT
age: 301265
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9APs6FQSA3XFQ921fZKsFTrIOFYP0pJDb8QU%2F9o%2F0plNaEFI9CRfvupsQy4X8TlvEmbstVirc%2FwWVGJQiSu31k1Hok9AHqqiFAdtnTYKULJ2q%2FE71DZMZPXxpnbCIvxn7A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b3d83809d1db509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
b-hls-17.doppiocdn.com/hls/99604173/99604173_480p.m3u8
104.18.55.220200 OK 722 B URL GET HTTP/2 b-hls-17.doppiocdn.com/hls/99604173/99604173_480p.m3u8
IP 104.18.55.220:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type M3U playlist, ASCII text, with very long lines (740), with no line terminators
Hash 8bd0d62094bc1e939dc47d773628ab39
b96b61709b0ad6d3fe35cbcaa33c4afb28715efa
05fbb6fd4f5641b587e9e169a7b96adc4b4e95325b5a22b2e8bdf91daea50886
GET /hls/99604173/99604173_480p.m3u8 HTTP/1.1
Host: b-hls-17.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:37:11 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Thu, 06 Apr 2023 22:37:11 GMT
x-proxy-cache: HIT
timing-allow-origin: *
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 7b3d83903da3067b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
a.realsrv.com/nativeads-v2.js
185.76.9.14200 OK 61 kB URL GET HTTP/2 a.realsrv.com/nativeads-v2.js
IP 185.76.9.14:443
ASN #60068 Datacamp Limited
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
FingerprintC2:CA:14:12:90:2A:B3:84:F3:3C:B8:A9:E8:82:89:E0:CB:B9:EE:49
ValidityMon, 27 Feb 2023 07:33:27 GMT - Sun, 28 May 2023 07:33:26 GMT
File type C source, ASCII text, with very long lines (60628), with no line terminators
Hash 16ac675aca0eca4960f7f430fabef329
1e16d6ff16b145ea5560344a5069decb64cf8bf4
630128fd494a3f222996b1631f5e9b721629e9424deb98a2fb8678ecf3594279
GET /nativeads-v2.js HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:37:08 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"1e16d6ff16b145ea5560344a506"
expires: Thu, 06 Apr 2023 17:10:38 GMT
cache-control: max-age=10800
access-control-allow-origin: *
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: AblMCQ1X2Yr/JyIAAA
x-77-nzt-ray: c0a4cc28248a6eef94492f649e7ffe25
x-accel-expires: @1680822685
x-cache: HIT
x-age: 8743
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
a.realsrv.com/ad-provider.js
185.76.9.14200 OK 81 kB URL GET HTTP/2 a.realsrv.com/ad-provider.js
IP 185.76.9.14:443
ASN #60068 Datacamp Limited
Requested by https://a.labadena.com/api/spots/220808?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
FingerprintC2:CA:14:12:90:2A:B3:84:F3:3C:B8:A9:E8:82:89:E0:CB:B9:EE:49
ValidityMon, 27 Feb 2023 07:33:27 GMT - Sun, 28 May 2023 07:33:26 GMT
File type ASCII text, with very long lines (52920)
Hash e03b4d3e15ad448db833b918283f8cb4
c3f438a95c95dae0c4881713886caefd8a4a410d
0cc6fb5378cf475d2ed0e745f33ec527fe48f39e27f57477e1ddb84a281ff801
GET /ad-provider.js HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a.labadena.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:37:09 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"c3f438a95c95dae0c4881713886"
expires: Thu, 06 Apr 2023 17:10:38 GMT
cache-control: max-age=10800
access-control-allow-origin: *
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: AblMCQ3o7AX/KSIAAA
x-77-nzt-ray: c0a4cc28248a6eef95492f640ea5e41b
x-accel-expires: @1680822684
x-cache: HIT
x-age: 8745
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
creative.admjmp.com/widgets/Spot/core.db50f5f8fc13cf868bd2.js
104.18.51.106200 OK 2.8 kB URL GET HTTP/3 creative.admjmp.com/widgets/Spot/core.db50f5f8fc13cf868bd2.js
IP 104.18.51.106:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectcreative.admjmp.com
FingerprintF5:BC:E5:4B:69:86:E0:72:1B:ED:C9:0B:10:D7:BE:A0:86:F3:1D:71
ValiditySat, 30 Jul 2022 00:00:00 GMT - Sun, 30 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (2840), with no line terminators
Hash 81df84b5c4070ad48ee4376955bf78d0
832b74a3b3f32a1e2d3f9588b3b70991174f597d
dc1f6c7efa16517bcb119edeada2e361d18abcae2d565ae077e58ef7e7934115
GET /widgets/Spot/core.db50f5f8fc13cf868bd2.js HTTP/1.1
Host: creative.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: creative.admjmp.com
Connection: keep-alive
Referer: https://fs1.app/
Cookie: __cflb=02DiuDfsBaY2bRYJiCfFHYpfgnRfzoh6KDmwc5JPjdhYY
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:09 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 04 Apr 2023 03:07:52 GMT
etag: W/"642b9488-ace"
expires: Thu, 06 Apr 2023 22:37:11 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d83855d1f1bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
b-hls-17.doppiocdn.com/hls/99604173/99604173_480p.m3u8
104.18.55.220200 OK 722 B URL GET HTTP/3 b-hls-17.doppiocdn.com/hls/99604173/99604173_480p.m3u8
IP 104.18.55.220:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type M3U playlist, ASCII text, with very long lines (740), with no line terminators
Hash db98d55d15424df602cca5d92d709bc0
3daa58f2b96538b89e9c861ed93294b22a4c566c
3629789ed1988895071f3716b4d8f2c12823969194396dd444ba4214abfc9392
GET /hls/99604173/99604173_480p.m3u8 HTTP/1.1
Host: b-hls-17.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:13 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Thu, 06 Apr 2023 22:37:13 GMT
x-proxy-cache: HIT
timing-allow-origin: *
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 7b3d839c7aa5fac0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
assets.fs1.app/assets/images/avatar.svg
188.114.97.1200 OK 982 B URL GET HTTP/3 assets.fs1.app/assets/images/avatar.svg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1040), with no line terminators
Hash 75d76e0ffcbe2e76c5da7947edb7a598
f5a6bcde0a8ffb4074c4fc821611e18a87ac15f5
fc5cd61e4389b5260c1add7196c68999764d06817d307e632948aff2b6031dc3
GET /assets/images/avatar.svg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:08 GMT
content-type: image/svg+xml
last-modified: Fri, 09 Nov 2018 19:00:34 GMT
vary: Accept-Encoding
etag: W/"5be5d952-3d6"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WqG5DY%2Fi1EVpK1%2FcZ%2BU7f0pJJfWms%2FHOMWP%2Flhi5mE%2BGQc9D%2FW1ShM4%2BJCgA3GrpfRpZ%2FcJ1CVEa91lUbwYho6EWLYY1fW5rzMcuaQ%2Bo0GoT04IJiqnl8gn5%2FuTiK0qF6A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b3d83809d28b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
assets.fs1.app/assets/js/site.js?date=20190501
188.114.97.1200 OK 398 kB URL GET HTTP/3 assets.fs1.app/assets/js/site.js?date=20190501
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 398 kB (397824 bytes)
Hash f60affb2495c7b46219ba6fcd010775e
06f054a5298645a8877d5fee838cb55875baf7bd
78e60bb029a9bd66332fb7d8c86a067252f72a3ce5c1051ddc3968bcebdd6e77
GET /assets/js/site.js?date=20190501 HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:09 GMT
content-type: application/javascript
last-modified: Thu, 02 May 2019 11:21:00 GMT
vary: Accept-Encoding
etag: W/"5ccad29c-61200"
expires: Thu, 13 Apr 2023 22:37:08 GMT
cache-control: max-age=604800
strict-transport-security: max-age=15768000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6Rx8xFSHs1QU%2FZ0rWQLvej0O1FahrFrFBMF90C4Vgyt51VBw9MzUrl1LgmAALwCU0cz5QxBIpkb5fxmqUgN5sSLQZJ05qsiaHNhAVdQufIt0ThwDDDy%2BFA5iuu3mcc%2BKig%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b3d83809d23b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
adserve.work/www/serve/afr.php?zoneid=4&cb=INSERT_RANDOM_NUMBER_HERE
188.114.96.1200 OK 1.0 kB URL GET HTTP/2 adserve.work/www/serve/afr.php?zoneid=4&cb=INSERT_RANDOM_NUMBER_HERE
IP 188.114.96.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint92:00:26:4C:BE:F6:69:97:38:04:5C:F1:70:10:7D:95:8A:22:0E:61
ValiditySun, 24 Jul 2022 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1018), with no line terminators
Hash af899d802af49e9cab9292fa15f7fecb
e9f92dbb8c31b8c41e4269367080dc274fe55bf5
8ae14e443305e68c3b13d02d42aa091b37e59a5043f3849d4ccfd3a61fa671ac
GET /www/serve/afr.php?zoneid=4&cb=INSERT_RANDOM_NUMBER_HERE HTTP/1.1
Host: adserve.work
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:37:09 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.11
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: 0
access-control-allow-origin: *
p3p: CP="CUR ADM OUR NOR STA NID"
set-cookie: OAID=01000111010001000101000001010010; expires=Fri, 05-Apr-2024 22:37:09 GMT; Max-Age=31536000; path=/; secure; SameSite=none
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Iwl2iWnA%2Fy4Q%2Fr%2Fk7FwHhvP50FvUIkDAfKMaatGwLg5%2FSyeg2NpTtAhyUUzDhYAlRlWeMNhruHyTn75SdO3%2F%2F%2FtjbyGtDebDodGIF9a2SRKPCZ%2Flw55EGR7RN5iqKUY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b3d8384dbefb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
go.admjmp.com/config?url=https%3A%2F%2Fcreative.admjmp.com%2Fwidgets%2FSpot%2Flib.js%3Fautoplay%3Dall%26userId%3D4c25683baa7e541ee7ce0014496c85471ee87c5671f43cd3d2de65eaed1cbb98%26campaignId%3Dbottomslider%26tag%3Dgirls%252Fchinese%26showModal%3Dsignup%26hideButton%3D1%26autoclose%3D0%26closeButtonDelay%3D0
104.18.59.150200 OK 6.5 kB URL GET HTTP/2 go.admjmp.com/config?url=https%3A%2F%2Fcreative.admjmp.com%2Fwidgets%2FSpot%2Flib.js%3Fautoplay%3Dall%26userId%3D4c25683baa7e541ee7ce0014496c85471ee87c5671f43cd3d2de65eaed1cbb98%26campaignId%3Dbottomslider%26tag%3Dgirls%252Fchinese%26showModal%3Dsignup%26hideButton%3D1%26autoclose%3D0%26closeButtonDelay%3D0
IP 104.18.59.150:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectgo.admjmp.com
FingerprintA9:B0:8A:8F:28:5A:98:E7:DE:B5:54:6F:78:D2:68:ED:81:ED:D8:63
ValiditySat, 30 Jul 2022 00:00:00 GMT - Sun, 30 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (8472), with no line terminators
Hash 66bbd2b9a195709e4aa23f6c1b81916b
9673f53d7eb412f49392793d9738451acafb88da
8a5a1e3ac57f550e65f6dcfdb66468e4f793558dd322e97ae263daa408db253a
GET /config?url=https%3A%2F%2Fcreative.admjmp.com%2Fwidgets%2FSpot%2Flib.js%3Fautoplay%3Dall%26userId%3D4c25683baa7e541ee7ce0014496c85471ee87c5671f43cd3d2de65eaed1cbb98%26campaignId%3Dbottomslider%26tag%3Dgirls%252Fchinese%26showModal%3Dsignup%26hideButton%3D1%26autoclose%3D0%26closeButtonDelay%3D0 HTTP/1.1
Host: go.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fs1.app/
Origin: https://fs1.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:37:08 GMT
content-type: application/json
access-control-allow-origin: *
last-modified: Thu, 06 Apr 2023 22:37:08 GMT
cf-cache-status: MISS
set-cookie: __cflb=0H28uukSkGJRy5UBr1AgJmhafgYhtGas1EGWWFoMu6L; SameSite=None; Secure; path=/; expires=Fri, 07-Apr-23 21:37:08 GMT; HttpOnly
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d83828e621c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
go.admjmp.com/api/models?tag=girls%2Fchinese&forceClient=1&stripcashR=0&limit=1
104.18.59.150200 OK 1.7 kB URL GET HTTP/3 go.admjmp.com/api/models?tag=girls%2Fchinese&forceClient=1&stripcashR=0&limit=1
IP 104.18.59.150:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectgo.admjmp.com
FingerprintA9:B0:8A:8F:28:5A:98:E7:DE:B5:54:6F:78:D2:68:ED:81:ED:D8:63
ValiditySat, 30 Jul 2022 00:00:00 GMT - Sun, 30 Jul 2023 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1891), with no line terminators
Hash 7f4a4d6f412ac711f2aa8685199477cd
f0ff7f3ad9b73bda406def0033819464a4382dc1
a8106c49da6f613e8136edcba903778a4c001b1b985065b63fd97c29c92065a5
GET /api/models?tag=girls%2Fchinese&forceClient=1&stripcashR=0&limit=1 HTTP/1.1
Host: go.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fs1.app/
Origin: https://fs1.app
Alt-Used: go.admjmp.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:09 GMT
content-type: application/json
access-control-allow-origin: https://fs1.app
access-control-allow-credentials: true
vary: Origin, Accept-Encoding
last-modified: Thu, 06 Apr 2023 22:37:09 GMT
cf-cache-status: MISS
set-cookie: __cflb=02DiuDfsBaY2bRYJiCfFHYpfgnRfzoh6KEWm8Gs3MuN2x; SameSite=None; Secure; path=/; expires=Fri, 07-Apr-23 21:37:09 GMT; HttpOnly
server: cloudflare
cf-ray: 7b3d83856d540b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
b-hls-17.doppiocdn.com/hls/99604173/99604173_480p.m3u8
104.18.55.220200 OK 722 B URL GET HTTP/3 b-hls-17.doppiocdn.com/hls/99604173/99604173_480p.m3u8
IP 104.18.55.220:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type M3U playlist, ASCII text, with very long lines (740), with no line terminators
Hash 2a9f0c2bd70d12a400f264e5adb4bd48
0110de980513edfbe4d2796af6387c69fe408ef0
a552f00eef64143a9c035aaf74b18f8ed95918ebe46aa7ccaf99fdca3a9427de
GET /hls/99604173/99604173_480p.m3u8 HTTP/1.1
Host: b-hls-17.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:15 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Thu, 06 Apr 2023 22:37:15 GMT
x-proxy-cache: HIT
timing-allow-origin: *
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 7b3d83a8f88bfac0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
assets.fs1.app/assets/images/flag/jp.svg
188.114.97.1200 OK 167 B URL GET HTTP/3 assets.fs1.app/assets/images/flag/jp.svg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash 5b006b8f28fc656a790e105d4dbd706f
d0105fc698ca484fd8748e7c0fe883eac45422a9
71980f7ff5280fc9b3c07643bf5466c2ca9258571223213ffa63d834a2936d8c
GET /assets/images/flag/jp.svg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:08 GMT
content-type: image/svg+xml
last-modified: Sat, 18 May 2019 16:52:07 GMT
etag: W/"5ce03837-a7"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IphLQf8hX6UC70Q52U3SGT8WAIzSEHe61uiNG6atPOE5baw6j69y6186X5e6nJL%2Bl7MxmuChNUvSJfxvamdbAP6bunbNjGrSFRGCsQ7GLYL0Tg%2Fi1KEXHSrP8rsB7N3p9w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d83809d29b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
go.admjmp.com/thumbs/view
104.18.59.150200 OK 85 B URL POST HTTP/3 go.admjmp.com/thumbs/view
IP 104.18.59.150:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectgo.admjmp.com
FingerprintA9:B0:8A:8F:28:5A:98:E7:DE:B5:54:6F:78:D2:68:ED:81:ED:D8:63
ValiditySat, 30 Jul 2022 00:00:00 GMT - Sun, 30 Jul 2023 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 31a969b561942b20fce4d66ec7cd2a96
c1d2ee5c26019e26fa15c0d1617cb211e3066a31
59c0781d52611a5ef29fc610751b33b617f39fbc40956b53b993660b5d31fb94
POST /thumbs/view HTTP/1.1
Host: go.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fs1.app/
Content-Type: text/plain;charset=UTF-8
Content-Length: 81
Origin: https://fs1.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:09 GMT
content-type: application/json
access-control-allow-origin: *
cf-cache-status: DYNAMIC
set-cookie: __cflb=0H28uukSkGJRy5UBr1XYMARUwdYFVsecjQ6zAKuFXZW; SameSite=None; Secure; path=/; expires=Fri, 07-Apr-23 21:37:09 GMT; HttpOnly
server: cloudflare
cf-ray: 7b3d8387df4c0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
imasdk.googleapis.com/js/core/bridge3.566.2_en.html
142.250.74.74200 OK 728 kB URL GET HTTP/3 imasdk.googleapis.com/js/core/bridge3.566.2_en.html
IP 142.250.74.74:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint76:50:4C:9F:C4:BB:29:C8:41:DD:B7:8A:B7:22:AE:3E:4F:A8:04:80
ValidityMon, 13 Mar 2023 08:25:02 GMT - Mon, 05 Jun 2023 08:25:01 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (48275)
Size 728 kB (727562 bytes)
Hash 2576c611c07266e9c52a2f55dc8029be
96e3c1cf2408d3333c0d398178353b919cfed1b4
a139618572b9c9b5e7e0d75d62f81c0d6aa6202f72db242ed62b860e805027db
GET /js/core/bridge3.566.2_en.html HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: imasdk.googleapis.com
Connection: keep-alive
Referer: https://fs1.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 231184
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Apr 2023 15:46:53 GMT
expires: Wed, 03 Apr 2024 15:46:53 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 28 Mar 2023 15:25:51 GMT
content-type: text/html
vary: Accept-Encoding
age: 197418
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
188.114.97.1200 OK 95 kB URL User Request GET HTTP/2 IP 188.114.97.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /videos/ebod-898/ HTTP/1.1
Host: fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:37:08 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; path=/; domain=.fs1.app
kt_ips=91.90.42.154; expires=Fri, 07-Apr-2023 22:37:08 GMT; Max-Age=86400; path=/; domain=.fs1.app
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
strict-transport-security: max-age=15768000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Au5BvYcHGmFAfaFTVhkVh95fNg%2FMgKwboB2rPf4J8EjJgVUkC71UNB9PksKuJLfx99P%2F7uKKygDEXYy9%2F4K5wA2fGCCw36Zb7NC8QzYTUl4sUoRXqrFKVUQv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b3d837cff6d0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
edge-hls.doppiocdn.com/hls/99604173/master/99604173_480p.m3u8
104.18.55.220200 OK 186 B URL GET HTTP/2 edge-hls.doppiocdn.com/hls/99604173/master/99604173_480p.m3u8
IP 104.18.55.220:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type M3U playlist, ASCII text, with no line terminators
Hash a0061a0c56e74b004bfe2f2701b6a067
12bb8e20a3bf335b8e5dc7abebc2398c0c167447
6076907cf7d7971e65abd2a6cdf3ba7121d7ea331bb15f71fe6a51540014089b
GET /hls/99604173/master/99604173_480p.m3u8 HTTP/1.1
Host: edge-hls.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:37:10 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Thu, 06 Apr 2023 22:37:10 GMT
x-proxy-cache: HIT
timing-allow-origin: *
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 7b3d838f8d61067b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
b-hls-17.doppiocdn.com/hls/99604173/99604173_480p.m3u8
104.18.55.220200 OK 722 B URL GET HTTP/3 b-hls-17.doppiocdn.com/hls/99604173/99604173_480p.m3u8
IP 104.18.55.220:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type M3U playlist, ASCII text, with very long lines (740), with no line terminators
Hash 62334d3a914fe81b97cc5158b50d7850
fdccea93db960d66f928c057c304ff370c3e1533
9c62ed467c6b38e9751643bde4c3c29aff69e8ed708cd7109b1f876212089e28
GET /hls/99604173/99604173_480p.m3u8 HTTP/1.1
Host: b-hls-17.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:17 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Thu, 06 Apr 2023 22:37:17 GMT
x-proxy-cache: HIT
timing-allow-origin: *
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 7b3d83b57dedfac0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
assets.fs1.app/assets/css/app.css?9
188.114.97.1200 OK 261 kB URL GET HTTP/3 assets.fs1.app/assets/css/app.css?9
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (65324)
Size 261 kB (260809 bytes)
Hash 8151ec92dd893184b42e6ddf08e9cf55
3e6e91bdfd2a45a977115790e2b1960e1666bd2f
1bb115c4a119478037c970a7a5c7bf43848da34553c9a18f56d1131cb71b640f
GET /assets/css/app.css?9 HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:08 GMT
content-type: text/css
last-modified: Thu, 16 Feb 2023 05:39:57 GMT
vary: Accept-Encoding
etag: W/"63edc1ad-3fac9"
expires: Wed, 12 Apr 2023 22:13:00 GMT
cache-control: max-age=604800
strict-transport-security: max-age=15768000
cf-cache-status: HIT
age: 87848
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fszhfy2UwNfGKcPs9WxQ3t3JJ2%2Fr8p3ojw90N3p1I2iJht3G7rHnISaWc2YxzghmnXO3VuOVZLzFuoftalHM6cDMDdbUuL6Nw1WMSQ7lyf7wkw848DZ7xEWiAYZ%2FF6Ozfw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b3d83809d20b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
adserve.work/www/serve/lg.php?bannerid=1711&campaignid=2&zoneid=4&loc=https%3A%2F%2Ffs1.app%2F&cb=47418983fb
188.114.96.1200 OK 43 B URL GET HTTP/3 adserve.work/www/serve/lg.php?bannerid=1711&campaignid=2&zoneid=4&loc=https%3A%2F%2Ffs1.app%2F&cb=47418983fb
IP 188.114.96.1:443
Requested by https://adserve.work/www/serve/afr.php?zoneid=4&cb=INSERT_RANDOM_NUMBER_HERE
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint92:00:26:4C:BE:F6:69:97:38:04:5C:F1:70:10:7D:95:8A:22:0E:61
ValiditySun, 24 Jul 2022 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /www/serve/lg.php?bannerid=1711&campaignid=2&zoneid=4&loc=https%3A%2F%2Ffs1.app%2F&cb=47418983fb HTTP/1.1
Host: adserve.work
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: adserve.work
Connection: keep-alive
Referer: https://adserve.work/www/serve/afr.php?zoneid=4&cb=INSERT_RANDOM_NUMBER_HERE
Cookie: OAID=01000111010001000101000001010010
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:10 GMT
content-type: image/gif
x-powered-by: PHP/7.4.11
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: 0
access-control-allow-origin: *
p3p: CP="CUR ADM OUR NOR STA NID"
set-cookie: OAID=01000111010001000101000001010010; expires=Fri, 05-Apr-2024 22:37:10 GMT; Max-Age=31536000; path=/; secure; SameSite=none
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fc8sxChDQPsnG9i%2FyxwOVsutO%2BjxklhQoehWJIE%2FfpaXZj2%2B690Tu5q5MxdEstXH57faP6BwBGQLLS%2F08cDQqRC0CxvveGnJo4cHKw23iGF2XxTemx8%2FH36Cw8056J4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b3d838929e6b52d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
creative.admjmp.com/widgets/Spot/lib.js
104.18.51.106200 OK 280 kB URL GET HTTP/2 creative.admjmp.com/widgets/Spot/lib.js
IP 104.18.51.106:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectcreative.admjmp.com
FingerprintF5:BC:E5:4B:69:86:E0:72:1B:ED:C9:0B:10:D7:BE:A0:86:F3:1D:71
ValiditySat, 30 Jul 2022 00:00:00 GMT - Sun, 30 Jul 2023 23:59:59 GMT
Size 280 kB (279602 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widgets/Spot/lib.js HTTP/1.1
Host: creative.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 06 Apr 2023 22:37:08 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 04 Apr 2023 03:07:52 GMT
etag: W/"642b9488-44432"
expires: Thu, 06 Apr 2023 22:37:09 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
set-cookie: __cflb=02DiuDfsBaY2bRYJiCfFHYpfgnRfzoh6KDmwc5JPjdhYY; SameSite=None; Secure; path=/; expires=Fri, 07-Apr-23 21:37:08 GMT; HttpOnly
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d8380fda3b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
a.labadena.com/api/spots/220808?p=1&s1=%subid1%&kw=
135.181.208.216200 OK 12 kB URL GET HTTP/2 a.labadena.com/api/spots/220808?p=1&s1=%subid1%&kw=
IP 135.181.208.216:443
ASN #24940 Hetzner Online GmbH
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerLet's Encrypt
Subjecta.labadena.com
FingerprintB3:CC:65:92:BF:73:55:95:BD:FD:91:93:93:C9:91:8A:88:6E:67:3F
ValidityWed, 15 Feb 2023 23:27:10 GMT - Tue, 16 May 2023 23:27:09 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, ASCII text, with very long lines (712)
Hash 9fc7d250cefd702ff9d7793915f84f95
af1fb3854ab21ca3da24606a23ca8034191129b7
fe66e14753331295d09511092bb6d57d75beaedbf945f3d8f4ef58ceaebe0315
GET /api/spots/220808?p=1&s1=%subid1%&kw= HTTP/1.1
Host: a.labadena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 06 Apr 2023 22:37:09 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: nauid=4tpNCUozgj925A2IBvsR; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
b-hls-17.doppiocdn.com/hls/99604173/99604173_480p.m3u8
104.18.55.220200 OK 722 B URL GET HTTP/3 b-hls-17.doppiocdn.com/hls/99604173/99604173_480p.m3u8
IP 104.18.55.220:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type M3U playlist, ASCII text, with very long lines (740), with no line terminators
Hash 4db3db3dd4f1feef11da64b7e1e92163
6ce2cbf46cbda280b602823f2106ba8352378d33
9195a0fe5db5aec8637f7704216379d60b698d3c5afeffb26a892b90c7c4deb7
GET /hls/99604173/99604173_480p.m3u8 HTTP/1.1
Host: b-hls-17.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:21 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Thu, 06 Apr 2023 22:37:21 GMT
x-proxy-cache: HIT
timing-allow-origin: *
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 7b3d83ce7a2ffac0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
assets.fs1.app/assets/images/flag/en.svg
188.114.97.1200 OK 12 kB URL GET HTTP/3 assets.fs1.app/assets/images/flag/en.svg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (11831)
Hash 6744dbaa0d1f677a70099be7c55b7322
68e497a197e97ab48d931e3ca4568d920018283f
eb173b50ed398345d10caf5ea90f585196f8d8e51d6b70e63bd02d1087c7febd
GET /assets/images/flag/en.svg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:08 GMT
content-type: image/svg+xml
last-modified: Sat, 18 May 2019 16:52:07 GMT
vary: Accept-Encoding
etag: W/"5ce03837-2fca"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P8yPJ9UMKuwbkb58UxS20XX9eRWq5zAbk3m9fojVKs4ij75DaTYxIHDpAfK5zyXISwK%2BFAWwJw%2FseegbgKDOeHYj451DrBQqvPTY%2Fp7lgtRG3IyjAAzsu2gQbB2fK4%2ByPA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b3d83809d26b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
a.labadena.com/api/settings/262182
135.181.208.216200 OK 32 B URL GET HTTP/2 a.labadena.com/api/settings/262182
IP 135.181.208.216:443
ASN #24940 Hetzner Online GmbH
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerLet's Encrypt
Subjecta.labadena.com
FingerprintB3:CC:65:92:BF:73:55:95:BD:FD:91:93:93:C9:91:8A:88:6E:67:3F
ValidityWed, 15 Feb 2023 23:27:10 GMT - Tue, 16 May 2023 23:27:09 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 70e03b2246021ebcd2ca54e5607ab872
04b2d0e74ccb5feec8976d1c6a92eee8a84cdba8
c3cbbee3b165de8cb5725efe3cc7abc569c13214dbc37a70ace8758cc2d5b73f
GET /api/settings/262182 HTTP/1.1
Host: a.labadena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fs1.app/
Origin: https://fs1.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 06 Apr 2023 22:37:08 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
assets.fs1.app/assets/images/emoji/9.svg
188.114.97.1200 OK 1.1 kB URL GET HTTP/3 assets.fs1.app/assets/images/emoji/9.svg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1079), with no line terminators
Hash 5a8509576c875015c6740049d3967e91
b7f608653ec07bc3cf79e35a84ae1dd452114f94
cafd0c7df47073579d15db2c554e950e0f025512dfaf94af08a1f33bdb0e7f1a
GET /assets/images/emoji/9.svg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:08 GMT
content-type: image/svg+xml
last-modified: Sun, 18 Nov 2018 12:42:18 GMT
vary: Accept-Encoding
etag: W/"5bf15e2a-421"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VSH71pZC9NrRAVNJXhjko3dG761jsoDRDyoS7e%2FM3VPSlm50Aet3g%2F20MgehJtbv93x2KV3OoJmiY0St2LhCg7ZVsmzqpG7ENtUZU0S9iUVJyHCjYibplvmcP8LwgKP71g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b3d83809d2db509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
assets.fs1.app/contents/videos_screenshots/13000/13937/320x180/1.jpg
188.114.97.1200 OK 38 kB URL GET HTTP/3 assets.fs1.app/contents/videos_screenshots/13000/13937/320x180/1.jpg
IP 188.114.97.1:443
Requested by https://fs1.app/videos/ebod-898/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintBD:39:1F:56:0B:C1:BE:CC:9F:BE:7E:C3:2E:75:3F:6B:4F:EE:D1:D3
ValidityThu, 16 Jun 2022 00:00:00 GMT - Fri, 16 Jun 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 145bab2c05702e78c0d2cf5395661c6c
b09528c11c6b6dac1a73d9a7895a0903aa20e96b
580bf831b8274c40e7a2879e347b43da4ecbe78c90bdf09ab9fc58b424a9ec81
GET /contents/videos_screenshots/13000/13937/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: assets.fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=jqn4ab8pfos63eqr9tchu0ba1q; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1680820629.1.0.1680820629.0.0.0; _ga=GA1.1.1539326741.1680820629
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 06 Apr 2023 22:37:12 GMT
content-type: image/jpeg
content-length: 38128
last-modified: Mon, 01 Mar 2021 04:27:07 GMT
etag: "603c6d1b-94f0"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JynJbpGX2I0wgLjizat%2BOV6Azoj%2BRM3eyEiajd%2BwrinpK9R%2FAax813vnwiDB6BBXfWgYCtzVseLL%2FxDPhPSrh7h7Wy6T3%2BNDUDgBgvkITg0OVu4%2FlZfVJfYgbzCawxCjQA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b3d83955acab509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400