| | 157.245.152.2 | 200 OK | 6.6 kB |
URL User Request GET HTTP/1.1IP157.245.152.2:80 ASN#14061 DIGITALOCEAN-ASN
File typeHTML document, ASCII text, with very long lines (3437) Hashe5131b6b8f09d3db0944a2f53c5eb469 60232302ccea20f51d287ad36558ffb06923fd28 515c016324294e7bf64f625596d2d1c1a6dbdeccebd3ae25765674a367d15aed
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 157.245.152.2
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 07 May 2024 08:49:43 GMT
Content-Type: text/html
Last-Modified: Thu, 02 May 2024 09:30:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"66335d29-3429"
Content-Encoding: gzip
|
|
| cdn.ampproject.org/v0.js | 142.250.74.65 | 200 OK | 73 kB |
IP142.250.74.65:443
CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.google.com Fingerprint15:D1:F9:FD:F4:47:59:FF:66:C1:EB:18:18:71:8F:7D:9A:38:20:14 ValidityTue, 16 Apr 2024 03:24:35 GMT - Tue, 09 Jul 2024 03:24:34 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (64654) Hash86b80d7bd5cbbcb64d6352cebe49087a ddaa6d9bbbf6c21a6ebf5afd53321a53db3741d1 729cf39187bda4533a392944f2802d8f8b9e8a0048676ec6481bf35a98713a43
GET /v0.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://157.245.152.2/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 73092
date: Tue, 07 May 2024 08:49:44 GMT
expires: Tue, 07 May 2024 08:49:44 GMT
cache-control: private, max-age=3000, stale-while-revalidate=1206600
etag: "1e5bf2819ff421fa"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| mediartchina.org/exhibitions/monologue%E2%80%93ding-an-sich/organic-arches-ii-us | 188.114.96.1 | 302 Found | 626 B |
URL User Request GET HTTP/2mediartchina.org/exhibitions/monologue%E2%80%93ding-an-sich/organic-arches-ii-us IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subjectmediartchina.org FingerprintF3:96:B7:B9:64:E3:60:4A:58:5B:D6:1B:F1:D5:CA:87:FE:FB:AA:E4 ValiditySat, 20 Apr 2024 18:59:26 GMT - Fri, 19 Jul 2024 18:59:25 GMT
Hashf93391aab2fdaec70d4936679b0b6ca1 b2decdbfaaacf48f98f43f96213dd73c3349ab45 8ac47b9417149a92698d6b2f5ca17ab3205300c6493486067763116fbca6dd29
GET /exhibitions/monologue%E2%80%93ding-an-sich/organic-arches-ii-us HTTP/1.1
Host: mediartchina.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 07 May 2024 08:49:43 GMT
content-type: text/html
location: http://157.245.152.2/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jcDrHG%2FS%2BgHJe6fsOgQ6GyF43u3TRspkYFjrpc%2FTg6Z5vLf9rokIOLl7ZoYK1gcHU3mpTPbqG9EbIxsUA2bOzNwd8j2Cc96TMdHOn%2Bp3gRVos9qMBlbjs0D4BoDF3Rf7uCCZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87fff5541d4956c1-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/notosans/v36/o-0bIpQlx3QUlC5A4PNB6Ryti20_6n1iPHjc5a7duw.woff2 | 142.250.74.131 | 200 OK | 39 kB |
URL GET HTTP/2fonts.gstatic.com/s/notosans/v36/o-0bIpQlx3QUlC5A4PNB6Ryti20_6n1iPHjc5a7duw.woff2 IP142.250.74.131:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 39412, version 1.0 Hashf00895393a31c17c1d38b3ca7a0c803f fa19070e138b46a2d4234af45cce46f0aa769ad9 91c01ec0de315f973f4c00041b7ae25e1a790cedff79a6fbb56c571bba379142
GET /s/notosans/v36/o-0bIpQlx3QUlC5A4PNB6Ryti20_6n1iPHjc5a7duw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://157.245.152.2
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 39412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 01:59:50 GMT
expires: Sat, 03 May 2025 01:59:50 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 14 Feb 2024 22:43:09 GMT
content-type: font/woff2
age: 370194
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/notosans/v36/o-0bIpQlx3QUlC5A4PNB6Ryti20_6n1iPHjc5a7duw.woff2 | 142.250.74.131 | 200 OK | 39 kB |
URL GET HTTP/2fonts.gstatic.com/s/notosans/v36/o-0bIpQlx3QUlC5A4PNB6Ryti20_6n1iPHjc5a7duw.woff2 IP142.250.74.131:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 39412, version 1.0 Hashf00895393a31c17c1d38b3ca7a0c803f fa19070e138b46a2d4234af45cce46f0aa769ad9 91c01ec0de315f973f4c00041b7ae25e1a790cedff79a6fbb56c571bba379142
GET /s/notosans/v36/o-0bIpQlx3QUlC5A4PNB6Ryti20_6n1iPHjc5a7duw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://157.245.152.2
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 39412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 01:59:50 GMT
expires: Sat, 03 May 2025 01:59:50 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 14 Feb 2024 22:43:09 GMT
content-type: font/woff2
age: 370194
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.ampproject.org/rtv/012404181825000/v0/amp-loader-0.1.js | 142.250.74.65 | 200 OK | 3.9 kB |
URL GET HTTP/3cdn.ampproject.org/rtv/012404181825000/v0/amp-loader-0.1.js IP142.250.74.65:443
CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.google.com Fingerprint15:D1:F9:FD:F4:47:59:FF:66:C1:EB:18:18:71:8F:7D:9A:38:20:14 ValidityTue, 16 Apr 2024 03:24:35 GMT - Tue, 09 Jul 2024 03:24:34 GMT
File typeJavaScript source, ASCII text, with very long lines (12614) Hasha6b8d507d4704d2eda7a1c98ca5f37b8 d8670fc36c37041eef2eff1f5426d9dad26b5dd3 cb6fcadd038e03de5104bf1711a8084c485490bb563206db0a673d271e274987
GET /rtv/012404181825000/v0/amp-loader-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://157.245.152.2
DNT: 1
Connection: keep-alive
Referer: http://157.245.152.2/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 3942
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 20:38:43 GMT
expires: Fri, 02 May 2025 20:38:43 GMT
cache-control: public, max-age=31536000
etag: "5536cb3ac106fb0a"
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 389462
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cdn.ampproject.org/rtv/012404181825000/v0/amp-auto-lightbox-0.1.js | 142.250.74.65 | 200 OK | 3.0 kB |
URL GET HTTP/3cdn.ampproject.org/rtv/012404181825000/v0/amp-auto-lightbox-0.1.js IP142.250.74.65:443
CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.google.com Fingerprint15:D1:F9:FD:F4:47:59:FF:66:C1:EB:18:18:71:8F:7D:9A:38:20:14 ValidityTue, 16 Apr 2024 03:24:35 GMT - Tue, 09 Jul 2024 03:24:34 GMT
File typeJavaScript source, ASCII text, with very long lines (7690) Hash656bf7bf1304fab13624e0b2550c312e 25afd50fb250a09c7d5e89397173344db0530dc6 b765500a58cc93374829c9d2b1510d617fcc5aada2849d4efdd1f301a7253d8b
GET /rtv/012404181825000/v0/amp-auto-lightbox-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://157.245.152.2
DNT: 1
Connection: keep-alive
Referer: http://157.245.152.2/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 2974
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 18:02:30 GMT
expires: Fri, 02 May 2025 18:02:30 GMT
cache-control: public, max-age=31536000
etag: "663cf6dca8295d04"
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 398835
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 157.245.152.2/favicon.webp | 157.245.152.2 | 200 OK | 2.2 kB |
URL GET HTTP/1.1157.245.152.2/favicon.webp IP157.245.152.2:80 ASN#14061 DIGITALOCEAN-ASN
File typeRIFF (little-endian) data, Web/P image Hash8ab9fa4d78f66bde1673322fd5e33b63 570e0e48f4355d1e6b171cae5da90a77efcbfb35 a5a301ce98a9b320f749936f63cef6822626c7d364fa880f83ed59f1e68d6a8f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.webp HTTP/1.1
Host: 157.245.152.2
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://157.245.152.2/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 07 May 2024 08:49:45 GMT
Content-Type: image/webp
Content-Length: 2224
Last-Modified: Mon, 30 Oct 2023 07:13:42 GMT
Connection: keep-alive
ETag: "653f57a6-8b0"
Accept-Ranges: bytes
|
|
| 157.245.152.2/bintang.gif | 157.245.152.2 | 200 OK | 2.1 MB |
URL GET HTTP/1.1157.245.152.2/bintang.gif IP157.245.152.2:80 ASN#14061 DIGITALOCEAN-ASN
File typeGIF image data, version 89a, 498 x 498 Size2.1 MB (2130568 bytes) Hashd968c71386f8e86cedf51788b62fd0f6 a26e181565617d4f6e33a8e1a0bd2a725606fa65 51f9cba046aec181eb04b302b46849470dfd03790892c088b23d1438c9de5717
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /bintang.gif HTTP/1.1
Host: 157.245.152.2
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://157.245.152.2/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 07 May 2024 08:49:44 GMT
Content-Type: image/gif
Content-Length: 2130568
Last-Modified: Wed, 18 Oct 2023 08:57:32 GMT
Connection: keep-alive
ETag: "652f9dfc-208288"
Accept-Ranges: bytes
|
|
| 157.245.152.2/situs-game-slot.webp | 0.0.0.0 | | 0 B |
URL GET 157.245.152.2/situs-game-slot.webp IP0.0.0.0:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /situs-game-slot.webp HTTP/1.1
Host: 157.245.152.2
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://157.245.152.2/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 07 May 2024 08:49:49 GMT
Content-Type: image/webp
Content-Length: 164532
Last-Modified: Mon, 30 Oct 2023 08:39:32 GMT
Connection: keep-alive
ETag: "653f6bc4-282b4"
Accept-Ranges: bytes
|
|
| fonts.googleapis.com/css2?family=Noto+Sans:wght@400;700&display=swap | 142.250.74.106 | 200 OK | 6.1 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Noto+Sans:wght@400;700&display=swap IP142.250.74.106:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeASCII text, with very long lines (6258), with no line terminators Hash2b411540627fa4b257bb1fed8643c888 29a10509d9f151b56907ba92464e60828e0d14ab b39f9e1f74ff1b1dbedee99caea06b1832c0a39a4743070ed15fe9eb993128eb
GET /css2?family=Noto+Sans:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://157.245.152.2/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 May 2024 08:49:44 GMT
date: Tue, 07 May 2024 08:49:44 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|