www.qinav.com/static/logo.png?1695696487
200 OK 27 kB URL GET HTTP/3 www.qinav.com/static/logo.png?1695696487
IP
Requested by https://www.qinav.com/video/659753.html
Certificate IssuerLet's Encrypt
Subjectqinav.com
Fingerprint2D:81:32:67:EB:44:12:6C:56:B5:49:07:09:C7:33:A2:4C:22:C6:62
ValiditySat, 02 Sep 2023 10:54:53 GMT - Fri, 01 Dec 2023 10:54:52 GMT
File type PNG image data, 200 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 3f3da900af4797c3c5664c5242981df5
2a419d012f96d29ac12a0ab88d25b4d9d311649a
c4af762b6353814aa22b4a127c18a6c6558db140a0156bfcf96b4cc64d0f63c3
GET /static/logo.png?1695696487 HTTP/1.1
Host: www.qinav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.qinav.com/video/659753.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Sep 2023 17:27:13 GMT
content-type: image/png
content-length: 26718
last-modified: Thu, 03 Feb 2022 03:13:19 GMT
etag: "685e-5d714841771c0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2271
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M16SG7eJ3J5MSXgg%2FIpFZe9GK4Dk%2FzjKda88%2FL8hpKnakbSXLnTsEy6xwnLkIrcC7Ax26ge%2BjW6yl5m4aGGC0HucT8XSabOj5ML5n8P2Z%2FR7Ro%2FmOvgxhv4%2Bz4bwfEYA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80d574c5dfabb4eb-OSL
alt-svc: h3=":443"; ma=86400
www.qinav.com/static/user.jpg
200 OK 6.6 kB URL GET HTTP/3 www.qinav.com/static/user.jpg
IP
Requested by https://www.qinav.com/video/659753.html
Certificate IssuerLet's Encrypt
Subjectqinav.com
Fingerprint2D:81:32:67:EB:44:12:6C:56:B5:49:07:09:C7:33:A2:4C:22:C6:62
ValiditySat, 02 Sep 2023 10:54:53 GMT - Fri, 01 Dec 2023 10:54:52 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 500x500, components 3\012- data
Hash 3798d03dc062f714ff3747e137d4858f
d911d8fe1f1f624e2de7ceaa1f759e8f845d8aa5
19839cdd8233b4718c31ecc3b4143c9809c9a2a6fb6412a9c5ff49801446e4a4
GET /static/user.jpg HTTP/1.1
Host: www.qinav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.qinav.com/video/659753.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Sep 2023 17:27:13 GMT
content-type: image/jpeg
content-length: 6642
last-modified: Mon, 12 Oct 2020 04:46:00 GMT
etag: "19f2-5b171f990f200"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2271
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6Zwb%2FQ91Mcn68SJLSXyBMBXzkG1Tk988sxwTALcqbzkDyEX6naj21lA4f%2BGuJ8mjYBVoOtvu2JvohC%2BFQ5kAgNt%2FVWhQfd0YhFF7q11Unl9py%2B7WuMV%2F01XexlD95sxd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80d574c5dfaeb4eb-OSL
alt-svc: h3=":443"; ma=86400
www.qinav.com/static/loading.gif
200 OK 58 kB URL GET HTTP/3 www.qinav.com/static/loading.gif
IP
Requested by https://www.qinav.com/video/659753.html
Certificate IssuerLet's Encrypt
Subjectqinav.com
Fingerprint2D:81:32:67:EB:44:12:6C:56:B5:49:07:09:C7:33:A2:4C:22:C6:62
ValiditySat, 02 Sep 2023 10:54:53 GMT - Fri, 01 Dec 2023 10:54:52 GMT
File type GIF image data, version 89a, 498 x 328\012- data
Hash b213dc57bfa0ff88ca7522139c937acf
5c6719a71e9419d4db4c3f9630d006848faf5b13
f9ac5c5a899727f24d37e798cd1ba7451813d35f9287467c920dc4f2f3b2007a
GET /static/loading.gif HTTP/1.1
Host: www.qinav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.qinav.com/video/659753.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Sep 2023 17:27:13 GMT
content-type: image/gif
content-length: 58159
last-modified: Sat, 04 Dec 2021 00:43:26 GMT
etag: "e32f-5d2474fbf4780"
cache-control: max-age=14400
cf-cache-status: HIT
age: 69
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xTcnZSxGQWijv1XyRhkYeWcVfMg%2FaPbCk2TqBH8%2FKHeUuuYC9zTmiUb160cnEAOdNWWeAwi3b12PaqDXqQzPb6rApDGrS2ylW0fshjFfDTav2pIfkVgd5%2B89uPjGzlJB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80d574c5dfafb4eb-OSL
alt-svc: h3=":443"; ma=86400
www.qinav.com/static/logo.png
200 OK 27 kB URL GET HTTP/3 www.qinav.com/static/logo.png
IP
Requested by https://www.qinav.com/video/659753.html
Certificate IssuerLet's Encrypt
Subjectqinav.com
Fingerprint2D:81:32:67:EB:44:12:6C:56:B5:49:07:09:C7:33:A2:4C:22:C6:62
ValiditySat, 02 Sep 2023 10:54:53 GMT - Fri, 01 Dec 2023 10:54:52 GMT
File type PNG image data, 200 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 3f3da900af4797c3c5664c5242981df5
2a419d012f96d29ac12a0ab88d25b4d9d311649a
c4af762b6353814aa22b4a127c18a6c6558db140a0156bfcf96b4cc64d0f63c3
GET /static/logo.png HTTP/1.1
Host: www.qinav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.qinav.com/video/659753.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Sep 2023 17:27:13 GMT
content-type: image/png
content-length: 26718
last-modified: Thu, 03 Feb 2022 03:13:19 GMT
etag: "685e-5d714841771c0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2270
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZlEJT6bwAbJu6ySp1f4Y4Y9RHGBaOUvviN697Jqdq2a%2F%2FoxxV%2FtRkk%2FKp6QW1J%2B0nnc13KARqV%2Fpep4L6vXidqyNWs5VdT6Sej7h9oH8%2FbmBdozjPfe2Yck772TDr1pJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80d574c5dfb1b4eb-OSL
alt-svc: h3=":443"; ma=86400
ocsp.pki.goog/gts1c3
471 B IP
Hash 4ee7d428e49497fff831481db3746dd8
7185f93df26c0737f4953ac8b0799a3fe3a7c45f
f9e4c9a81904083be67d904a75c03e6d1c54757d399dc77d1224b42a25c088fe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 27 Sep 2023 17:27:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-FDDDPC4YXB
200 OK 86 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-FDDDPC4YXB
IP
Requested by https://www.qinav.com/video/659753.html
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint00:ED:16:68:8D:DB:14:8B:43:01:81:CA:83:9A:AE:5B:24:AB:11:18
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
File type ASCII text, with very long lines (3034)
Hash e9c61c9c69a980fa66d8eab0b35d8dad
5ad17097edd99a05146ce5046ed24a62b10daeb4
5345b5c283eb7ca0783b6067b1755fb4dade58daf3b63928db0b556601d4144a
GET /gtag/js?id=G-FDDDPC4YXB HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.qinav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 27 Sep 2023 17:27:13 GMT
expires: Wed, 27 Sep 2023 17:27:13 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 85775
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.qinav.com/static/fontawesome-webfont.woff?v=3.2.1
200 OK 44 kB URL GET HTTP/3 www.qinav.com/static/fontawesome-webfont.woff?v=3.2.1
IP
Requested by https://www.qinav.com/video/659753.html
Certificate IssuerLet's Encrypt
Subjectqinav.com
Fingerprint2D:81:32:67:EB:44:12:6C:56:B5:49:07:09:C7:33:A2:4C:22:C6:62
ValiditySat, 02 Sep 2023 10:54:53 GMT - Fri, 01 Dec 2023 10:54:52 GMT
File type Web Open Font Format, TrueType, length 43572, version 1.0\012- data
Hash b683029bafe0305ac2234038a03e1541
12f8c193902e99348493ace32e498031bf79b654
18e6b5ff511b90edf098e62ac45ed9d6673a3eee10165d0de4164d4d02a3a77f
GET /static/fontawesome-webfont.woff?v=3.2.1 HTTP/1.1
Host: www.qinav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.qinav.com/static/icon.css?1695696487
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Sep 2023 17:27:13 GMT
content-type: application/font-woff
content-length: 43572
last-modified: Mon, 17 Jun 2013 15:31:58 GMT
etag: "aa34-4df5b4c105780"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5920
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jzxHxzfnzUwvr9RnykNoOWGKJKupJo8V9wTm8DKdaPiiFi7DdX6Q%2Fe3Z2pzhn26nn0kQu5iO%2FG9KOCF5DRduTnEXvSXar2jHdO%2F2oOQNpl%2FEFGchJZGiXjgtyl9ePq6E"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80d574c748beb4eb-OSL
alt-svc: h3=":443"; ma=86400
ocsp.pki.goog/gts1c3
471 B IP
Hash cbb6b90952f5230c043b0bbe8fb528b1
8e990f9e4448fdfb0b2c4dce68a9f5d6e3a843d9
2aaceb74eb7e1e69517de5bb254cdd373aa0abbd1c51acd3495756fec52ec5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 27 Sep 2023 17:27:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.qinav.com/static/icon.css?1695696487
200 OK 4.8 kB URL GET HTTP/3 www.qinav.com/static/icon.css?1695696487
IP
Requested by https://www.qinav.com/video/659753.html
Certificate IssuerLet's Encrypt
Subjectqinav.com
Fingerprint2D:81:32:67:EB:44:12:6C:56:B5:49:07:09:C7:33:A2:4C:22:C6:62
ValiditySat, 02 Sep 2023 10:54:53 GMT - Fri, 01 Dec 2023 10:54:52 GMT
File type ASCII text, with very long lines (15046), with no line terminators
Hash d12b20ed4544ccd9434d132f75c87b74
9e586fedc01d58908fdaf3e89ae50d72be534b06
635955f743d79c0cdb14bdb534580de97273844d370f380ac657056bfc61cc3a
GET /static/icon.css?1695696487 HTTP/1.1
Host: www.qinav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.qinav.com/video/659753.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Sep 2023 17:27:13 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=15952
etag: W/"3e50-5d3f41d8fd640-gzip"
last-modified: Sat, 25 Dec 2021 08:18:25 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2271
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N%2BL3wntydFZ0JfiA3EvOxI7xXonGmz7GDQhkRSsdmgDJYM0We%2Fp8S7%2BtdEk8TDXCaOqso8nJMz8bB4w9fTH8ERLQMzkuk8sFm%2FUDC%2FJNLzJ0OgvGCupHXXqCwJioZ6TZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80d574c5dfa6b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.qinav.com/static/icon.png
200 OK 287 B URL GET HTTP/3 www.qinav.com/static/icon.png
IP
Requested by https://www.qinav.com/video/659753.html
Certificate IssuerLet's Encrypt
Subjectqinav.com
Fingerprint2D:81:32:67:EB:44:12:6C:56:B5:49:07:09:C7:33:A2:4C:22:C6:62
ValiditySat, 02 Sep 2023 10:54:53 GMT - Fri, 01 Dec 2023 10:54:52 GMT
File type PNG image data, 24 x 24, 4-bit colormap, non-interlaced\012- data
Hash 59fcdef6c7f8d3571eb030a26f8986c1
e9d48bf079060e46b11f60bc2f594301f4dae040
f33f556f6abc4b5934fa223eb2612cb6f7fd3b6a76278c2773b50a669ef26fc2
GET /static/icon.png HTTP/1.1
Host: www.qinav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.qinav.com/video/659753.html
Cookie: _ga_FDDDPC4YXB=GS1.1.1695835634.1.0.1695835634.0.0.0; _ga=GA1.1.200063174.1695835634
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Sep 2023 17:27:14 GMT
content-type: image/png
content-length: 287
last-modified: Wed, 08 Dec 2021 17:14:31 GMT
etag: "11f-5d2a59f80abc0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2269
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VqVzy3B0AZtyQFpI0LObE46z03l%2BmkcAPwqGA63dxIOiSlYFuCzZXrp2ZrrQQ3Da%2BRVTf8FL3yO4sAp2fOHfmgPs3VNi4Ss86A2uzyEN5xbzy7JixmgXjDY9lr0t4PBL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80d574ca2b31b4eb-OSL
alt-svc: h3=":443"; ma=86400
owlunimmvn.com/lvesnk.html?zoneid=1941521
200 OK 482 kB URL GET HTTP/2 owlunimmvn.com/lvesnk.html?zoneid=1941521
IP
Requested by https://www.qinav.com/video/659753.html
Certificate IssuerBuypass AS-983163327
Subject
FingerprintA2:BE:5C:F7:3D:35:31:F5:F2:25:B5:DA:73:36:F1:22:45:6C:BE:D5
ValidityWed, 31 May 2023 14:13:14 GMT - Sun, 26 Nov 2023 22:59:00 GMT
File type gzip compressed data, max speed, from Unix\012- data
Size 482 kB (481589 bytes)
Hash 8f33c20754122115d3faab0dbd17ea60
0d9a59baa2976d379c78dd77011093c282a11d60
c36aaa574b863b8fdbb9cb2178387da830930ee478db3f6762e54606a3a7a557
GET /lvesnk.html?zoneid=1941521 HTTP/1.1
Host: owlunimmvn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.qinav.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 27 Sep 2023 17:27:14 GMT
content-type: text/html
last-modified: Mon, 18 Sep 2023 07:45:02 GMT
vary: Accept-Encoding
etag: W/"6507fffe-e1"
x-js-ab2: current
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2
www.diskaa.com/client/fengye6699b.gif
200 OK 125 kB URL GET HTTP/3 www.diskaa.com/client/fengye6699b.gif
IP
Requested by https://iframe.diskaa.com/baHR0cHM6Ly8wNzU5LmNpdHkvaDU/c2hvcnRVcmwtRmdiMXxodHRwczovL3d3dy5kaXNrYWEuY29tL2NsaWVudC9mZW5neWU2Njk5Yi5naWZ8MTAtMDE=.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:C8:59:B3:38:2D:6F:CF:23:93:69:C1:C5:10:E3:F7:A3:35:CA:09
ValiditySun, 30 Oct 2022 00:00:00 GMT - Mon, 30 Oct 2023 23:59:59 GMT
File type GIF image data, version 89a, 300 x 100\012- data
Size 125 kB (125029 bytes)
Hash 65f1b9f134a9e50b86c3754378095e65
83b9332304f9cf62786109eff8e16ad3dc7c7eae
3e2ff6eb8592b2ec66186bdb141c23000fa185567cc2087a7bdbe4143da8f71a
GET /client/fengye6699b.gif HTTP/1.1
Host: www.diskaa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iframe.diskaa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Sep 2023 17:27:14 GMT
content-type: image/gif
content-length: 125029
last-modified: Thu, 31 Aug 2023 14:50:01 GMT
etag: "1e865-6043928989840"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3112
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nI8FtCsnFQsXCKRvJm8F%2FCtomLqhvagNqfAA%2FBPFrtBnX1wicOCF4M9f1dsvncXjnirCkBlTH%2FxhOjvYPDTBcFAX3FTfx4mSfzUAmjapYdkVLSyFnYE76%2FockT5aUE8hhg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80d574cced02b509-OSL
alt-svc: h3=":443"; ma=86400
a.magsrv.com/video-slider.js
200 OK 15 kB URL GET HTTP/2 a.magsrv.com/video-slider.js
IP
Requested by https://www.qinav.com/embed/659753.html
Certificate IssuerLet's Encrypt
Subjectmagsrv.com
Fingerprint9C:9C:8C:15:3B:65:AB:34:94:B5:CD:26:D6:67:61:2A:99:F9:0A:7B
ValidityTue, 01 Aug 2023 11:24:30 GMT - Mon, 30 Oct 2023 11:24:29 GMT
File type ASCII text, with very long lines (32692)
Hash 323ef9bdcbc7ad6dbead55edfc3c0d38
6f11cbdba47af304be60572c1120c81c269471e5
a0fd2a1324a78ad64662e4d43d9ffb6809cf95acbcc99d88f7a5d261a038b18f
GET /video-slider.js HTTP/1.1
Host: a.magsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Sep 2023 17:27:14 GMT
content-encoding: gzip
content-length: 15375
content-type: application/javascript
accept-ranges: bytes
server: nginx
etag: W/"6f11cbdba47af304be60572c112"
accept-ch:
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-hw: 1695835634.dop225.sk1.t,1695835634.cds209.sk1.hn,1695835634.cds251.sk1.c
X-Firefox-Spdy: h2
iframe.diskaa.com/baHR0cHM6Ly8wNzU5LmNpdHkvaDU/c2hvcnRVcmwtRmdiMXxodHRwczovL3d3dy5kaXNrYWEuY29tL2NsaWVudC9mZW5neWU2Njk5Yi5naWZ8MTAtMDE=.html
200 OK 2.6 kB URL GET HTTP/3 iframe.diskaa.com/baHR0cHM6Ly8wNzU5LmNpdHkvaDU/c2hvcnRVcmwtRmdiMXxodHRwczovL3d3dy5kaXNrYWEuY29tL2NsaWVudC9mZW5neWU2Njk5Yi5naWZ8MTAtMDE=.html
IP
Requested by https://www.qinav.com/video/659753.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:C8:59:B3:38:2D:6F:CF:23:93:69:C1:C5:10:E3:F7:A3:35:CA:09
ValiditySun, 30 Oct 2022 00:00:00 GMT - Mon, 30 Oct 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 16da4341f77f2e0b59100de70c8da212
75de285012941a449cab6ef367ca0fd7ba68b58e
0a045fb55f183246de454fdb6714a45b190578a80d3b3babdef5295c251e51e6
GET /baHR0cHM6Ly8wNzU5LmNpdHkvaDU/c2hvcnRVcmwtRmdiMXxodHRwczovL3d3dy5kaXNrYWEuY29tL2NsaWVudC9mZW5neWU2Njk5Yi5naWZ8MTAtMDE=.html HTTP/1.1
Host: iframe.diskaa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.qinav.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Sep 2023 17:27:14 GMT
content-type: text/html
x-powered-by: PHP/5.4.16
cache-control: public, max-age=2592000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2ol%2BQcTzjOo0I3QAWLyfQgEnWyfwan1sUieElSeWB9j2OWQtKzgeGbqa4rUCO1EN%2BobozlxTwMAFLsd5L3Snm3U%2BSlG9%2F2Kr5uON47Y%2FgCafOd9gRsX0ooG9sfsqI7VLGFxrNQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80d574c848a1b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
syndication.realsrv.com/v1/api.php
200 OK 1.2 kB URL POST HTTP/1.1 syndication.realsrv.com/v1/api.php
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://a.realsrv.com/iframe.php?idzone=4516222&size=300x100
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
FingerprintCC:B9:27:44:89:99:7C:9F:94:A5:01:B6:FD:90:95:3E:AA:18:D8:7B
ValiditySun, 23 Jul 2023 14:21:20 GMT - Sat, 21 Oct 2023 14:21:19 GMT
File type JSON data\012- , ASCII text, with very long lines (1710), with no line terminators
Hash c94af0a5ea8c3d9a5e57e6c4d591dc2b
4fce03d142e8efe673f845690bc759fb5c421139
569e0bcf5da6c8955c80177ddfb7a0619d87a9f537646c6074d8de0f4030abf4
POST /v1/api.php HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 302
Origin: https://a.realsrv.com
DNT: 1
Connection: keep-alive
Referer: https://a.realsrv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 27 Sep 2023 17:27:15 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://a.realsrv.com
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22651465f309c1c5.594021953505926981%22%3B%7D; expires=Fri, 26-Sep-2025 17:27:15 GMT; Max-Age=63072000; path=/; domain=realsrv.com; secure; SameSite=None
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01OW2oDMQy8Si+wRi/bq3z3u4WEHsBe25DSUNhAyYcOX3lDoR4MYjQzGgLiBXSh/IJ8onzCaIpBIQgFjGJv72cTtM9rLz9h+76ZyCoRLSVgVlPxADFnEhGZqkVKmjDZKr5LBOaJbOCgyCJzCgBoGezj8np8nABjgAeCG46j5lbxGR7TK7l0iqX1tRFAHIVla1KplsqD10NoJey9fN33Z1F4IgCi+pr+CMcy1YzC5IX8gR30dezl1s3+KSfyEY5ipLORyKxotbZEA4GrZm09jq3p2nIvXUaChr9en7CYWgEAAA==
200 OK 20 B URL GET HTTP/1.1 syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01OW2oDMQy8Si+wRi/bq3z3u4WEHsBe25DSUNhAyYcOX3lDoR4MYjQzGgLiBXSh/IJ8onzCaIpBIQgFjGJv72cTtM9rLz9h+76ZyCoRLSVgVlPxADFnEhGZqkVKmjDZKr5LBOaJbOCgyCJzCgBoGezj8np8nABjgAeCG46j5lbxGR7TK7l0iqX1tRFAHIVla1KplsqD10NoJey9fN33Z1F4IgCi+pr+CMcy1YzC5IX8gR30dezl1s3+KSfyEY5ipLORyKxotbZEA4GrZm09jq3p2nIvXUaChr9en7CYWgEAAA==
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://a.realsrv.com/iframe.php?idzone=4516222&size=300x100
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
FingerprintCC:B9:27:44:89:99:7C:9F:94:A5:01:B6:FD:90:95:3E:AA:18:D8:7B
ValiditySun, 23 Jul 2023 14:21:20 GMT - Sat, 21 Oct 2023 14:21:19 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA01OW2oDMQy8Si+wRi/bq3z3u4WEHsBe25DSUNhAyYcOX3lDoR4MYjQzGgLiBXSh/IJ8onzCaIpBIQgFjGJv72cTtM9rLz9h+76ZyCoRLSVgVlPxADFnEhGZqkVKmjDZKr5LBOaJbOCgyCJzCgBoGezj8np8nABjgAeCG46j5lbxGR7TK7l0iqX1tRFAHIVla1KplsqD10NoJey9fN33Z1F4IgCi+pr+CMcy1YzC5IX8gR30dezl1s3+KSfyEY5ipLORyKxotbZEA4GrZm09jq3p2nIvXUaChr9en7CYWgEAAA== HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://a.realsrv.com
DNT: 1
Connection: keep-alive
Referer: https://a.realsrv.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22651465f30a1931.608785373489638810%22%3B%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 27 Sep 2023 17:27:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://a.realsrv.com
Access-Control-Allow-Credentials: true
Set-Cookie: __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%2299.0199%22%7D; expires=Fri, 26 Sep 2025 17:27:15 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
s.magsrv.com/splash.php?idzone=5081834&cookieconsent=true
200 OK 2.6 kB URL GET HTTP/1.1 s.magsrv.com/splash.php?idzone=5081834&cookieconsent=true
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://www.qinav.com/embed/659753.html
Certificate IssuerLet's Encrypt
Subjectmagsrv.com
Fingerprint9C:9C:8C:15:3B:65:AB:34:94:B5:CD:26:D6:67:61:2A:99:F9:0A:7B
ValidityTue, 01 Aug 2023 11:24:30 GMT - Mon, 30 Oct 2023 11:24:29 GMT
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (1543)
Hash f5a46c5d0f8572cd0b4a66ede5015c93
79532f60d704e75d13d467d9c10cd97fa9552764
01f169e62ae1efc1dee768d82b94756eb8beaf5ee6512e2f410bf99ea41b32c1
GET /splash.php?idzone=5081834&cookieconsent=true HTTP/1.1
Host: s.magsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.qinav.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 27 Sep 2023 17:27:15 GMT
Content-Type: text/xml;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Headers: X-CH-VALUES
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22651465f3280e99.352306963960108974%22%3B%7D; expires=Fri, 26 Sep 2025 17:27:15 GMT; path=; domain=.magsrv.com; Secure; SameSite=none
c-tag=%7B%22tag-video%22%3A%22v4%7C%7CNOR%7C5081834%7C82481096%7C0%7C%7C508%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7C%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C1695835635%7Cdd28fe0e803064606059e5d0ef57f738%7Cok%22%7D; expires=Thu, 28 Sep 2023 17:27:15 GMT; path=/; domain=.magsrv.com; Secure; SameSite=none
Cache-Control: no-store
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: https://www.qinav.com
Access-Control-Allow-Credentials: true
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
cdn.pncloudfl.com/pn/861/7c8/98d/8617c898da950a4e4fd5393695623886d61bccbb.png
200 OK 42 kB URL GET HTTP/2 cdn.pncloudfl.com/pn/861/7c8/98d/8617c898da950a4e4fd5393695623886d61bccbb.png
IP
Requested by https://owlunimmvn.com/lvesnk.html?zoneid=1941521
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintC6:42:10:11:EB:FA:38:01:62:34:DA:19:86:B6:89:D4:EF:B3:37:A8
ValidityFri, 31 Mar 2023 00:00:00 GMT - Sat, 30 Mar 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash a9d3f32fa1ca043bbb6575924e1bd951
fa894bdf8a66ef90f64248aaa5c24aaf9c500035
4933306ac90096a270521a53516bdf8f4bf154878a17a198a760a9b857fa2c49
GET /pn/861/7c8/98d/8617c898da950a4e4fd5393695623886d61bccbb.png HTTP/1.1
Host: cdn.pncloudfl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Sep 2023 17:27:15 GMT
content-type: image/webp
content-length: 41466
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
cache-control: max-age=172800
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=79159
content-disposition: inline; filename="8617c898da950a4e4fd5393695623886d61bccbb.webp"
etag: f64830e344a4967f40fb466d96927d70
expires: Thu, 28 Sep 2023 17:30:24 GMT
last-modified: Fri, 18 Aug 2023 14:51:40 GMT
vary: Accept
x-openstack-request-id: txb62b940f331d4bac8746b-0064df869a
x-proxy-cache: HIT
x-timestamp: 1692370299.45782
x-trans-id: txb62b940f331d4bac8746b-0064df869a
cf-cache-status: HIT
age: 86211
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 80d574d06897b527-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/448451/acef643f4825b0cf2e2631871dfe10a1ba727b03.mp4
206 Partial Content 27 kB URL GET HTTP/2 s3t3d2y8.afcdn.net/library/448451/acef643f4825b0cf2e2631871dfe10a1ba727b03.mp4
IP
ASN #60068 Datacamp Limited
Requested by https://a.realsrv.com/iframe.php?idzone=4516222&size=300x100
Certificate IssuerLet's Encrypt
Subjectafcdn.net
FingerprintCA:9B:AA:FE:AE:52:F5:06:6F:3C:E5:8C:B7:0F:9A:60:0B:A7:00:C2
ValiditySun, 23 Jul 2023 14:03:50 GMT - Sat, 21 Oct 2023 14:03:49 GMT
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Hash 765f32ac2ca3b8394763f6053a3dbb91
acef643f4825b0cf2e2631871dfe10a1ba727b03
7a2683c06ff2079cba7f9438036257cd984213c6590bf924f4b20fb7de690dce
GET /library/448451/acef643f4825b0cf2e2631871dfe10a1ba727b03.mp4 HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://a.realsrv.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
date: Wed, 27 Sep 2023 17:27:15 GMT
content-type: video/mp4
content-length: 26964
last-modified: Thu, 27 Jul 2023 20:28:57 GMT
etag: "64c2d389-6954"
accept-ch:
expires: Fri, 26 Jul 2024 21:05:08 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-robots-tag: noindex, follow
x-cache-op: MISS
server: CDN77-Turbo
x-77-nzt: AblMCRQTe+v/74lRAA
x-77-nzt-ray: af5856309e6d29e5f3651465d5b1e810
x-accel-expires: @1722027908
x-accel-date: 1690491908
x-cache: HIT
x-age: 5343727
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 5343727
content-range: bytes 0-26963/26964
X-Firefox-Spdy: h2
syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01QW2rEMBC7Si+wZl52Mvvd7xZaegDHcWBLl0IWyn7o8B1nKdTCMMiSRlhI9ER+kumJ9SzTmTOck1MySZwNL69vMMbnpdef1L6vMJstM0ohVYdbBBiCKSICd2QpXrhgtngrQohEBQUkq9mYEhFjIny8Px+XBwhKdGcKw7EUYbWY6T68NtUuua59XoUob1WtrbbIUhfddD6EqGnv9eu2P4rSA4nYxgL5IwKnoVY2lSgUh3DQl22v1w78Uw5MRzgbxEcjs1ERK+vabCm1Wa/UnU1akcZ980zxO79npMJHWgEAAA==
200 OK 20 B URL GET HTTP/1.1 syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01QW2rEMBC7Si+wZl52Mvvd7xZaegDHcWBLl0IWyn7o8B1nKdTCMMiSRlhI9ER+kumJ9SzTmTOck1MySZwNL69vMMbnpdef1L6vMJstM0ohVYdbBBiCKSICd2QpXrhgtngrQohEBQUkq9mYEhFjIny8Px+XBwhKdGcKw7EUYbWY6T68NtUuua59XoUob1WtrbbIUhfddD6EqGnv9eu2P4rSA4nYxgL5IwKnoVY2lSgUh3DQl22v1w78Uw5MRzgbxEcjs1ERK+vabCm1Wa/UnU1akcZ980zxO79npMJHWgEAAA==
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://a.realsrv.com/iframe.php?idzone=4516222&size=300x100
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
FingerprintCC:B9:27:44:89:99:7C:9F:94:A5:01:B6:FD:90:95:3E:AA:18:D8:7B
ValiditySun, 23 Jul 2023 14:21:20 GMT - Sat, 21 Oct 2023 14:21:19 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA01QW2rEMBC7Si+wZl52Mvvd7xZaegDHcWBLl0IWyn7o8B1nKdTCMMiSRlhI9ER+kumJ9SzTmTOck1MySZwNL69vMMbnpdef1L6vMJstM0ohVYdbBBiCKSICd2QpXrhgtngrQohEBQUkq9mYEhFjIny8Px+XBwhKdGcKw7EUYbWY6T68NtUuua59XoUob1WtrbbIUhfddD6EqGnv9eu2P4rSA4nYxgL5IwKnoVY2lSgUh3DQl22v1w78Uw5MRzgbxEcjs1ERK+vabCm1Wa/UnU1akcZ980zxO79npMJHWgEAAA== HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://a.realsrv.com
DNT: 1
Connection: keep-alive
Referer: https://a.realsrv.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22651465f309c1c5.594021953505926981%22%3B%7D; __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%2299.0199%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 27 Sep 2023 17:27:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://a.realsrv.com
Access-Control-Allow-Credentials: true
Set-Cookie: __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%2299.029701%22%7D; expires=Fri, 26 Sep 2025 17:27:15 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
s3t3d2y8.afcdn.net/library/448451/acef643f4825b0cf2e2631871dfe10a1ba727b03.mp4
206 Partial Content 27 kB URL GET HTTP/2 s3t3d2y8.afcdn.net/library/448451/acef643f4825b0cf2e2631871dfe10a1ba727b03.mp4
IP
ASN #60068 Datacamp Limited
Requested by https://a.realsrv.com/iframe.php?idzone=4516222&size=300x100
Certificate IssuerLet's Encrypt
Subjectafcdn.net
FingerprintCA:9B:AA:FE:AE:52:F5:06:6F:3C:E5:8C:B7:0F:9A:60:0B:A7:00:C2
ValiditySun, 23 Jul 2023 14:03:50 GMT - Sat, 21 Oct 2023 14:03:49 GMT
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Hash 765f32ac2ca3b8394763f6053a3dbb91
acef643f4825b0cf2e2631871dfe10a1ba727b03
7a2683c06ff2079cba7f9438036257cd984213c6590bf924f4b20fb7de690dce
GET /library/448451/acef643f4825b0cf2e2631871dfe10a1ba727b03.mp4 HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://a.realsrv.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 206 Partial Content
date: Wed, 27 Sep 2023 17:27:15 GMT
content-type: video/mp4
content-length: 26964
last-modified: Thu, 27 Jul 2023 20:28:57 GMT
etag: "64c2d389-6954"
accept-ch:
expires: Fri, 26 Jul 2024 21:05:08 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-robots-tag: noindex, follow
x-cache-op: MISS
server: CDN77-Turbo
x-77-nzt: AblMCRQs1UD/74lRAA
x-77-nzt-ray: af5856309e6d29e5f36514659c77201a
x-accel-expires: @1722027908
x-accel-date: 1690491908
x-cache: HIT
x-age: 5343727
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 5343727
content-range: bytes 0-26963/26964
X-Firefox-Spdy: h2
owlunimmvn.com/chicken.gif?z=1941521&pb=46735e680258caef26536252e335fb531695842835&psp=bm4lVFu_2bh1AGCxd1qVinz8jBqRaLM8LWDf8Iamc94DqHo0aAzDM6R2pVT0q5PO7yIs__QuHhi-XY0HVSmdUCR5hOBaqf22LZSihnVpMD6ty_x8eBmeYfZMBYXEvwNwLiROaIOKp0iU848ZuWS02RcXVFp_c4xABRicfBIDncfE19fmML8WvMaUzh2Rxln2ZIYIFSH-XC0c6p3O3iTAN4MICVqoGrFFV3SZnjcplUYcoSwtBPLYEbh2ZVZmAmGgQVhsp5jDWBKmpoBhXEiLrQGOnlp6dRXX4nErczFV37F6N8Fr6qDNh-GcJ1B1-XD03dvZe52qNQxBi9pyOvvcpYIMRZhWVkKtwwbBQztTy-KBXARvxHus0Wh1DxHTejlpArOq9NYHcNtVRVj_8GHnNOLOzbkwnAPLw7wYb1VSWsXpakGIf4bGsVJN-g15f_Ak6_GMIaL0Y7hc3KvLuqgIaOFOrLGN_B7-ZDHlrS2q2gvnm_EO4dheHMjbSFuKlOTa8ya9seNvR-rIC4MIJir5rEYzQ1LmzletJubdkqQ6AO1GjOf7EPB9cOrqLRWtzulh_Z1o5ByjQxwHdsnHH0ubL8EZPgOsiZ6GPP_9I-OZFL_N-KpqGHmDlYxGgiPgPuNJrB7SqC02LTER7PfEn3l9f5KzyNqeBh-VOIc0Oh_PYA8g6yaS7QDG_1G97gxIXsQQjf3WsY-tcgG9tLSonTGwcBKe05zReBRihDvEFgTQgp9IiXxwjJ3YB8XwpoG2djkhovexURxra1QFBdP-p-m57bH4kO1xpN35nEPlwnTTtNJJ7TjLRr7sZLx4tgzPw8InX9U6xdPtJcLQzG2ssxAG9i9xdDYpmgyUU9dsRiCKNL8LzeFz5ljoRFqPjnrw_T2oEmNVchq6gFOW3PVotmHJtlU2kYJH-0-P-IgtAulsD7BtNhpbGMNsYZZLROsIg0iXbeoYB8-KxahG7EQakmAWxv1HZP3QOPn1H2XOxA==&im=1&freq=0&nojs=0&abvar=0&febuild=1.0.158&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=801&y=801&md=0&cid=2644413074610688&sp=1&im=1&pload=252
200 OK 43 B URL GET HTTP/2 owlunimmvn.com/chicken.gif?z=1941521&pb=46735e680258caef26536252e335fb531695842835&psp=bm4lVFu_2bh1AGCxd1qVinz8jBqRaLM8LWDf8Iamc94DqHo0aAzDM6R2pVT0q5PO7yIs__QuHhi-XY0HVSmdUCR5hOBaqf22LZSihnVpMD6ty_x8eBmeYfZMBYXEvwNwLiROaIOKp0iU848ZuWS02RcXVFp_c4xABRicfBIDncfE19fmML8WvMaUzh2Rxln2ZIYIFSH-XC0c6p3O3iTAN4MICVqoGrFFV3SZnjcplUYcoSwtBPLYEbh2ZVZmAmGgQVhsp5jDWBKmpoBhXEiLrQGOnlp6dRXX4nErczFV37F6N8Fr6qDNh-GcJ1B1-XD03dvZe52qNQxBi9pyOvvcpYIMRZhWVkKtwwbBQztTy-KBXARvxHus0Wh1DxHTejlpArOq9NYHcNtVRVj_8GHnNOLOzbkwnAPLw7wYb1VSWsXpakGIf4bGsVJN-g15f_Ak6_GMIaL0Y7hc3KvLuqgIaOFOrLGN_B7-ZDHlrS2q2gvnm_EO4dheHMjbSFuKlOTa8ya9seNvR-rIC4MIJir5rEYzQ1LmzletJubdkqQ6AO1GjOf7EPB9cOrqLRWtzulh_Z1o5ByjQxwHdsnHH0ubL8EZPgOsiZ6GPP_9I-OZFL_N-KpqGHmDlYxGgiPgPuNJrB7SqC02LTER7PfEn3l9f5KzyNqeBh-VOIc0Oh_PYA8g6yaS7QDG_1G97gxIXsQQjf3WsY-tcgG9tLSonTGwcBKe05zReBRihDvEFgTQgp9IiXxwjJ3YB8XwpoG2djkhovexURxra1QFBdP-p-m57bH4kO1xpN35nEPlwnTTtNJJ7TjLRr7sZLx4tgzPw8InX9U6xdPtJcLQzG2ssxAG9i9xdDYpmgyUU9dsRiCKNL8LzeFz5ljoRFqPjnrw_T2oEmNVchq6gFOW3PVotmHJtlU2kYJH-0-P-IgtAulsD7BtNhpbGMNsYZZLROsIg0iXbeoYB8-KxahG7EQakmAWxv1HZP3QOPn1H2XOxA==&im=1&freq=0&nojs=0&abvar=0&febuild=1.0.158&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=801&y=801&md=0&cid=2644413074610688&sp=1&im=1&pload=252
IP
Requested by https://owlunimmvn.com/lvesnk.html?zoneid=1941521
Certificate IssuerBuypass AS-983163327
Subject
FingerprintA2:BE:5C:F7:3D:35:31:F5:F2:25:B5:DA:73:36:F1:22:45:6C:BE:D5
ValidityWed, 31 May 2023 14:13:14 GMT - Sun, 26 Nov 2023 22:59:00 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28e463819a210071de3b45ebe7633613
6dccd571828ec0912629119cf7eabfea9f33ddbc
44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84
GET /chicken.gif?z=1941521&pb=46735e680258caef26536252e335fb531695842835&psp=bm4lVFu_2bh1AGCxd1qVinz8jBqRaLM8LWDf8Iamc94DqHo0aAzDM6R2pVT0q5PO7yIs__QuHhi-XY0HVSmdUCR5hOBaqf22LZSihnVpMD6ty_x8eBmeYfZMBYXEvwNwLiROaIOKp0iU848ZuWS02RcXVFp_c4xABRicfBIDncfE19fmML8WvMaUzh2Rxln2ZIYIFSH-XC0c6p3O3iTAN4MICVqoGrFFV3SZnjcplUYcoSwtBPLYEbh2ZVZmAmGgQVhsp5jDWBKmpoBhXEiLrQGOnlp6dRXX4nErczFV37F6N8Fr6qDNh-GcJ1B1-XD03dvZe52qNQxBi9pyOvvcpYIMRZhWVkKtwwbBQztTy-KBXARvxHus0Wh1DxHTejlpArOq9NYHcNtVRVj_8GHnNOLOzbkwnAPLw7wYb1VSWsXpakGIf4bGsVJN-g15f_Ak6_GMIaL0Y7hc3KvLuqgIaOFOrLGN_B7-ZDHlrS2q2gvnm_EO4dheHMjbSFuKlOTa8ya9seNvR-rIC4MIJir5rEYzQ1LmzletJubdkqQ6AO1GjOf7EPB9cOrqLRWtzulh_Z1o5ByjQxwHdsnHH0ubL8EZPgOsiZ6GPP_9I-OZFL_N-KpqGHmDlYxGgiPgPuNJrB7SqC02LTER7PfEn3l9f5KzyNqeBh-VOIc0Oh_PYA8g6yaS7QDG_1G97gxIXsQQjf3WsY-tcgG9tLSonTGwcBKe05zReBRihDvEFgTQgp9IiXxwjJ3YB8XwpoG2djkhovexURxra1QFBdP-p-m57bH4kO1xpN35nEPlwnTTtNJJ7TjLRr7sZLx4tgzPw8InX9U6xdPtJcLQzG2ssxAG9i9xdDYpmgyUU9dsRiCKNL8LzeFz5ljoRFqPjnrw_T2oEmNVchq6gFOW3PVotmHJtlU2kYJH-0-P-IgtAulsD7BtNhpbGMNsYZZLROsIg0iXbeoYB8-KxahG7EQakmAWxv1HZP3QOPn1H2XOxA==&im=1&freq=0&nojs=0&abvar=0&febuild=1.0.158&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=801&y=801&md=0&cid=2644413074610688&sp=1&im=1&pload=252 HTTP/1.1
Host: owlunimmvn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: UID=230927122750b07f871a73452ebe5589bdc7; CHCK=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 27 Sep 2023 17:27:15 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.impression
set-cookie: OACICAP=ACXqBQAAAAAAAAAB; Path=/; Expires=Fri, 27 Oct 2023 17:27:15 GMT; Secure; SameSite=None
OACIBLOCK=ACXqBQAAAABlE7bQ; Path=/; Expires=Fri, 27 Oct 2023 17:27:15 GMT; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
owlunimmvn.com/whob.gif?z=1941521&pb=46735e680258caef26536252e335fb531695842835&psp=bm4lVFu_2bh1AGCxd1qVinz8jBqRaLM8LWDf8Iamc94DqHo0aAzDM6R2pVT0q5PO7yIs__QuHhi-XY0HVSmdUCR5hOBaqf22LZSihnVpMD6ty_x8eBmeYfZMBYXEvwNwLiROaIOKp0iU848ZuWS02RcXVFp_c4xABRicfBIDncfE19fmML8WvMaUzh2Rxln2ZIYIFSH-XC0c6p3O3iTAN4MICVqoGrFFV3SZnjcplUYcoSwtBPLYEbh2ZVZmAmGgQVhsp5jDWBKmpoBhXEiLrQGOnlp6dRXX4nErczFV37F6N8Fr6qDNh-GcJ1B1-XD03dvZe52qNQxBi9pyOvvcpYIMRZhWVkKtwwbBQztTy-KBXARvxHus0Wh1DxHTejlpArOq9NYHcNtVRVj_8GHnNOLOzbkwnAPLw7wYb1VSWsXpakGIf4bGsVJN-g15f_Ak6_GMIaL0Y7hc3KvLuqgIaOFOrLGN_B7-ZDHlrS2q2gvnm_EO4dheHMjbSFuKlOTa8ya9seNvR-rIC4MIJir5rEYzQ1LmzletJubdkqQ6AO1GjOf7EPB9cOrqLRWtzulh_Z1o5ByjQxwHdsnHH0ubL8EZPgOsiZ6GPP_9I-OZFL_N-KpqGHmDlYxGgiPgPuNJrB7SqC02LTER7PfEn3l9f5KzyNqeBh-VOIc0Oh_PYA8g6yaS7QDG_1G97gxIXsQQjf3WsY-tcgG9tLSonTGwcBKe05zReBRihDvEFgTQgp9IiXxwjJ3YB8XwpoG2djkhovexURxra1QFBdP-p-m57bH4kO1xpN35nEPlwnTTtNJJ7TjLRr7sZLx4tgzPw8InX9U6xdPtJcLQzG2ssxAG9i9xdDYpmgyUU9dsRiCKNL8LzeFz5ljoRFqPjnrw_T2oEmNVchq6gFOW3PVotmHJtlU2kYJH-0-P-IgtAulsD7BtNhpbGMNsYZZLROsIg0iXbeoYB8-KxahG7EQakmAWxv1HZP3QOPn1H2XOxA==&im=1&freq=0&nojs=0&abvar=0&febuild=1.0.158&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=801&y=801&md=0&cid=2644413074610688&sp=1&im=1&pload=252
200 OK 43 B URL GET HTTP/2 owlunimmvn.com/whob.gif?z=1941521&pb=46735e680258caef26536252e335fb531695842835&psp=bm4lVFu_2bh1AGCxd1qVinz8jBqRaLM8LWDf8Iamc94DqHo0aAzDM6R2pVT0q5PO7yIs__QuHhi-XY0HVSmdUCR5hOBaqf22LZSihnVpMD6ty_x8eBmeYfZMBYXEvwNwLiROaIOKp0iU848ZuWS02RcXVFp_c4xABRicfBIDncfE19fmML8WvMaUzh2Rxln2ZIYIFSH-XC0c6p3O3iTAN4MICVqoGrFFV3SZnjcplUYcoSwtBPLYEbh2ZVZmAmGgQVhsp5jDWBKmpoBhXEiLrQGOnlp6dRXX4nErczFV37F6N8Fr6qDNh-GcJ1B1-XD03dvZe52qNQxBi9pyOvvcpYIMRZhWVkKtwwbBQztTy-KBXARvxHus0Wh1DxHTejlpArOq9NYHcNtVRVj_8GHnNOLOzbkwnAPLw7wYb1VSWsXpakGIf4bGsVJN-g15f_Ak6_GMIaL0Y7hc3KvLuqgIaOFOrLGN_B7-ZDHlrS2q2gvnm_EO4dheHMjbSFuKlOTa8ya9seNvR-rIC4MIJir5rEYzQ1LmzletJubdkqQ6AO1GjOf7EPB9cOrqLRWtzulh_Z1o5ByjQxwHdsnHH0ubL8EZPgOsiZ6GPP_9I-OZFL_N-KpqGHmDlYxGgiPgPuNJrB7SqC02LTER7PfEn3l9f5KzyNqeBh-VOIc0Oh_PYA8g6yaS7QDG_1G97gxIXsQQjf3WsY-tcgG9tLSonTGwcBKe05zReBRihDvEFgTQgp9IiXxwjJ3YB8XwpoG2djkhovexURxra1QFBdP-p-m57bH4kO1xpN35nEPlwnTTtNJJ7TjLRr7sZLx4tgzPw8InX9U6xdPtJcLQzG2ssxAG9i9xdDYpmgyUU9dsRiCKNL8LzeFz5ljoRFqPjnrw_T2oEmNVchq6gFOW3PVotmHJtlU2kYJH-0-P-IgtAulsD7BtNhpbGMNsYZZLROsIg0iXbeoYB8-KxahG7EQakmAWxv1HZP3QOPn1H2XOxA==&im=1&freq=0&nojs=0&abvar=0&febuild=1.0.158&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=801&y=801&md=0&cid=2644413074610688&sp=1&im=1&pload=252
IP
Requested by https://owlunimmvn.com/lvesnk.html?zoneid=1941521
Certificate IssuerBuypass AS-983163327
Subject
FingerprintA2:BE:5C:F7:3D:35:31:F5:F2:25:B5:DA:73:36:F1:22:45:6C:BE:D5
ValidityWed, 31 May 2023 14:13:14 GMT - Sun, 26 Nov 2023 22:59:00 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28e463819a210071de3b45ebe7633613
6dccd571828ec0912629119cf7eabfea9f33ddbc
44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84
GET /whob.gif?z=1941521&pb=46735e680258caef26536252e335fb531695842835&psp=bm4lVFu_2bh1AGCxd1qVinz8jBqRaLM8LWDf8Iamc94DqHo0aAzDM6R2pVT0q5PO7yIs__QuHhi-XY0HVSmdUCR5hOBaqf22LZSihnVpMD6ty_x8eBmeYfZMBYXEvwNwLiROaIOKp0iU848ZuWS02RcXVFp_c4xABRicfBIDncfE19fmML8WvMaUzh2Rxln2ZIYIFSH-XC0c6p3O3iTAN4MICVqoGrFFV3SZnjcplUYcoSwtBPLYEbh2ZVZmAmGgQVhsp5jDWBKmpoBhXEiLrQGOnlp6dRXX4nErczFV37F6N8Fr6qDNh-GcJ1B1-XD03dvZe52qNQxBi9pyOvvcpYIMRZhWVkKtwwbBQztTy-KBXARvxHus0Wh1DxHTejlpArOq9NYHcNtVRVj_8GHnNOLOzbkwnAPLw7wYb1VSWsXpakGIf4bGsVJN-g15f_Ak6_GMIaL0Y7hc3KvLuqgIaOFOrLGN_B7-ZDHlrS2q2gvnm_EO4dheHMjbSFuKlOTa8ya9seNvR-rIC4MIJir5rEYzQ1LmzletJubdkqQ6AO1GjOf7EPB9cOrqLRWtzulh_Z1o5ByjQxwHdsnHH0ubL8EZPgOsiZ6GPP_9I-OZFL_N-KpqGHmDlYxGgiPgPuNJrB7SqC02LTER7PfEn3l9f5KzyNqeBh-VOIc0Oh_PYA8g6yaS7QDG_1G97gxIXsQQjf3WsY-tcgG9tLSonTGwcBKe05zReBRihDvEFgTQgp9IiXxwjJ3YB8XwpoG2djkhovexURxra1QFBdP-p-m57bH4kO1xpN35nEPlwnTTtNJJ7TjLRr7sZLx4tgzPw8InX9U6xdPtJcLQzG2ssxAG9i9xdDYpmgyUU9dsRiCKNL8LzeFz5ljoRFqPjnrw_T2oEmNVchq6gFOW3PVotmHJtlU2kYJH-0-P-IgtAulsD7BtNhpbGMNsYZZLROsIg0iXbeoYB8-KxahG7EQakmAWxv1HZP3QOPn1H2XOxA==&im=1&freq=0&nojs=0&abvar=0&febuild=1.0.158&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=801&y=801&md=0&cid=2644413074610688&sp=1&im=1&pload=252 HTTP/1.1
Host: owlunimmvn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: UID=230927122750b07f871a73452ebe5589bdc7; CHCK=1; OACICAP=ACXqBQAAAAAAAAAB; OACIBLOCK=ACXqBQAAAABlE7bQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 27 Sep 2023 17:27:15 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.banner.view
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
ocsp.sectigo.com/
471 B IP
Hash 33b7eb3cdf15ed3ca9e4ba16cb3efc1e
ba3f59961f5ca2d8cf90f0828b2d9fee53133f1a
d6fcb6cdf39fe92a6163bc7015148ce98ae02999866b5eb6d21ddd6f7a584baf
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 17:27:15 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 27 Sep 2023 14:41:44 GMT
Expires: Wed, 04 Oct 2023 14:41:43 GMT
Etag: "ba3f59961f5ca2d8cf90f0828b2d9fee53133f1a"
Cache-Control: max-age=594310,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 80d574d39ad81c12-OSL
165tchuang.com:3188/i/2023/01/09/63bc12326f523.gif
200 OK 20 kB URL GET HTTP/1.1 165tchuang.com:3188/i/2023/01/09/63bc12326f523.gif
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://iframe.diskaa.com/baHR0cHM6Ly82MjYubGkvfGh0dHBzOi8vMTY1dGNodWFuZy5jb206MzE4OC9pLzIwMjMvMDEvMDkvNjNiYzEyMzI2ZjUyMy5naWZ8QjU=.html
Certificate IssuerLet's Encrypt
Subject165tchuang.com
Fingerprint5A:3F:CB:0A:62:E5:97:0C:81:FC:07:43:91:53:60:57:BB:B1:D8:C3
ValiditySat, 12 Aug 2023 15:46:06 GMT - Fri, 10 Nov 2023 15:46:05 GMT
File type GIF image data, version 89a, 360 x 105\012- data
Hash 9b5fc823543ff9640c808fa7f3cc5447
5ec024fb47c4cc767d9e3d1b5dbbcc50f06119fc
e165a48e4fe2cc910af578f59eb09652c04f76f871ea0f8db098d6683bd3eb15
GET /i/2023/01/09/63bc12326f523.gif HTTP/1.1
Host: 165tchuang.com:3188
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iframe.diskaa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 17:27:15 GMT
Content-Type: image/gif
Content-Length: 19451
Connection: keep-alive
Last-Modified: Mon, 09 Jan 2023 13:10:10 GMT
ETag: "63bc1232-4bfb"
Expires: Sat, 14 Oct 2023 04:45:44 GMT
Cache-Control: max-age=2592000
Server: cdn
X-Cache-Status: HIT
Accept-Ranges: bytes
a.realsrv.com/iframe.php?idzone=4516222&size=300x100
200 OK 30 kB URL GET HTTP/2 a.realsrv.com/iframe.php?idzone=4516222&size=300x100
IP
ASN #60068 Datacamp Limited
Requested by https://www.qinav.com/video/659753.html
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
FingerprintCC:B9:27:44:89:99:7C:9F:94:A5:01:B6:FD:90:95:3E:AA:18:D8:7B
ValiditySun, 23 Jul 2023 14:21:20 GMT - Sat, 21 Oct 2023 14:21:19 GMT
File type gzip compressed data, from Unix\012- data
Hash 7dd73f1a36e048b4718800000ebd612f
a82a03a53a1e1709c140af9e11541709e801e878
ccc416b6ea17327f3ba9424b569d1ec4ae8a1f289fa4acedc28be6605199c519
GET /iframe.php?idzone=4516222&size=300x100 HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.qinav.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Sep 2023 17:27:14 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
accept-ch:
expires: Wed, 27 Sep 2023 17:27:43 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: AblMCRR47Mf/zSQAAA
x-77-nzt-ray: af5856300b8126d1f26514653d5f4002
x-accel-expires: @1695837013
x-accel-date: 1695826213
x-cache: HIT
x-age: 9421
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 9421
content-encoding: gzip
X-Firefox-Spdy: h2
newmyg-videomy.004307.com/20200328/enxI3V0n/index.m3u8
200 OK 98 B URL GET HTTP/2 newmyg-videomy.004307.com/20200328/enxI3V0n/index.m3u8
IP
Requested by https://www.qinav.com/embed/659753.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2B:C1:BD:19:3C:D2:37:F1:2D:A8:07:71:1B:6E:0E:EA:45:7F:87:1A
ValiditySun, 05 Feb 2023 00:00:00 GMT - Mon, 05 Feb 2024 23:59:59 GMT
Hash 2a9b2db7cc0f2bb3644afc830b8d0609
c51ee509c094eacbf5dde29500a715fbfa194a08
5ffcca351f3082e7a2455a53e1a47e82f2995d20a72a4da771d542ef48a780db
GET /20200328/enxI3V0n/index.m3u8 HTTP/1.1
Host: newmyg-videomy.004307.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Sep 2023 17:27:16 GMT
content-type: application/octet-stream
content-length: 98
access-control-allow-origin: *
etag: "2a9b2db7cc0f2bb3644afc830b8d0609"
access-control-allow-methods: GET,HEAD
cf-placement: local-OSL
vary: Accept-Encoding
server: cloudflare
cf-ray: 80d574d64ca2569b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
newmyg-videomy.004307.com/20200328/enxI3V0n/1500kb/hls/index.m3u8
200 OK 38 kB URL GET HTTP/2 newmyg-videomy.004307.com/20200328/enxI3V0n/1500kb/hls/index.m3u8
IP
Requested by https://www.qinav.com/embed/659753.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2B:C1:BD:19:3C:D2:37:F1:2D:A8:07:71:1B:6E:0E:EA:45:7F:87:1A
ValiditySun, 05 Feb 2023 00:00:00 GMT - Mon, 05 Feb 2024 23:59:59 GMT
Hash c4cc1fa6135f55ddce85425bda89cbd4
6ee1368b99d6a92bcbf766c78a9932deed2bf89c
002e7d7468d5998f571f2ef05ed0d83aff76f8d413df69a66434f185d78b0f65
GET /20200328/enxI3V0n/1500kb/hls/index.m3u8 HTTP/1.1
Host: newmyg-videomy.004307.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.qinav.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 27 Sep 2023 17:27:17 GMT
content-type: application/octet-stream
content-length: 38114
access-control-allow-origin: *
etag: "c4cc1fa6135f55ddce85425bda89cbd4"
access-control-allow-methods: GET,HEAD
cf-placement: local-OSL
vary: Accept-Encoding
server: cloudflare
cf-ray: 80d574d9afd7569b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
newmyg-videomy.004307.com/20200328/enxI3V0n/1500kb/hls/3oKXjMsZ.ts
200 OK 674 kB URL GET HTTP/3 newmyg-videomy.004307.com/20200328/enxI3V0n/1500kb/hls/3oKXjMsZ.ts
IP
Requested by https://www.qinav.com/embed/659753.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2B:C1:BD:19:3C:D2:37:F1:2D:A8:07:71:1B:6E:0E:EA:45:7F:87:1A
ValiditySun, 05 Feb 2023 00:00:00 GMT - Mon, 05 Feb 2024 23:59:59 GMT
Size 674 kB (673604 bytes)
Hash d9e639126c2ecd8ff563fc6eab97c345
af1ac148b5777e21d1cee156544ea89f934664b5
530732ef2f4095f9b67ce29c0c6ac7d6680dfdb611d5d81c85ec9b8f598b48b0
GET /20200328/enxI3V0n/1500kb/hls/3oKXjMsZ.ts HTTP/1.1
Host: newmyg-videomy.004307.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.qinav.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Sep 2023 17:27:17 GMT
content-type: application/octet-stream
content-length: 673604
access-control-allow-origin: *
etag: "d9e639126c2ecd8ff563fc6eab97c345"
access-control-allow-methods: GET,HEAD
cf-placement: local-OSL
vary: Accept-Encoding
server: cloudflare
cf-ray: 80d574dd2edeb517-OSL
alt-svc: h3=":443"; ma=86400
newmyg-videomy.004307.com/20200328/enxI3V0n/1500kb/hls/Y5Z7nJVZ.ts
200 OK 705 kB URL GET HTTP/3 newmyg-videomy.004307.com/20200328/enxI3V0n/1500kb/hls/Y5Z7nJVZ.ts
IP
Requested by https://www.qinav.com/embed/659753.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2B:C1:BD:19:3C:D2:37:F1:2D:A8:07:71:1B:6E:0E:EA:45:7F:87:1A
ValiditySun, 05 Feb 2023 00:00:00 GMT - Mon, 05 Feb 2024 23:59:59 GMT
Size 705 kB (705188 bytes)
Hash 8fed0b4bc5d1223f2f07d2255e2a43a7
e2efd0c72d9e85095cfccd323c31057cd5695b30
83fe59ef033a3467cbf92a0fdce4488de0c1aa935af75c7fb96de1803d9b6a86
GET /20200328/enxI3V0n/1500kb/hls/Y5Z7nJVZ.ts HTTP/1.1
Host: newmyg-videomy.004307.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.qinav.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Sep 2023 17:27:18 GMT
content-type: application/octet-stream
content-length: 705188
access-control-allow-origin: *
etag: "8fed0b4bc5d1223f2f07d2255e2a43a7"
access-control-allow-methods: GET,HEAD
cf-placement: local-OSL
vary: Accept-Encoding
server: cloudflare
cf-ray: 80d574e0da20b517-OSL
alt-svc: h3=":443"; ma=86400
videomy.yongaomy.com:8091/20200328/enxI3V0n/index.m3u8
307 Temporary Redirect 98 B URL GET HTTP/1.1 videomy.yongaomy.com:8091/20200328/enxI3V0n/index.m3u8
IP
Requested by https://www.qinav.com/embed/659753.html
Certificate IssuerSectigo Limited
Subjectvideo2.51daao.com
FingerprintA0:21:18:47:98:90:A0:F9:F1:25:32:12:4F:A0:44:F4:2F:5C:83:37
ValidityFri, 25 Aug 2023 00:00:00 GMT - Sat, 24 Aug 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /20200328/enxI3V0n/index.m3u8 HTTP/1.1
Host: videomy.yongaomy.com:8091
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.qinav.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: X
Date: Wed, 27 Sep 2023 17:27:16 GMT
Content-Type: text/html
Content-Length: 235
Connection: keep-alive
Location: https://newmyg-videomy.004307.com/20200328/enxI3V0n/index.m3u8
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
www.diskaa.com/?host=qinav&t=1695696487
200 OK 7.6 kB URL GET HTTP/2 www.diskaa.com/?host=qinav&t=1695696487
IP
Requested by https://www.qinav.com/video/659753.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:C8:59:B3:38:2D:6F:CF:23:93:69:C1:C5:10:E3:F7:A3:35:CA:09
ValiditySun, 30 Oct 2022 00:00:00 GMT - Mon, 30 Oct 2023 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (8203), with no line terminators
Hash 2c053cd84e2fd76fe812ce20ded5c9cc
22d3f1d1e98f53b231febcba92471482e766c6e7
2de4913982ce5a9b4f9412bde7d0da8c9838286df38bf6314c1d52e649d3e21a
GET /?host=qinav&t=1695696487 HTTP/1.1
Host: www.diskaa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.qinav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Sep 2023 17:27:13 GMT
content-type: text/javascript
x-powered-by: PHP/5.4.16
cache-control: public, max-age=2592000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Jy%2B5I8tBGDYaT5CD8XCFwOyP3B1jea6TGfR2SpMpQCsDfBkX2MyxFklNZ1b61MvBJk25Sk5GsnsEGPPfmsJRs0OucMXLy0%2F0HiRqRJJ8qZLtlU1sfeTqhjG9t3gc81z2mw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80d574c6382a0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
a.realsrv.com/ad-provider.js
200 OK 107 kB URL GET HTTP/2 a.realsrv.com/ad-provider.js
IP
ASN #60068 Datacamp Limited
Requested by https://a.realsrv.com/iframe.php?idzone=4516222&size=300x100
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
FingerprintCC:B9:27:44:89:99:7C:9F:94:A5:01:B6:FD:90:95:3E:AA:18:D8:7B
ValiditySun, 23 Jul 2023 14:21:20 GMT - Sat, 21 Oct 2023 14:21:19 GMT
File type ASCII text, with very long lines (32346)
Size 107 kB (107301 bytes)
Hash 65989dee80f7b1123b8c1ec51f9f6660
f61f83c359ed90aabf24cfad697f183c966d2628
a15e1fab8a7445d515b6bd7e429a6bf45cc1704998e7436a4f5ed095520fa1d0
GET /ad-provider.js HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.realsrv.com/iframe.php?idzone=4516222&size=300x100
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Sep 2023 17:27:14 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"f61f83c359ed90aabf24cfad697"
accept-ch:
expires: Wed, 27 Sep 2023 11:24:27 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: AblMCRSXxUz/BAAAAA
x-77-nzt-ray: af5856300b8126d1f26514653adcc820
x-accel-expires: @1695846430
x-accel-date: 1695835630
x-cache: HIT
x-age: 4
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 4
content-encoding: gzip
X-Firefox-Spdy: h2
www.qinav.com/static/dplayer.min.js?1695202612
200 OK 161 kB URL GET HTTP/3 www.qinav.com/static/dplayer.min.js?1695202612
IP
Requested by https://www.qinav.com/embed/659753.html
Certificate IssuerLet's Encrypt
Subjectqinav.com
Fingerprint2D:81:32:67:EB:44:12:6C:56:B5:49:07:09:C7:33:A2:4C:22:C6:62
ValiditySat, 02 Sep 2023 10:54:53 GMT - Fri, 01 Dec 2023 10:54:52 GMT
Size 161 kB (160718 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/dplayer.min.js?1695202612 HTTP/1.1
Host: www.qinav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: _ga_FDDDPC4YXB=GS1.1.1695835634.1.0.1695835634.0.0.0; _ga=GA1.1.200063174.1695835634
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 17:27:14 GMT
content-type: application/javascript
last-modified: Thu, 09 Dec 2021 03:09:22 GMT
etag: W/"273ce-5d2adeeda1c80-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 69
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mVMT%2B4pxnSMKQaG0RCjmRnwJj3%2F04EvjkDpE9o7OF%2Fpnhc06yzOY4cyQGwPOAg75DSAKO%2BCKk6Gh%2BGXMyoR6%2B8rgMArHnbu0iSzsN5PxuKIZDBiVHafT9%2B7G90oCaMO8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80d574cc8cfeb4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.qinav.com/static/zepto.min.js
200 OK 26 kB URL GET HTTP/3 www.qinav.com/static/zepto.min.js
IP
Requested by https://www.qinav.com/video/659753.html
Certificate IssuerLet's Encrypt
Subjectqinav.com
Fingerprint2D:81:32:67:EB:44:12:6C:56:B5:49:07:09:C7:33:A2:4C:22:C6:62
ValiditySat, 02 Sep 2023 10:54:53 GMT - Fri, 01 Dec 2023 10:54:52 GMT
File type ASCII text, with very long lines (26318)
Hash 50a4556b0089cfa1cb61e88ea23bbcce
6865443a258954fa19b8aa682e1f4c77d42493d1
beb9f5e32ed61fbce010497242a9b6b8219242b5ffc636038e7891510c773725
GET /static/zepto.min.js HTTP/1.1
Host: www.qinav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.qinav.com/video/659753.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 17:27:13 GMT
content-type: application/javascript
last-modified: Thu, 11 Nov 2021 14:51:30 GMT
etag: W/"6712-5d0847a51e080-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 6105
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LK4x0OQgtNObTpg%2ByDepByvkFfALM%2BDyFJRVdXD8lpR04iLo%2Bk9QqpNt94WghV48duZ1MZrIDXrXlCWl7mbML%2Bj6XfWdhJ4nYECxhRtHqSD9GhVJPqQBhjROo0X2E1Vv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80d574c5dfa7b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.qinav.com/embed/659753.html
200 OK 2.3 kB URL GET HTTP/3 www.qinav.com/embed/659753.html
IP
Requested by https://www.qinav.com/video/659753.html
Certificate IssuerLet's Encrypt
Subjectqinav.com
Fingerprint2D:81:32:67:EB:44:12:6C:56:B5:49:07:09:C7:33:A2:4C:22:C6:62
ValiditySat, 02 Sep 2023 10:54:53 GMT - Fri, 01 Dec 2023 10:54:52 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2477), with no line terminators
Hash e1bfa7af797d53547c843f03a23f8242
48f8faec5c26ed7244cee3d63d48520c197e0171
f67e49d1218cb56360960d813a400c8b4d18260c624a741590a1a0653d3ed748
GET /embed/659753.html HTTP/1.1
Host: www.qinav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.qinav.com/video/659753.html
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 17:27:14 GMT
content-type: text/html; charset=utf-8
x-powered-by: PHP/5.4.16
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BTBWs1dd3lHmPDFbzqhaZuclGwcWVQRo7RHDo2Ch3rFhU9iYOx7EKVGaoH03sWcpIOfRolCZNHpK%2By4Fl369i4liOMsMXS5Tu%2BB%2BwOF%2BVpu0viFITGK3CEsnXriVRx9K"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80d574c6c860b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.qinav.com/static/zepto.min.js?1695202612
200 OK 26 kB URL GET HTTP/3 www.qinav.com/static/zepto.min.js?1695202612
IP
Requested by https://www.qinav.com/embed/659753.html
Certificate IssuerLet's Encrypt
Subjectqinav.com
Fingerprint2D:81:32:67:EB:44:12:6C:56:B5:49:07:09:C7:33:A2:4C:22:C6:62
ValiditySat, 02 Sep 2023 10:54:53 GMT - Fri, 01 Dec 2023 10:54:52 GMT
File type ASCII text, with very long lines (26318)
Hash 50a4556b0089cfa1cb61e88ea23bbcce
6865443a258954fa19b8aa682e1f4c77d42493d1
beb9f5e32ed61fbce010497242a9b6b8219242b5ffc636038e7891510c773725
GET /static/zepto.min.js?1695202612 HTTP/1.1
Host: www.qinav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: _ga_FDDDPC4YXB=GS1.1.1695835634.1.0.1695835634.0.0.0; _ga=GA1.1.200063174.1695835634
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 17:27:14 GMT
content-type: application/javascript
last-modified: Thu, 11 Nov 2021 14:51:30 GMT
etag: W/"6712-5d0847a51e080-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 69
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jwmMBMaBV0ojBeiL3PgUMg8VbqIYR21p41G5ntts%2BVYko8vJjDrT02EO2a6yzyfiub8PXgP1CY6oT0XL27%2F99GKoxor6stXlyXBWHAmOb9PSOSPjG8k1%2BRMScER1dAzS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80d574cc8cffb4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
a.realsrv.com/iframe.js?idzone=4516222&size=300x100
200 OK 2.2 kB URL GET HTTP/2 a.realsrv.com/iframe.js?idzone=4516222&size=300x100
IP
ASN #60068 Datacamp Limited
Requested by https://a.realsrv.com/iframe.php?idzone=4516222&size=300x100
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
FingerprintCC:B9:27:44:89:99:7C:9F:94:A5:01:B6:FD:90:95:3E:AA:18:D8:7B
ValiditySun, 23 Jul 2023 14:21:20 GMT - Sat, 21 Oct 2023 14:21:19 GMT
File type ASCII text, with very long lines (2309), with no line terminators
Hash a37184f7d89ac52a7a7588a47121a53f
42752b3fd10c794a4de597b9e4eb57ddf9693629
e8020a9431f8dc636bafc0389179cfcbbb125bfa742d38307198ed43f57c1bb1
GET /iframe.js?idzone=4516222&size=300x100 HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.realsrv.com/iframe.php?idzone=4516222&size=300x100
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Sep 2023 17:27:14 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"fd0abf0149d5c4ebc141794b9d9"
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
expires: Wed, 27 Sep 2023 11:27:05 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: AblMCRQiQhf/zCQAAA
x-77-nzt-ray: af5856300b8126d1f26514651395b42a
x-accel-expires: @1695837014
x-accel-date: 1695826214
x-cache: HIT
x-age: 9420
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 9420
content-encoding: gzip
X-Firefox-Spdy: h2
iframe.diskaa.com/baHR0cHM6Ly9pb3MuOHhhcHAuYXBwL3ZhY2FuY3kyLmh0bWx8aHR0cHM6Ly93d3cuZGlza2FhLmNvbS9jbGllbnQvODg2OC1iLmdpZnwxMC0xMg==.html
200 OK 636 B URL GET HTTP/3 iframe.diskaa.com/baHR0cHM6Ly9pb3MuOHhhcHAuYXBwL3ZhY2FuY3kyLmh0bWx8aHR0cHM6Ly93d3cuZGlza2FhLmNvbS9jbGllbnQvODg2OC1iLmdpZnwxMC0xMg==.html
IP
Requested by https://www.qinav.com/video/659753.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:C8:59:B3:38:2D:6F:CF:23:93:69:C1:C5:10:E3:F7:A3:35:CA:09
ValiditySun, 30 Oct 2022 00:00:00 GMT - Mon, 30 Oct 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (690), with no line terminators
Hash ac649762934342d40e827467ebaba5ee
72008add7b906ee5e93756f9ee857cd45830fb90
988a7c680c1263340211dfe9aab85e1073a2ac1e857bacfd74976a837696af51
GET /baHR0cHM6Ly9pb3MuOHhhcHAuYXBwL3ZhY2FuY3kyLmh0bWx8aHR0cHM6Ly93d3cuZGlza2FhLmNvbS9jbGllbnQvODg2OC1iLmdpZnwxMC0xMg==.html HTTP/1.1
Host: iframe.diskaa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.qinav.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 17:27:14 GMT
content-type: text/html
x-powered-by: PHP/5.4.16
cache-control: public, max-age=2592000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oUgP5brHGtpDwpiADwrNNkQKJOQh%2BaOf1BBxx6uRv%2FV9tHipn4tFFKZg%2FjsaGYEhNInOdzDfivNKnoE2RJfSG8D1A%2BGycrW8Dh1WJPGJXw3mdwMmoT5r%2BuMrwJfPkymq4QJ%2BOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80d574c848a0b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
a.realsrv.com/iframe.js?idzone=4516222&size=300x100
200 OK 2.2 kB URL GET HTTP/2 a.realsrv.com/iframe.js?idzone=4516222&size=300x100
IP
ASN #60068 Datacamp Limited
Requested by https://a.realsrv.com/iframe.php?idzone=4516222&size=300x100
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
FingerprintCC:B9:27:44:89:99:7C:9F:94:A5:01:B6:FD:90:95:3E:AA:18:D8:7B
ValiditySun, 23 Jul 2023 14:21:20 GMT - Sat, 21 Oct 2023 14:21:19 GMT
File type ASCII text, with very long lines (2309), with no line terminators
Hash a37184f7d89ac52a7a7588a47121a53f
42752b3fd10c794a4de597b9e4eb57ddf9693629
e8020a9431f8dc636bafc0389179cfcbbb125bfa742d38307198ed43f57c1bb1
GET /iframe.js?idzone=4516222&size=300x100 HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.realsrv.com/iframe.php?idzone=4516222&size=300x100
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Sep 2023 17:27:14 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"fd0abf0149d5c4ebc141794b9d9"
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
expires: Wed, 27 Sep 2023 11:27:05 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: AblMCRTCWXT/zCQAAA
x-77-nzt-ray: af5856300b8126d1f2651465585b062a
x-accel-expires: @1695837014
x-accel-date: 1695826214
x-cache: HIT
x-age: 9420
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 9420
content-encoding: gzip
X-Firefox-Spdy: h2
u3y8v8u4.aucdn.net/library/141372/1bb6f1b8759f0209e6b5a884c60236703d219a84.mp4
206 Partial Content 1.1 MB URL GET HTTP/2 u3y8v8u4.aucdn.net/library/141372/1bb6f1b8759f0209e6b5a884c60236703d219a84.mp4
IP
ASN #60068 Datacamp Limited
Requested by https://www.qinav.com/embed/659753.html
Certificate IssuerLet's Encrypt
Subjectafcdn.net
FingerprintCA:9B:AA:FE:AE:52:F5:06:6F:3C:E5:8C:B7:0F:9A:60:0B:A7:00:C2
ValiditySun, 23 Jul 2023 14:03:50 GMT - Sat, 21 Oct 2023 14:03:49 GMT
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size 1.1 MB (1081344 bytes)
Hash 4b441ad77f7805ce34fc5f90d480763c
03893da0e02d7533353d9d203bd84274e040fc5b
900b735c7cd5178b11a588b507d127e3fa1e0f8288c6a1329302a7972175be56
GET /library/141372/1bb6f1b8759f0209e6b5a884c60236703d219a84.mp4 HTTP/1.1
Host: u3y8v8u4.aucdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
date: Wed, 27 Sep 2023 17:27:15 GMT
content-type: video/mp4
content-length: 5942913
last-modified: Tue, 16 May 2023 15:35:27 GMT
etag: "6463a2bf-5aae81"
expires: Thu, 16 May 2024 10:01:08 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-robots-tag: noindex, follow
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: AblMCRS5zov/h76vAA
x-77-nzt-ray: af5856309e6d29e5f365146517dc8f17
x-accel-expires: @1715854060
x-accel-date: 1684318060
x-cache: HIT
x-age: 11517575
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 11517575
content-range: bytes 0-5942912/5942913
X-Firefox-Spdy: h2
www.qinav.com/static/main.js?1695696487
200 OK 12 kB URL GET HTTP/3 www.qinav.com/static/main.js?1695696487
IP
Requested by https://www.qinav.com/video/659753.html
Certificate IssuerLet's Encrypt
Subjectqinav.com
Fingerprint2D:81:32:67:EB:44:12:6C:56:B5:49:07:09:C7:33:A2:4C:22:C6:62
ValiditySat, 02 Sep 2023 10:54:53 GMT - Fri, 01 Dec 2023 10:54:52 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/main.js?1695696487 HTTP/1.1
Host: www.qinav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.qinav.com/video/659753.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 17:27:13 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=15371
etag: W/"3c0b-600d335254b80-gzip"
last-modified: Wed, 19 Jul 2023 08:56:30 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 6104
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ouBssXbRLgyjonQA5dGmvy0OlpKoXUmTPEyptAfTFC3PEFAy2otDN9NzKNooKQzxC5qKaLcgIB%2Bw1sOvmlC5sZHgUvv%2Bq7cVFG2F4%2B4RUjntFqaBGkpf36Zukcioy4Az"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80d574c5dfb4b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
iframe.diskaa.com/baHR0cHM6Ly82MjYubGkvfGh0dHBzOi8vMTY1dGNodWFuZy5jb206MzE4OC9pLzIwMjMvMDEvMDkvNjNiYzEyMzI2ZjUyMy5naWZ8QjU=.html
200 OK 628 B URL GET HTTP/3 iframe.diskaa.com/baHR0cHM6Ly82MjYubGkvfGh0dHBzOi8vMTY1dGNodWFuZy5jb206MzE4OC9pLzIwMjMvMDEvMDkvNjNiYzEyMzI2ZjUyMy5naWZ8QjU=.html
IP
Requested by https://www.qinav.com/video/659753.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:C8:59:B3:38:2D:6F:CF:23:93:69:C1:C5:10:E3:F7:A3:35:CA:09
ValiditySun, 30 Oct 2022 00:00:00 GMT - Mon, 30 Oct 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (682), with no line terminators
Hash 7b274211eaa24655855b28f873e81e78
1b578c022ab7ed430bad4132a41bf6f19ba3bb68
1b39ade2fa4ac75798aa7e3c9308b33b5777beceb3c5ec66e4f3bfe0480e97bf
GET /baHR0cHM6Ly82MjYubGkvfGh0dHBzOi8vMTY1dGNodWFuZy5jb206MzE4OC9pLzIwMjMvMDEvMDkvNjNiYzEyMzI2ZjUyMy5naWZ8QjU=.html HTTP/1.1
Host: iframe.diskaa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.qinav.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 17:27:14 GMT
content-type: text/html
x-powered-by: PHP/5.4.16
cache-control: public, max-age=2592000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5ag700Ob2XqIXFlS9CPFLsS%2FJ%2Bu%2BadUkX%2FSRBUtYuOcNU4mZkBb67gaQ%2BLgxCY3xv5ms7EChd9%2BvQYv2%2FsvWDysZBwObc%2F%2BUTUg7ntjccy4US3ck1q6QzBzj%2F8UYMItad0ZGuw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80d574c848a2b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
a.realsrv.com/build-iframe-js-url.js?idzone=4516222
200 OK 760 B URL GET HTTP/2 a.realsrv.com/build-iframe-js-url.js?idzone=4516222
IP
ASN #60068 Datacamp Limited
Requested by https://a.realsrv.com/iframe.php?idzone=4516222&size=300x100
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
FingerprintCC:B9:27:44:89:99:7C:9F:94:A5:01:B6:FD:90:95:3E:AA:18:D8:7B
ValiditySun, 23 Jul 2023 14:21:20 GMT - Sat, 21 Oct 2023 14:21:19 GMT
File type ASCII text, with very long lines (785), with no line terminators
Hash a2087f77c2b2aa7753904bda577c32a5
6684b2c9605b2b6fe8d070e553336d2431b9351a
ccdf87923a3e4838df7d5fb902f432ea8a67fe0fb38058aae1c2ea7682702f76
GET /build-iframe-js-url.js?idzone=4516222 HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.realsrv.com/iframe.php?idzone=4516222&size=300x100
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Sep 2023 17:27:14 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"1d544d707ba9a57316235a6c5e8"
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
expires: Wed, 27 Sep 2023 11:27:04 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: AblMCRSKRu//zSQAAA
x-77-nzt-ray: af5856300b8126d1f26514658ebd2d20
x-accel-expires: @1695837013
x-accel-date: 1695826213
x-cache: HIT
x-age: 9421
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 9421
content-encoding: gzip
X-Firefox-Spdy: h2
www.qinav.com/static/hls.min.js?1695202612
200 OK 224 kB URL GET HTTP/3 www.qinav.com/static/hls.min.js?1695202612
IP
Requested by https://www.qinav.com/embed/659753.html
Certificate IssuerLet's Encrypt
Subjectqinav.com
Fingerprint2D:81:32:67:EB:44:12:6C:56:B5:49:07:09:C7:33:A2:4C:22:C6:62
ValiditySat, 02 Sep 2023 10:54:53 GMT - Fri, 01 Dec 2023 10:54:52 GMT
File type ASCII text, with very long lines (31978)
Size 224 kB (223766 bytes)
Hash b55a12f998779f639f0b0dd6cc0f3be1
742ac86d0ce4833c4ebbfba944f84bd6021cd342
2c5c9f73e58c3fac08577552188e1cafba4d972e0a88d25f913915b9ac082a81
GET /static/hls.min.js?1695202612 HTTP/1.1
Host: www.qinav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: _ga_FDDDPC4YXB=GS1.1.1695835634.1.0.1695835634.0.0.0; _ga=GA1.1.200063174.1695835634
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 17:27:14 GMT
content-type: application/javascript
last-modified: Sat, 11 Dec 2021 09:09:42 GMT
etag: W/"36a16-5d2db332fe180-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 69
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NMPy0J47LRGnKKlOnqylUdvCPW8p%2BQOglVVtitapAIv5Bl4MMWGFEdxC07utHum3Fb%2F%2Bu%2FNH9hiHphniBuM7aW%2BiNNo671kGIFeLXYhDEm1sBLJYPj4YlBPisBww9I4p"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80d574cc8cfcb4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.diskaa.com/client/8868-b.gif
200 OK 408 kB URL GET HTTP/3 www.diskaa.com/client/8868-b.gif
IP
Requested by https://iframe.diskaa.com/baHR0cHM6Ly9pb3MuOHhhcHAuYXBwL3ZhY2FuY3kyLmh0bWx8aHR0cHM6Ly93d3cuZGlza2FhLmNvbS9jbGllbnQvODg2OC1iLmdpZnwxMC0xMg==.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:C8:59:B3:38:2D:6F:CF:23:93:69:C1:C5:10:E3:F7:A3:35:CA:09
ValiditySun, 30 Oct 2022 00:00:00 GMT - Mon, 30 Oct 2023 23:59:59 GMT
File type GIF image data, version 89a, 300 x 100\012- data
Size 408 kB (408223 bytes)
Hash cd29d95e67acb49da19bfb4249505fb7
8473c4bf73aa487093c4f252bdc41776e04097ba
06e86d4b4acc1f8d8f9551a559bf126a8de53471b8556a8f4ed5abfa724418e4
GET /client/8868-b.gif HTTP/1.1
Host: www.diskaa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iframe.diskaa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 17:27:14 GMT
content-type: image/gif
content-length: 408223
last-modified: Sat, 09 Sep 2023 11:53:08 GMT
etag: "63a9f-604ebbc957100"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2296
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WI6lsnhidlmEaaTtGSU3WuWnTmXbMpuFKlpoAPeXHyFAJHZtzexIQ0xN1LZ%2FHh%2BPfbAZ2BT4wb8RSHj4dwcueh8xm8zQEGEz4j6oMMH4I3d0p1exOJmYF38zBJepoGAu1g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80d574ccdceeb509-OSL
alt-svc: h3=":443"; ma=86400
www.qinav.com/video/659753.html
200 OK 26 kB URL User Request GET HTTP/2 www.qinav.com/video/659753.html
IP
Certificate IssuerLet's Encrypt
Subjectqinav.com
Fingerprint2D:81:32:67:EB:44:12:6C:56:B5:49:07:09:C7:33:A2:4C:22:C6:62
ValiditySat, 02 Sep 2023 10:54:53 GMT - Fri, 01 Dec 2023 10:54:52 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /video/659753.html HTTP/1.1
Host: www.qinav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Sep 2023 17:27:12 GMT
content-type: text/html; charset=utf-8
x-powered-by: PHP/5.4.16
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tm6ypG3jZxWzNAj5P%2BD3QPpP%2FwsWF37Edu2WSI8O960UI3%2FrtRXSQbY7%2BkQwTBYSp%2FRuWT5XOWTUteTSmhCEaw1zvifjL6oLbz9bJTUR2Gl7CinWDXs%2F8yM4rn5qX4Ut"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80d574bfbc6d5694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.qinav.com/static/style.css?1695696487
200 OK 17 kB URL GET HTTP/3 www.qinav.com/static/style.css?1695696487
IP
Requested by https://www.qinav.com/video/659753.html
Certificate IssuerLet's Encrypt
Subjectqinav.com
Fingerprint2D:81:32:67:EB:44:12:6C:56:B5:49:07:09:C7:33:A2:4C:22:C6:62
ValiditySat, 02 Sep 2023 10:54:53 GMT - Fri, 01 Dec 2023 10:54:52 GMT
File type ASCII text, with very long lines (16683), with no line terminators
Hash ff17bfef7ee5c07f1883afd1f117048f
6f6dc0a1bbb956833a94633463c81ae2fa8d8ae5
4f7aa44ce04395adc22e6a9d8ea4e896a6dac8a48dd42661a3ba289b93a130d5
GET /static/style.css?1695696487 HTTP/1.1
Host: www.qinav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.qinav.com/video/659753.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 17:27:13 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=18626
etag: W/"48c2-605c6fedfb080-gzip"
last-modified: Wed, 20 Sep 2023 09:28:18 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2271
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SjoArOlCErqxO462vNjfP5HxmGWsOs3E1%2FAXTk7D0K%2Bw0d0ur0cMLj%2Fb2MeU4%2BbC4FPnibT5Jswc0bVZrj4hJHTgfTIdqkfnnr5X%2FyzIDROwBb%2FOoT7DrBxuYZhln0b3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80d574c5dfa4b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
owlunimmvn.com/get/1941521?zoneid=1941521&jp=_clz9jxh8c9zb2bd2h6y82t&nojs=0&abvar=0&febuild=1.0.158&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=801&y=801&md=0&cid=2644413074610688&sp=1&im=1&freq=0
200 OK 5.2 kB URL GET HTTP/2 owlunimmvn.com/get/1941521?zoneid=1941521&jp=_clz9jxh8c9zb2bd2h6y82t&nojs=0&abvar=0&febuild=1.0.158&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=801&y=801&md=0&cid=2644413074610688&sp=1&im=1&freq=0
IP
Requested by https://owlunimmvn.com/lvesnk.html?zoneid=1941521
Certificate IssuerBuypass AS-983163327
Subject
FingerprintA2:BE:5C:F7:3D:35:31:F5:F2:25:B5:DA:73:36:F1:22:45:6C:BE:D5
ValidityWed, 31 May 2023 14:13:14 GMT - Sun, 26 Nov 2023 22:59:00 GMT
File type Unicode text, UTF-8 text, with very long lines (5259), with no line terminators
Hash 816f5c82f32d9c3738863bf2367062ef
a37f155b92d009bcd08c7f58bfdda161fff9e8ba
da46f01ade1c517910a236059c8c951d2cc8eebe1e7709cbd3e8fe9cc1bc0a47
GET /get/1941521?zoneid=1941521&jp=_clz9jxh8c9zb2bd2h6y82t&nojs=0&abvar=0&febuild=1.0.158&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=801&y=801&md=0&cid=2644413074610688&sp=1&im=1&freq=0 HTTP/1.1
Host: owlunimmvn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlunimmvn.com/lvesnk.html?zoneid=1941521
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 27 Sep 2023 17:27:15 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: UID=230927122750b07f871a73452ebe5589bdc7; Path=/; Expires=Wed, 30 Oct 2024 17:27:15 GMT; HttpOnly; Secure; SameSite=None
CHCK=1; Path=/; Expires=Wed, 30 Oct 2024 17:27:15 GMT; HttpOnly; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
www.diskaa.com/?action=logs&host=qinav&r=&l=en-US&u=https://www.qinav.com/video/659753.html&w=1280&h=1024
0 B URL GET www.diskaa.com/?action=logs&host=qinav&r=&l=en-US&u=https://www.qinav.com/video/659753.html&w=1280&h=1024
IP
Requested by https://www.qinav.com/video/659753.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:C8:59:B3:38:2D:6F:CF:23:93:69:C1:C5:10:E3:F7:A3:35:CA:09
ValiditySun, 30 Oct 2022 00:00:00 GMT - Mon, 30 Oct 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?action=logs&host=qinav&r=&l=en-US&u=https://www.qinav.com/video/659753.html&w=1280&h=1024 HTTP/1.1
Host: www.diskaa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.qinav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 17:27:14 GMT
content-type: text/html; charset=utf-8
x-powered-by: PHP/5.4.16
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bLn4NO6Ye9mDwAPxQRAWAWtO4GDovSVVSMd8sGh5OCbwSMnH%2FY3pDeUNMN4HbhrsxMd7VJinBLaRcM2F6pyGSm2sgWqRnxpPHKZT6PnGCSHhMk%2BMOv4cDCLsTRyoNk3ebQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80d574c80879b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
a.realsrv.com/build-iframe-js-url.js?idzone=4516222
200 OK 760 B URL GET HTTP/2 a.realsrv.com/build-iframe-js-url.js?idzone=4516222
IP
ASN #60068 Datacamp Limited
Requested by https://a.realsrv.com/iframe.php?idzone=4516222&size=300x100
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
FingerprintCC:B9:27:44:89:99:7C:9F:94:A5:01:B6:FD:90:95:3E:AA:18:D8:7B
ValiditySun, 23 Jul 2023 14:21:20 GMT - Sat, 21 Oct 2023 14:21:19 GMT
File type ASCII text, with very long lines (785), with no line terminators
Hash a2087f77c2b2aa7753904bda577c32a5
6684b2c9605b2b6fe8d070e553336d2431b9351a
ccdf87923a3e4838df7d5fb902f432ea8a67fe0fb38058aae1c2ea7682702f76
GET /build-iframe-js-url.js?idzone=4516222 HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.realsrv.com/iframe.php?idzone=4516222&size=300x100
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Sep 2023 17:27:14 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"1d544d707ba9a57316235a6c5e8"
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
expires: Wed, 27 Sep 2023 11:27:04 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: AblMCRTD6Iz/zSQAAA
x-77-nzt-ray: af5856300b8126d1f265146500b3d41f
x-accel-expires: @1695837013
x-accel-date: 1695826213
x-cache: HIT
x-age: 9421
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 9421
content-encoding: gzip
X-Firefox-Spdy: h2
www.qinav.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
200 OK 1.2 kB URL GET HTTP/3 www.qinav.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
Requested by https://www.qinav.com/video/659753.html
Certificate IssuerLet's Encrypt
Subjectqinav.com
Fingerprint2D:81:32:67:EB:44:12:6C:56:B5:49:07:09:C7:33:A2:4C:22:C6:62
ValiditySat, 02 Sep 2023 10:54:53 GMT - Fri, 01 Dec 2023 10:54:52 GMT
File type HTML document, ASCII text, with very long lines (1271), with no line terminators
Hash 40d981045a7516cdadd00e8dccc9c58d
8b8d9a48c6b9d2fba596034ef5db3dd0f2f781c3
71c7d5fc630ff38080f71945be1e8b0c43140d8c25338056b752495e18739c0c
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: www.qinav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.qinav.com/video/659753.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 17:27:13 GMT
content-type: application/javascript
last-modified: Mon, 25 Sep 2023 16:02:33 GMT
etag: W/"6511af19-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XNV8R8TIGVV3SZHFRnLN8Z6reH1etOfbvDA2A%2BLQlgeClA3oAK%2BHCNPhxCUtMlgU5JAug%2BQLJ4sJel8Kz3L7y4DpJLwbEGXzCDsm8VaHN%2FACrUbePIh3K3vVDq6h0TUi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80d574c5dfb2b4eb-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Fri, 29 Sep 2023 17:27:13 GMT
cache-control: max-age=172800, public
content-encoding: gzip
a.realsrv.com/ad-provider.js
200 OK 107 kB URL GET HTTP/2 a.realsrv.com/ad-provider.js
IP
ASN #60068 Datacamp Limited
Requested by https://a.realsrv.com/iframe.php?idzone=4516222&size=300x100
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
FingerprintCC:B9:27:44:89:99:7C:9F:94:A5:01:B6:FD:90:95:3E:AA:18:D8:7B
ValiditySun, 23 Jul 2023 14:21:20 GMT - Sat, 21 Oct 2023 14:21:19 GMT
File type ASCII text, with very long lines (32346)
Size 107 kB (107301 bytes)
Hash 65989dee80f7b1123b8c1ec51f9f6660
f61f83c359ed90aabf24cfad697f183c966d2628
a15e1fab8a7445d515b6bd7e429a6bf45cc1704998e7436a4f5ed095520fa1d0
GET /ad-provider.js HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.realsrv.com/iframe.php?idzone=4516222&size=300x100
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Sep 2023 17:27:14 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"f61f83c359ed90aabf24cfad697"
accept-ch:
expires: Wed, 27 Sep 2023 11:24:27 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: AblMCRTwQWv/BAAAAA
x-77-nzt-ray: af5856300b8126d1f26514656422f91f
x-accel-expires: @1695846430
x-accel-date: 1695835630
x-cache: HIT
x-age: 4
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 4
content-encoding: gzip
X-Firefox-Spdy: h2
104.21.53.2
142.250.74.168
95.211.229.247
185.76.9.21
188.114.96.1