Overview

URL 91phutz.live/
IP104.26.8.127
ASNCLOUDFLARENET
Location United States
Report completed2022-10-02 23:39:30 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-10-02 2 91phutz.live/ Phishing
2022-10-02 2 cdn.91phutz.live/c.1/355x220/4ceb5c6912/2022/10/Schalke-04-vs-Augsburg.jpeg Phishing
2022-10-02 2 cdn.91phutz.live/c.1/355x220/8b7489b844/2022/10/Man-City-vs-Man-Utd.jpeg Phishing
2022-10-02 2 91phutz.live/wp-content/themes/bongda2/dist/images/social/icon-trello.svg Phishing
2022-10-02 2 91phutz.live/wp-content/plugins/table-of-contents-plus/front.min.js?ver=2106 Phishing
2022-10-02 2 91phutz.live/wp-content/themes/bongda2/dist/scripts/tmpl.js Phishing
2022-10-02 2 91phutz.live/wp-content/themes/bongda2/dist/images/social/icon-messages.svg Phishing
2022-10-02 2 91phutz.live/wp-content/themes/bongda2/dist/scripts/tmplPlus.js Phishing
2022-10-02 2 91phutz.live/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js Phishing
2022-10-02 2 91phutz.live/wp-content/themes/bongda2/dist/images/social/icon-behance.svg Phishing
2022-10-02 2 91phutz.live/wp-content/themes/bongda2/dist/images/social/icon-facebook.svg Phishing
2022-10-02 2 91phutz.live/wp-includes/js/wp-embed.min.js?ver=5.4.10 Phishing
2022-10-02 2 91phutz.live/ Phishing
2022-10-02 2 91phutz.live/wp-content/themes/bongda2/dist/images/social/icon-issuu.svg Phishing
2022-10-02 2 91phutz.live/wp-content/themes/bongda2/dist/images/social/icon-flickr.svg Phishing
2022-10-02 2 91phutz.live/wp-content/themes/bongda2/dist/images/social/icon-okru.svg Phishing
2022-10-02 2 91phutz.live/wp-includes/css/dist/block-library/style.min.css?ver=5.4.10 Phishing
2022-10-02 2 91phutz.live/wp-content/themes/bongda2/dist/images/social/icon-instagram.svg Phishing
2022-10-02 2 91phutz.live/wp-content/themes/bongda2/dist/images/social/icon-tumblr.svg Phishing
2022-10-02 2 91phutz.live/wp-content/themes/bongda2/dist/images/social/icon-twitter.svg Phishing
2022-10-02 2 91phutz.live/wp-content/themes/bongda2/dist/styles/custom.css?ver=1660729932 Phishing
2022-10-02 2 91phutz.live/wp-content/themes/bongda2/dist/images/social/icon-scoop.svg Phishing
2022-10-02 2 91phutz.live/wp-content/themes/bongda2/dist/images/social/icon-ello.svg Phishing
2022-10-02 2 91phutz.live/wp-content/plugins/wp-pagenavi/pagenavi-css.css?ver=2.70 Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (23)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-10-02 14:05:11 UTC 142.250.74.168
mnemonic passive DNS fonts.gstatic.com (6) 0 2014-08-29 13:43:22 UTC 2022-10-02 11:24:27 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS ocsp.digicert.com (3) 86 2012-05-21 07:02:23 UTC 2022-10-02 15:44:45 UTC 93.184.220.29
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-10-02 10:20:02 UTC 100.20.30.105
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-10-02 22:37:38 UTC 18.165.201.17
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-10-02 05:33:45 UTC 23.36.76.226
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-10-02 04:45:21 UTC 34.117.237.239
mnemonic passive DNS 91phutz.live (30) 0 2022-08-12 09:55:05 UTC 2022-10-02 12:49:20 UTC 104.26.8.127 Unknown ranking
mnemonic passive DNS cdn.91phutz.live (61) 0 No data No data 104.26.8.127 Unknown ranking
mnemonic passive DNS region1.google-analytics.com (1) 0 2022-03-17 11:26:33 UTC 2022-10-02 11:36:31 UTC 216.239.34.36 Domain (google-analytics.com) ranked at: 8401
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-10-02 11:24:29 UTC 34.120.237.76
mnemonic passive DNS spapi.p2pcdn.xyz (1) 0 2022-06-03 09:08:39 UTC 2022-10-02 13:11:03 UTC 104.27.205.87 Domain (p2pcdn.xyz) ranked at: 370850
mnemonic passive DNS sbbanner.com (1) 299620 2020-09-11 12:45:18 UTC 2022-10-02 13:10:57 UTC 104.20.45.169
mnemonic passive DNS cdnjs.cloudflare.com (1) 235 2020-10-20 10:17:36 UTC 2022-10-02 19:12:39 UTC 104.17.25.14
mnemonic passive DNS connect.facebook.net (2) 139 2012-05-22 02:51:28 UTC 2022-10-02 11:18:54 UTC 31.13.72.12
mnemonic passive DNS fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-10-02 23:25:00 UTC 142.250.74.10
mnemonic passive DNS 91phutz.live (30) 0 2022-08-12 09:55:05 UTC 2022-10-02 12:49:20 UTC 104.26.9.127 Unknown ranking
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-10-02 05:00:42 UTC 34.160.144.191
mnemonic passive DNS ocsp.pki.goog (5) 175 2017-06-14 07:23:31 UTC 2022-10-02 05:01:45 UTC 142.250.74.3
mnemonic passive DNS cdn.bongdadem.net (47) 438224 2020-11-06 20:32:23 UTC 2022-10-02 13:11:18 UTC 104.26.14.170
mnemonic passive DNS images.dmca.com (2) 11903 2014-01-02 21:23:16 UTC 2022-10-02 14:15:11 UTC 151.139.242.29
mnemonic passive DNS e1.o.lencr.org (1) 6159 2021-08-20 07:36:30 UTC 2022-10-02 11:34:26 UTC 23.36.77.32
mnemonic passive DNS ocsp.godaddy.com (1) 698 2012-05-20 19:28:57 UTC 2022-10-02 05:06:10 UTC 192.124.249.23


Recent reports on same IP/ASN/Domain/Screenshot

Last 2 reports on IP: 104.26.8.127

Date UQ / IDS / BL URL IP
2022-10-04 11:01:24 +0000
0 - 0 - 2 91phutz.live/ 104.26.8.127
2022-10-02 23:39:30 +0000
0 - 0 - 24 91phutz.live/ 104.26.8.127

Last 5 reports on ASN: CLOUDFLARENET

Date UQ / IDS / BL URL IP
2022-11-27 16:31:58 +0000
0 - 0 - 1 cdn.discordapp.com/attachments/79676758679669 (...) 162.159.133.233
2022-11-27 16:31:46 +0000
0 - 0 - 2 cdn.discordapp.com/attachments/78258468894552 (...) 162.159.130.233
2022-11-27 16:30:53 +0000
0 - 0 - 1 cdn.discordapp.com/attachments/80351306003500 (...) 162.159.134.233
2022-11-27 16:30:40 +0000
0 - 0 - 1 cdn.discordapp.com/attachments/76633242246263 (...) 162.159.134.233
2022-11-27 16:30:24 +0000
0 - 0 - 1 cdn.discordapp.com/attachments/83667979897667 (...) 162.159.134.233

Last 2 reports on domain: 91phutz.live

Date UQ / IDS / BL URL IP
2022-10-04 11:01:24 +0000
0 - 0 - 2 91phutz.live/ 104.26.8.127
2022-10-02 23:39:30 +0000
0 - 0 - 24 91phutz.live/ 104.26.8.127

No other reports with similar screenshot



JavaScript

Executed Scripts (20)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (181)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: 91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         104.26.9.127
HTTP/1.1 301 Moved Permanently
                                        
Date: Sun, 02 Oct 2022 23:39:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Mon, 03 Oct 2022 00:39:19 GMT
Location: https://91phutz.live/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=csTbdrpAr41fbFK2iAGkh0xNswopgWU5tdz0NpEo2UtEjuyb7MCfRZAwv3cTldUTGCUnaRHPQlweYMmjnG59p%2Bs2%2BR8QiFClu0ujSDWOnN9ZqlFpVeGx2vRq2npJXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 754146d3eb81b509-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         18.165.201.17
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 02 Oct 2022 23:03:22 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 25bae94046433e736c44a6c37f27c7c4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: purZfT6N0ySwZuknxoU0DG_me-n2-CYjw-L8bhdx1js6SO2UKQ3zFA==
Age: 2157


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12231
Expires: Mon, 03 Oct 2022 03:03:10 GMT
Date: Sun, 02 Oct 2022 23:39:19 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "69D097718CAC37CC6B77D417711C4356557F2B47C78026303BFE5F985B94A5A5"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11102
Expires: Mon, 03 Oct 2022 02:44:21 GMT
Date: Sun, 02 Oct 2022 23:39:19 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: gIabjWM1rXj2i+G8ONB2vq8io3hwEyH79WpKf4LGEbX8GbZ/4JGvpw7oTEYSgRW/ReYKyJYPURc=
x-amz-request-id: BMQ74HXFXN5KRR1H
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 02 Oct 2022 22:53:07 GMT
age: 2772
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sun, 02 Oct 2022 23:39:19 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 344
ETag: "07B20C4F9676C5CDF1353ED25BCDD6DA7058CC1E078F5D72F4EF35A6BFA5769D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 03 Oct 2022 05:39:19 GMT
Date: Sun, 02 Oct 2022 23:39:19 GMT
Connection: keep-alive

                                        
                                            GET /wp-content/themes/bongda2/dist/images/91phutz.live.png HTTP/1.1 
Host: 91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
content-length: 12306
last-modified: Sat, 01 Oct 2022 17:38:27 GMT
etag: "63387b13-3012"
x-powered-by: WordOps
access-control-allow-origin: *
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-frame-options: SAMEORIGIN, SAMEORIGIN
cf-cache-status: HIT
age: 107069
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=06FuV3kiP5PCeYL1kmgkCHlExfgAGl%2B%2BUIrN%2B0A9UnQkmnR60340t61sbeBzFS%2F2GkERhluPusGPL4epxeuWE7HupFEV9QNjR5YJFzi6Rpd0vLGhfDBlzdjEjknULw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d75897b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 319 x 45, 8-bit/color RGBA, interlaced\012- data
Size:   12306
Md5:    beda8e9033bd2d45ce594bffe2a426d8
Sha1:   c5f900e34aee86db0883a5808a9fa210e37fc942
Sha256: ef2bda3261db7ba10d44fcbee837bbabd1441ae746c0fcd18ec77dbcd7fac6d9
                                        
                                            GET /c.1/235x125/ecd02fb126/2022/09/cap-nhat-su-quan-tam-cua-arsenal-gianh-cho-douglas-luizv.jpg HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
content-length: 9503
cache-control: public, max-age=604800
cf-bgj: h2pri
etag: W/"251f-0wy0xvdRE42Evp5o3xRU9iFSd9w"
cf-cache-status: HIT
age: 107066
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7TLXlkF%2BHqufL6id7EV%2FJjeO1CnCElvIkkY8cZf%2B8N1NK0uCnAofZTIAolOAvms8u5nTTpFm%2FOuNIm%2BjIT32%2FHCjse5jiUDNHkXrcYE0zLPcw%2BzTAvK31jJV7RHxWWo09UI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d8292fb506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 235x125, components 3\012- data
Size:   9503
Md5:    583ceefbf11678eec843c44db6b43233
Sha1:   d30cb4c6f751138d84be9e68df1454f6215277dc
Sha256: 18c8c0b7523849398de6efaac512cb4f27f6f442f5a3fefcf2b272f1019bc2e0
                                        
                                            GET /c.1/490x256/83bf9a7702/2022/09/gabriel-jesus-arteta-coppy-triet-ly-cua-pep-nhung-bien-no-thanh-cua-minh-3.jpg HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
content-length: 30596
cache-control: public, max-age=604800
cf-bgj: h2pri
etag: W/"7784-AlUa7zkHvLD75vvF55iW55RoDIU"
cf-cache-status: HIT
age: 107066
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OnfcP8Xu9t%2Fnf2%2FBZUdzz59PheSou%2Bfj9Ki53fHe2um4Y9YgRlG8vxC3LXGQieAOqQzzzttwuJe2zCnJySX3uFn8FWqmNcxEwowOi%2B7Yqfz0l54nbUeN1InWRoDi8Tr5JX0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d8292eb506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 490x256, components 3\012- data
Size:   30596
Md5:    59bd47ae1ac9346fd2e7b3c95498794f
Sha1:   02551aef3907bcb0fbe6fbc5e79896e794680c85
Sha256: 29538c00ed6baa7e3e385e708805025c46d7e2e821b9560179be6340707db971
                                        
                                            GET /c.1/235x125/698ac0a78a/2022/09/u18-arsenal-nat-duoi-tay-jack-wilshere-tuy-nhien-hy-vong-van-con-do-3.jpg HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
content-length: 8638
cache-control: public, max-age=604800
cf-bgj: h2pri
etag: W/"21be-W7zZvKlccUaQakdP3GY3a+g64/A"
cf-cache-status: HIT
age: 107067
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AgoiIiKoUj11nyZDHOu5JImpJHRFPsmpZZIGyKxsM0PkJyrIdCLiySjfjQnd%2BQaJ8fR1odDgZltSTVJFsh%2Bz2SWj9rXl0DVmYABskibSIEQwfZa4d19CIVlKPWX8vVof5UM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d82930b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 235x125, components 3\012- data
Size:   8638
Md5:    893e4855c57717fe22d56afd53c0def0
Sha1:   5bbcd9bca95c7146906a474fdc66376be83ae3f0
Sha256: 894441774a8fba0c7fd9cec370daad5f901caae7d993f0f84f5ebaaed8641208
                                        
                                            GET /c.1/355x220/ff8d74c27d/2022/10/Atalanta-vs-Fiorentina.jpg HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
content-length: 17597
cache-control: public, max-age=604800
cf-bgj: h2pri
etag: W/"44bd-JanuSqBVVwQwuNHIS8NwoFGNscI"
cf-cache-status: HIT
age: 15126
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UP9e%2Brmh1kRPIQfK0642Bu%2F55L1y2eUpb67Hx8hXY8yG3mGv5ZRq8AKZo7VTQIuMDVq04ggiDt2q3pDT0uXXPbwHeyDk7%2B2ohicxDIkMEyIP%2Fx1IN0Njhcs8NiMxrVTD6Ms%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d82933b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 355x220, components 3\012- data
Size:   17597
Md5:    754788ca10036d0d05a8bdf05dedef68
Sha1:   25a9ee4aa055570430b8d1c84bc370a0518db1c2
Sha256: 3206542e80bf969a711c39ce38ca0e33fd3ff1743478d84a440b1e49d7146241
                                        
                                            GET /c.1/355x220/e7d9dc9fac/2022/10/Leeds-United-vs-Aston-Villa.jpg HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
content-length: 20811
cache-control: public, max-age=604800
cf-bgj: h2pri
etag: W/"514b-IXjcwTtukkXz+aXJ6MiTRfk0Gk8"
cf-cache-status: HIT
age: 15126
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qAJ73eNCgisGH8fGvZhRFOeW11CWtiGKZrNTbuWmXb7FzFaPIs0XscWA%2FWb5KaQ51Xw7tPRUYVmEmBk6CRhaYqMk3%2BIk4NX0GFXhjBASIoltZwwHAEdYDWaytOIG9ptEwjo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d82934b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 355x220, components 3\012- data
Size:   20811
Md5:    aa4e8b72e57febe0f86bf6d6738fde34
Sha1:   2178dcc13b6e9245f3f9a5c9e8c89345f9341a4f
Sha256: 2c7315b6e6864714e6e500a524df5fe7604ad27262f76232a6201fd8b2c457c3
                                        
                                            GET /c.1/355x220/4ceb5c6912/2022/10/Schalke-04-vs-Augsburg.jpeg HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
content-length: 21553
cache-control: public, max-age=604800
cf-bgj: h2pri
etag: W/"5431-JCF6gZzxC4UcqBXPgCy/IMFVv1k"
cf-cache-status: HIT
age: 15126
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tsaqzxPKg%2FrHEYZrgitwJ9K52qFAYQs1WIIUYPtjk6p7WKsf%2Fx58aufj1sxcPwEMGzPIfmMdQ1v5fzVoNmRdoedJLgOE3wbFBUE1JtHT9zcsd39XkPB7eTuIaMBiyCKNgXs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d82935b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 355x220, components 3\012- data
Size:   21553
Md5:    b747c49fe7aaaeb937752821da15cb34
Sha1:   24217a819cf10b851ca815cf802cbf20c155bf59
Sha256: a6c6d2b23ac4895bcfff0e398580c4585f1d6331b76269c8970c923705eb6e37

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /c.1/500x256/f937a9cc67/2022/09/arsenal-100-du-luc-luong-tottenham-mat-kulusevski-tran-derby-bac-london-5.jpg HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
content-length: 42718
cache-control: public, max-age=604800
cf-bgj: h2pri
etag: W/"a6de-Mr4TRFmmW4KWOureTltukBUoxv8"
cf-cache-status: HIT
age: 107066
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SMGbFJIO5CSv67ru78EKVrPMl8YZ46865l1HmAC47Qvovcn%2BEJz0wc9UtcOUT%2FNkhQ3cp3Al44ANlLokErbgZRNp8ODxKt3MD81E4tdYFaSovHD6kGviH%2BiC14vfNQE69YU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d82931b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 500x256, components 3\012- data
Size:   42718
Md5:    ae00490bcd3fb3bb11356cead9c72f45
Sha1:   32be134459a65b82963aeade4e5b6e901528c6ff
Sha256: 25e4d45463ee1eaf158b52fbc4ac069fdee1db366579eb96374a9601d06ce128
                                        
                                            GET /c.1/500x256/d7789b35a5/2022/09/co-mot-kieran-tierney-dang-rat-chiu-kho-thich-nghi-voi-he-thong-cua-arteta-2.jpg HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
content-length: 17993
cache-control: public, max-age=604800
cf-bgj: h2pri
etag: W/"4649-5+el27ieMrLiWIGdStPk2j3DxEM"
cf-cache-status: HIT
age: 107067
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6lhbZ7d8H0vcPfpGYAltd4dv21oIZQussqUbbJDir1tzn3wwoZz8W2QNHYHRbekjWhwTFCvWUSuW2c7jNwLzhhaoHDAgVq2NuX4dajZ2SiV08RcwtEqmVAal9L%2BczW5CAhg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d82932b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 500x256, components 3\012- data
Size:   17993
Md5:    94876afb27a97255b5b28ff2ce10f137
Sha1:   e7e7a5dbb89e32b2e258819d4ad3e4da3dc3c443
Sha256: d073d0b9bd931fe0c5a1563f645341f1dd8bf8c787fc61221f02255b3f0e069d
                                        
                                            GET /c.1/355x220/a2be037a4b/2022/10/Monaco-vs-Nante.jpg HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
content-length: 20531
cache-control: public, max-age=604800
cf-bgj: h2pri
etag: W/"5033-OTkLkAwjenbbt6LtSjZl/IfWEXM"
cf-cache-status: HIT
age: 15126
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1gs4ME3mc8ryShq3itfxcYDjoRwwRK4pp6JgcXrFSnl3aJzwj%2BGpgt%2FP7S4Bzwy%2Ffz4r2eYaBr4yCgPbbhTkq2ytykm6vMHqvM7VTUHUZwFpMABRonltuZ8BpEX5%2BECPcWo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d82936b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 355x220, components 3\012- data
Size:   20531
Md5:    f33c6eb3cd20c2ba54b53de58bf92c36
Sha1:   39390b900c237a76dbb7a2ed4a3665fc87d61173
Sha256: 7006b3e297803f05c995600224977460695ba5f6ec8ea6bc970469c56a72f8e0
                                        
                                            GET /c.1/355x220/e126b98432/2022/10/Hertha-Berlin-vs-Hoffenheim.jpg HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
content-length: 20550
cache-control: public, max-age=604800
cf-bgj: h2pri
etag: W/"5046-DUKbqObka2sMyOvGbbnxZvZoZ8w"
cf-cache-status: HIT
age: 15126
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E00uKtN7Qf9VO%2FkrCthHffYZcFo5oZtio9tAKtYu0JjvNayi5CA0G05jvNO9tMMjpCUhj4Pee%2FGGI0Z6Be5IfaA4eelBVu%2FUZ%2BwyZ%2Bw6Kh%2FtAgV1q5R8UyXsEw5R6VrTiqE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d82937b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 355x220, components 3\012- data
Size:   20550
Md5:    87349e560c955c9b3bec9dc4e1300921
Sha1:   0d429ba8e6e46b6b0cc8ebc66db9f166f66867cc
Sha256: 01e9f03dbc4f4ab87d71945d0783187ae9fe55b3bc0b0a9c92183adfdfe77736
                                        
                                            GET /c.1/355x220/6882e83e56/2022/10/Toulouse-vs-Montpellier.jpg HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
content-length: 21980
cache-control: public, max-age=604800
cf-bgj: h2pri
etag: W/"55dc-66OKkT9thf7xn6AIba+9o1RLVzA"
cf-cache-status: HIT
age: 15126
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EEBBNJSCoXQ1Q8R1hY%2FHdeqRGoVk26w5kJ9d8wDisFiJeBjXTuTjSkDwJTs4ZkeHKediA5Du7kFyeaYlDhzAp%2F5WPtW7F%2F0mi%2FGDfbZjvu3sDZHvfvO%2BjBn6IN1NlxCLiUk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d82938b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 355x220, components 3\012- data
Size:   21980
Md5:    e5d2aeaaf42454e6b208e1603b9ca2be
Sha1:   eba38a913f6d85fef19fa0086dafbda3544b5730
Sha256: 29820a6967504865f2a0dcec01abede51b6b82aaaf391ff97e41961eef4272e0
                                        
                                            GET /c.1/355x220/69c6e0319f/2022/10/Sampdoria-vs-Monza.jpg HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
content-length: 19507
cache-control: public, max-age=604800
cf-bgj: h2pri
etag: W/"4c33-i6azfBQ7+x/7aYdKTJow4V99bMk"
cf-cache-status: HIT
age: 1790
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m9NkZHdcNxjHihYe%2BiaBUDf4X2Vbvras15Sx1EFUPwhjUEyRnAhyCpaNffkECKPpN3OwlRKlTnquh5ETZeHxCOiQP6yynHuEr7G66f2JB5fq1Gw5d2Dc%2BdZPti8aLAHpNCA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d82939b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 355x220, components 3\012- data
Size:   19507
Md5:    b8bd269add7cc2c233c95ac60ea72867
Sha1:   8ba6b37c143bfb1ffb69874a4c9a30e15f7d6cc9
Sha256: 06e31cca0a5ef45c38f88e4e41a9b1bd2231f3a94c4989614fcacebdbb65c723
                                        
                                            GET /c.1/355x220/6bda9278cb/2022/10/Lecce-vs-Cremonese.jpg HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
content-length: 18868
cache-control: public, max-age=604800
cf-bgj: h2pri
etag: W/"49b4-UR67EccRlCW7p1D/A93knevEuPk"
cf-cache-status: HIT
age: 15126
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HPKcmVHHCbq086JbLriKSJaq3WXytC%2F%2FG8ZRDlL9VJoydu7FbkJaXOvNyi1w6DpOClJ9WEyQTwnpOkRNRjfMJgs8pkyphEXBfIct4PkGg7kgLEWKG6htWYaRSOIg%2FG3ooAU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d8293bb506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 355x220, components 3\012- data
Size:   18868
Md5:    e28942fa34a496dc6c29f09826d8248c
Sha1:   511ebb11c7119425bba750ff03dde49debc4b8f9
Sha256: 6874d7bf6ce1948db033b19235846fb40fecc8fed58a5296bc78be8425fd95ac
                                        
                                            GET /c.1/355x220/82480acd59/2022/10/Sassuolo-vs-Salernitana.jpg HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
content-length: 19933
cache-control: public, max-age=604800
cf-bgj: h2pri
etag: W/"4ddd-0b2nUQh7mildmQsvD6PMperb+iY"
cf-cache-status: HIT
age: 15126
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rLPNDjk2LQGd5mh9DPILB4namMFNYw%2Fn6CgmkslkrCR0AS89hDQOvGIPO6zcSxgVzB6KT2bkhNEEFSJowXgCVFLDnimbB0DldHmwpdq7dmE68VcRZdPvR6u9JWjtHr7rS%2Bw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d8293db506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 355x220, components 3\012- data
Size:   19933
Md5:    3ce9e69230ffb5202a4a598aefc9868c
Sha1:   d1bda751087b9a295d990b2f0fa3cca5eadbfa26
Sha256: 7d25a5d28e37ff74a3f7b918bdc54b3468210348fe6657d787759ca82a2c017e
                                        
                                            GET /c.1/355x220/1ca2240c77/2022/10/Troyes-vs-Reims.jpg HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
content-length: 17931
cache-control: public, max-age=604800
cf-bgj: h2pri
etag: W/"460b-gCs7dKlJgRE7lVV//3IsD3cr0fQ"
cf-cache-status: HIT
age: 15126
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JSr7NhKRwtGxJdjsoHyc9LXzFpG26cO%2Bjy9NTAiy%2FIiqZWUXO5oaqp%2BZRM0RqI2wb4E%2Bh55GL6uhrR3jwDBekW7Zo%2FI23PRbq2v16K4MBoASs6pAO647T93vvRCAu7vFbGo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d8293eb506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 355x220, components 3\012- data
Size:   17931
Md5:    6df680f8912e5444596b73975dcf74bf
Sha1:   802b3b74a94981113b95557fff722c0f772bd1f4
Sha256: c38f6208c975c9442e9d21f0d7386dc9bdf3451ca5a6594a4338cbfb2c684996
                                        
                                            GET /c.1/355x220/8b7489b844/2022/10/Man-City-vs-Man-Utd.jpeg HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
content-length: 32053
cache-control: public, max-age=604800
cf-bgj: h2pri
etag: W/"7d35-IUoOFzA03t2pttkxvealQecanZs"
cf-cache-status: HIT
age: 15126
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QJAyBkaADfuHZLVA1cQOx2DsvpAIgkUuTq5ijft%2BuKgAZx%2BgmYuJ%2BTgmjZoM77XRhkmqbbkYqrSq2a2CmtBavA4evJtHPwlaWTf3htaAoSishb8GvYBu4pHV20%2F9LXEd8XY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d89980b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 355x220, components 3\012- data
Size:   32053
Md5:    2715938f801412838baa6b64a217f0c6
Sha1:   214a0e173034dedda9b6d931bde6a541e71a9d9b
Sha256: 85492abf6d79c2a3516b07ad8a465c7548a38e71efe4242c6d66ca8860f17354

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /c.1/355x220/24d64508c3/2022/10/AJ-Auxerre-vs-Stade-Brestois.jpg HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
content-length: 26279
cache-control: public, max-age=604800
cf-bgj: h2pri
etag: W/"66a7-yC/NEHPcHC5vSo80BmhymAJg2uw"
cf-cache-status: HIT
age: 15126
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pOWZDxk7kYQDn6kZrbEuWYwqxHtwasJSe3vKBPC0o6Zvc1QVKQPIOqZ0hlLmaKz9T02P6tqpL2EEDvw%2Bl9sRBRZMshIAYHk0hnZYhUEV8Ld0e6LohZBWeBY4LOrPTJqhx4M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d8997fb506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 355x220, components 3\012- data
Size:   26279
Md5:    144021077e963c2bdea93371d4260b86
Sha1:   c82fcd1073dc1c2e6f4a8f34066872980260daec
Sha256: 5873402a8d819e42e6e7cc8fce4db3c88efd117aa4183ff8ba396d1a123402dd
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 02 Oct 2022 23:39:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 02 Oct 2022 23:39:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /gtag/js?id=G-ZJX94GP8YR HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 02 Oct 2022 23:39:19 GMT
expires: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 75660
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (21348)
Size:   75660
Md5:    fb28113b919cd7766a93025721069b29
Sha1:   10c1295cb351bb3b1da4c82b0f1ec5f032e779aa
Sha256: a8ef54ce9f220713526d1d8755bf665c4d2a15209f40438a399f7ddfd80784b9
                                        
                                            GET /wp-content/themes/bongda2/dist/images/bg-header.png HTTP/1.1 
Host: 91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/wp-content/themes/bongda2/dist/styles/main.css?ver=1657574977
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
content-length: 26173
last-modified: Sun, 10 Jul 2022 06:55:25 GMT
etag: "62ca77dd-663d"
x-powered-by: WordOps
access-control-allow-origin: *
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-frame-options: SAMEORIGIN, SAMEORIGIN
cf-cache-status: HIT
age: 106313
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GE4wfwzkBtAuxSt%2FF9Fp19AjwZR2Mz4uFdALoxTb3JStjQrkewqf%2BMdAAuzMvVmAJtqmtm6vs%2B7TOwPf6o59GT4%2FBI4AIk64OjF9253yGqgpBP1AQS%2FB6ZNrXJmEhw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d9ea40b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1440 x 117, 8-bit/color RGBA, non-interlaced\012- data
Size:   26173
Md5:    665d4383c5adfcec714b3aecf4174e40
Sha1:   ad44b72689d32e8860b89982705f59bff63a52e6
Sha256: a9c084e9982a657f9742900345fcf5f47b3edb1db6cb57cd8c4f9e8d7eff8c91
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 02 Oct 2022 23:39:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/themes/bongda2/dist/images/social/icon-trello.svg HTTP/1.1 
Host: 91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
last-modified: Sun, 10 Jul 2022 06:55:25 GMT
vary: Accept-Encoding
etag: W/"62ca77dd-1f5"
x-powered-by: WordOps
access-control-allow-origin: *
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-frame-options: SAMEORIGIN, SAMEORIGIN
cf-cache-status: HIT
age: 107069
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F%2ByxNHkBEQd4Q4z0iusxYyE%2FGY6yw8dRLcEM8XUMoySi3rP5UwlbNsn0OiGhfoMFullzIiFTHn1O7T5Y8mSWGAfgttlTLrBdaysRVjeqPa5jmqd0RBCf0qqYxXM2AQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754146d8a992b506-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (501), with no line terminators
Size:   750
Md5:    a8771dbb24ceeaabedd16953cc4cd8d3
Sha1:   dbdf7ad19a4f55c137c781df3ffa0961051c4d9c
Sha256: 00bce7e03e2361beae611356d226c3a81b939c77e4c66abf0e383d6bbe80de21

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/bongda2/dist/images/bg-home.png HTTP/1.1 
Host: 91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/wp-content/themes/bongda2/dist/styles/main.css?ver=1657574977
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:20 GMT
content-length: 193696
last-modified: Sun, 10 Jul 2022 06:55:25 GMT
etag: "62ca77dd-2f4a0"
x-powered-by: WordOps
access-control-allow-origin: *
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-frame-options: SAMEORIGIN, SAMEORIGIN
cf-cache-status: HIT
age: 107070
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dXDxwflFTE%2Bccd9hYaAQyjpsgkmSrX%2Bc1TJBzFkz4KBQr4cly74IDV9fEoxEBsZEqe9zgxOYTB5Qbr7ocYNFWP%2BPYDykDeU1FRL42nc4eyU2iEd4gumyQSgu3MCnww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146da2a6eb506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1440 x 675, 8-bit colormap, non-interlaced\012- data
Size:   193696
Md5:    63a07f94012a7a95bd1562733dde684c
Sha1:   803449d4b07f6485f28e818c36802402c195572a
Sha256: a2e64c01c57b1e591cfe5c4063229bbea5f90021265818d82fd891ad7fdac6a3
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 02 Oct 2022 23:39:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /2022/09/8288-22221.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 372902
last-modified: Wed, 28 Sep 2022 16:04:17 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fhUvnvQjlnst%2Bv9tgU4ISMY%2FdiCMVyqUbit5CBJTTNVM8rrnpBptGGPaFNAsXmwy3kllUFjEfVEh0OEs349gdQbre0pcnF%2Brlxle9DmQ%2BjK9Ly%2BHAo3UcHFRrU29IhNJrNWQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d8ae6bb4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 300 x 100\012- data
Size:   119217
Md5:    02e098cb0dca5756d812ed73323927b4
Sha1:   611027fa5945e38eb9befe75f3ced7ca579e2074
Sha256: f2312116d9b5068d2f20d087d6b29f3ff1f3d5ef0c1fc32a7d0489a2417fe54b
                                        
                                            GET /wp-content/plugins/table-of-contents-plus/front.min.js?ver=2106 HTTP/1.1 
Host: 91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
last-modified: Sun, 10 Jul 2022 06:55:26 GMT
vary: Accept-Encoding
etag: W/"62ca77de-17cb"
x-powered-by: WordOps
access-control-allow-origin: *
cache-control: max-age=2592000
expires: Mon, 31 Oct 2022 17:54:50 GMT
x-frame-options: SAMEORIGIN, SAMEORIGIN
cf-cache-status: HIT
age: 107069
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lftS%2FHBOdt%2Fdc5adECiF4GTeI4VL0PvcSvLfVyK07HJZds4SktKku8z5kUeCJumE5RMyxpYD7KJNoKPkKVjdST%2BEFf6Wl651qyKVg0zQrXvyg4Mc2xr9pcbbBjeypQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754146d8a994b506-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6091), with no line terminators
Size:   15381
Md5:    e6a20804e67f85214d38f4172242610a
Sha1:   6dde3b6f664659b18db305207e1344a76e3c1ddd
Sha256: ac548e98abb9e77208dc5c61145bbf17ad740b2b6410dc6596b981d0731ccb0c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /teams/6115.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 1793
last-modified: Sun, 02 Oct 2022 23:09:26 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U4U1ceO5DgB3z4Kb%2FD2m%2FPGBVdQ4m%2BJOG5WlT%2BuNeNBQcETHZxqcO5VsqQc7SJ7dM9CBc%2F75RqwMaTNMQVNrwB01dPKdTU3maf%2BS%2FBd6lZgnnWsW73PiT9%2FhuQ5%2FLcHjfjs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7e8fbb506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 201 x 300, 8-bit/color RGBA, non-interlaced\012- data
Size:   44207
Md5:    2ea08f984749d0945b4339d47fa5c576
Sha1:   a5e9a99fb567da675b2fefbfe76c70c63959526c
Sha256: 86b311a35dfb666e5dcf054297e9cf1627ec1f1fed0984084064bff12e48499a
                                        
                                            GET /teams/8859.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 1792
last-modified: Sun, 02 Oct 2022 23:09:27 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rUIB1lIBqE9XUdUHkvVAAFwuEs3zNgQeKIq%2FtV0I%2F%2F9WpGdiZ7SsLWvQG%2Bd2UC0OQvKAtCOWH230wPoGQIusFMm%2FP%2FJnDtS6M2nGiEHrdAHghTGEISeMQhMHshebOGWv%2Fgg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d82924b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced\012- data
Size:   66025
Md5:    732bb2623ae2fe86c7c6e3ccc9848615
Sha1:   39e3f3eefa712a289c5706b897719fcffa56caad
Sha256: 6c15f454760e861838595d21ad0ed84fa46c707fee15ec10f0f2c29425513953
                                        
                                            GET /teams/3481.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 1791
last-modified: Sun, 02 Oct 2022 23:09:28 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Wv4HXa%2BLdP77u%2F55vZHxGI3XdCsFBYB6CnP6nHupItyIf8M55j4EZnz3g8pg6MlP6iUI6ANDUOgklhdUZE9XnPWr9HejtkRZBmYTNTDfsl4nkwkCa1d3o0gspyEuPWYlzpQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d82929b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 483 x 470, 8-bit/color RGBA, interlaced\012- data
Size:   59003
Md5:    b5bd2ea108fa8bb13ff39c66c593e54b
Sha1:   5cd3fa0c3ba147b2173959d95651db9255cb5138
Sha256: 2c290f8ca8f513801ea7a0e4b69c4bc42ea7f2d950e237c0722218f7f55de913
                                        
                                            GET /2022/09/666663388-22232.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 372902
last-modified: Wed, 28 Sep 2022 16:04:17 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sqNgL2KEkIWbpG%2F%2Fd%2FWi32Q56ykyrHZrXauX75%2F0IdKyhhRoFUJOZmshUcRtHN5BZXx6QpEjwmpzOjL4VxEwgh46hEmUsGN8sKprTyoUrhUnusJu1gOldXXO9J3ogQi%2BiwnU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d8ae70b4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 320 x 50\012- data
Size:   107141
Md5:    dfecb2141596b1c4c977afffbc5ae2ac
Sha1:   2dea32127babc1b07453ada35dd67d2ff590cd0a
Sha256: ef881e2abaf985655f45ab2e8c00c51b35ca9f1e95693d1038f916d0bb03157b
                                        
                                            GET /wp-content/themes/bongda2/dist/scripts/tmpl.js HTTP/1.1 
Host: 91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
last-modified: Sun, 10 Jul 2022 06:55:25 GMT
vary: Accept-Encoding
etag: W/"62ca77dd-2321"
x-powered-by: WordOps
access-control-allow-origin: *
cache-control: max-age=2592000
expires: Mon, 31 Oct 2022 17:54:50 GMT
x-frame-options: SAMEORIGIN, SAMEORIGIN
cf-cache-status: HIT
age: 107069
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W5TlA1nmNjmS4R7JOJQj4cAx8f6C3Y1s9QsOiYZy22MkVXerLwE6uVM7j7bJ5o2lOCcp%2FsvuwzT5uE81Yq6obgLkiNKOSLAcj8FSnVdq0LcUKgtVdC%2F7aTpZS2ioIw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754146d8a995b506-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5554)
Size:   4102
Md5:    ab1badde60175b9ca69c8f2c88677777
Sha1:   44d5fc3d576b5bcb67b48315a9229efd8a6fab8c
Sha256: 34d103b8d676ac84c0bc5d63c8838439fe1f4fc4fc5f7bbc897917441446bdcb

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /teams/44238.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 1790
last-modified: Sun, 02 Oct 2022 23:09:29 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FREO2GTJwIeacPGeV%2FfZcCt26YdbSs96s%2Bka0zFcG0mpSgi2ubw5wI6RbYkvjsazsuM46%2FVJIVTfQjlDkZJ2Un%2BgL7Am4dFAEIw%2BS4fsHaYcrVmdztO1OMFLw60mRRvEb%2BY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d8292db506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1200 x 1283, 8-bit/color RGBA, non-interlaced\012- data
Size:   181339
Md5:    58ce30565c681f499bd9b0eaadeaec41
Sha1:   6e102f3639e705526fef80e3eeecb623c2e18aa3
Sha256: efb8d47d2a7fabd5afe29761bb5e0ae7d350e8ac56c2c3676129984f9edafdef
                                        
                                            GET /2022/09/777788662224448999-22211.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 214782
last-modified: Fri, 30 Sep 2022 11:59:37 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M0m5HNza1h%2FSZQXVVB5QeEvgMoMEPX3BXAHwZOH%2BsqyrBvNd4gzGbfLchiqYtje1IWT4ur%2BsiB%2F%2Bmod3tFdWyLAomypCqIcdHrEF8SNpFUAa%2F%2FfHfX%2BY%2Bg%2B3CIKnJRCUMIQk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d8ae68b4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 120 x 300\012- data
Size:   202513
Md5:    b137edc03ec5a3f52410561daeed2128
Sha1:   dc6d11194af00b577eb22c6e04f64be60438320c
Sha256: acff650dd2391a19e98c79b9ff0a7c62cc79f7cbf38bd38461877ddc1032b3c9
                                        
                                            GET /teams/262.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 1793
last-modified: Sun, 02 Oct 2022 23:09:26 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RVYjNY8Jez%2B28OYVDCoO8pfYYJlTAdZx97jIE%2BiWAQTcLXmg6semAPFhK5OyKnuP%2FA39IKJ8v6SfsQW6fPFphS5nkDqDhy8Vwi0alMu3vs80f%2FL95cxqfgLrAvuLdQr7pWE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7e900b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 150 x 150, 8-bit colormap, non-interlaced\012- data
Size:   15480
Md5:    b6ebc06de52641d4bdbb709fdbdec111
Sha1:   9d503f4e33be8781c529bd0d1ee27bb0e8d7319e
Sha256: 0d3f9f81e61b9d5d6364db4b8efcf8524c0b348bed30a20fb87e79f1e7cabbe4
                                        
                                            GET /2022/09/522666-2231.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 372902
last-modified: Wed, 28 Sep 2022 16:04:17 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i5m7%2FwamHjqU6VLFntTSVbK79mv10nQUhxP%2FTpmH3OG1%2B7FiOdy%2Fn6h%2BaN%2FqwnacH%2BM8vpxwzzAs%2FKVgMuwwEc7gigyHBz6EizRaU6g0GUOQnV%2FINSQ%2BmmDlts0fice%2Fs7B3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d8ae67b4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 120 x 300\012- data
Size:   114501
Md5:    92f84ec65d7cc0be0f400da23b64c47c
Sha1:   5240e61ac3f887f71307cbb5113d5ddb55cf694b
Sha256: 9693de55b9f1090927e21d030779b218d869a9f5d3bc59dc0cc002e838b3849e
                                        
                                            GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3iu4nwlxdu.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://91phutz.live
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12408
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 23:36:41 GMT
expires: Sat, 30 Sep 2023 23:36:41 GMT
cache-control: public, max-age=31536000
age: 172959
last-modified: Wed, 27 Apr 2022 16:54:54 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 12408, version 1.0\012- data
Size:   12408
Md5:    6e30c013adbc4eba0b94d5431119ea87
Sha1:   9d2a987240fc5b46a3135e8836ee435c5feff333
Sha256: 080e18a8c761c3d30b7ec08aa65f87109a0228367eafd0a12fcefda58d10e8ad
                                        
                                            GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3iu4nwmRduz8A.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://91phutz.live
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11460
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 29 Sep 2022 00:32:55 GMT
expires: Fri, 29 Sep 2023 00:32:55 GMT
cache-control: public, max-age=31536000
age: 342385
last-modified: Wed, 27 Apr 2022 16:54:54 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 11460, version 1.0\012- data
Size:   11460
Md5:    f6034c75c282ecd334b1e91093ea4e76
Sha1:   403bf2477d3a387be092d5ed73c4215dd655bac6
Sha256: 90097c3d40a389059efe7190aef2d547af3bf437977c2c009514470b972ed241
                                        
                                            GET /teams/1993.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 1793
last-modified: Sun, 02 Oct 2022 23:09:26 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hOtZL6vOaYtAcDSib5oHqqoZAA3%2BHm%2F45czhUsbG1FyLzc64E0zY9bPiNYWGsX%2BMtXoskYpwlSDPcSr8SBQcc67EIwsBRo05ODnCzo3N45DVLt5x9xlBViwi1mxOv%2BMNAgY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7e8fcb506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 256 x 256, 8-bit colormap, non-interlaced\012- data
Size:   17830
Md5:    bc1de8de286e9c16e1cf0ab61ba51541
Sha1:   6a11e27ac8f58870dd0cedf9f7c08ef1c66e0974
Sha256: a005019cf6ff308e9b7ba5ec2124d8dd99b0e55d5376ab3007c1b8365c75f008
                                        
                                            GET /wp-content/themes/bongda2/dist/images/social/icon-messages.svg HTTP/1.1 
Host: 91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
last-modified: Sun, 10 Jul 2022 06:55:25 GMT
vary: Accept-Encoding
etag: W/"62ca77dd-4b2"
x-powered-by: WordOps
access-control-allow-origin: *
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-frame-options: SAMEORIGIN, SAMEORIGIN
cf-cache-status: HIT
age: 107069
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TBwrggMQ92C6plVevgX0bugUG43pHjC4bzU5qzyrRObe2MHdZNn9UIT7rqdzsw4PKoVrQZf2%2Fa1YEiaXFT2wmWXVSxVSjeRbS5SJf4JZq0Mpmj2SoXtQbdvxOT4Xaw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754146d8998fb506-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (306)
Size:   13537
Md5:    4a51cddeb117b0481a942e85bcc0eb10
Sha1:   3369b0f71e193adee34f9e903ed56968688efd77
Sha256: 29892fdfb0acefb504d46c359de14ae6db18637ca487c5af4e307c43638fdb56

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qNq7lqDY.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://91phutz.live
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11792
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:35:01 GMT
expires: Thu, 28 Sep 2023 19:35:01 GMT
cache-control: public, max-age=31536000
age: 360259
last-modified: Wed, 27 Apr 2022 16:04:43 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 11792, version 1.0\012- data
Size:   11792
Md5:    619d81d89f24960286d052bc8843de1b
Sha1:   15274ef64de4eeda33d92f1f27f9a1d79099428d
Sha256: ee519845ad25d096974439033bfbfc99578285ab9788287b915940cc7f8d3147
                                        
                                            GET /wp-content/themes/bongda2/dist/scripts/tmplPlus.js HTTP/1.1 
Host: 91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
last-modified: Sun, 10 Jul 2022 06:55:25 GMT
vary: Accept-Encoding
etag: W/"62ca77dd-13a5"
x-powered-by: WordOps
access-control-allow-origin: *
cache-control: max-age=2592000
expires: Mon, 31 Oct 2022 17:54:50 GMT
x-frame-options: SAMEORIGIN, SAMEORIGIN
cf-cache-status: HIT
age: 107069
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NiLW1vpZRqOsW%2ByQyI9ajOkrYQV7M8CSR1zQPpkJsvMAsSpoUnWvn1f5KtVZcnAQ0mYEP40ISmmXJoiePAMUeR5GlbXyP6bUmnYv081zB5I72OyQlExiYqfOYheDGw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754146d8a996b506-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (583)
Size:   13462
Md5:    3ac0e3e649eab592e621c43f575ea0b2
Sha1:   b8c25c85f0de94ef2686a69810eb93c7d757ee97
Sha256: 311b0e7eaa133cc1062c3e58f69f640df1899e2a319326bc6898dad3466de87c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 02 Oct 2022 23:39:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /Badges/_dmca_premi_badge_1.png?ID=6ab93c91-86ab-46d9-b8e7-cd2154648514 HTTP/1.1 
Host: images.dmca.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.139.242.29
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Sun, 02 Oct 2022 23:39:20 GMT
content-length: 13534
cache-control: max-age=2592000
etag: "646fc6af8920cc1:0"
last-modified: Wed, 01 Jun 2011 18:28:21 GMT
x-powered-by: ASP.NET
expires: Tue, 01 Nov 2022 23:38:35 GMT
access-control-allow-origin: *
link: <http://dmca-images.azurewebsites.net/Badges/_dmca_premi_badge_1.png>; rel="canonical"
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 97 x 103, 8-bit/color RGBA, non-interlaced\012- data
Size:   13534
Md5:    fc000910526bd6eb7df8fb5644505539
Sha1:   1a7ea4968573a14147e8c4cc15a1572213a016d0
Sha256: f4317793e46cb64c79a135780c6ffd245c8030b8fdc4b5e14436b84fc326ab51
                                        
                                            GET /2022/09/558666-22212.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 372902
last-modified: Wed, 28 Sep 2022 16:04:17 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ng8Wnl3PvhWOluSgxx%2FuRQEC9cNMMxrlVhlUiuDnXkovPnL4eMGgmGv9dQ4MElJF0vbvgV2wjgZmvVDITakUAP9scAeEGEpWEzJM2USGZFtdMz7VjuRjNO2G4sDUQ%2FmeX4ta"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d8ae6eb4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 320 x 50\012- data
Size:   110807
Md5:    a469e6e401f8563e0190781b9c20d6d3
Sha1:   0ed5a65a9872bc88badc932b549609e4fe3a8a91
Sha256: e353ce829b39ef150447442a13d0f5d56b3b58a0ebeaff2eddeb7fafd219214e
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         18.165.201.17
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Sun, 02 Oct 2022 23:32:56 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Sun, 02 Oct 2022 23:47:43 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 93d70a809cf3aeccfbe0810f5e50a6fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: axsCADwyjMXF3GVxDszMk6gysyQxH3v6PHjac8DB0dbd5XeNnQ8Yig==
Age: 387


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSCmu1aB.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://91phutz.live
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 Sep 2022 00:02:56 GMT
expires: Wed, 27 Sep 2023 00:02:56 GMT
cache-control: public, max-age=31536000
age: 516984
last-modified: Mon, 15 Aug 2022 18:14:42 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 14040, version 1.0\012- data
Size:   14040
Md5:    eadd44d829d43ddf48870c2073f1a7ca
Sha1:   fc04b04f37e0988001c81be96bca33c4d866450f
Sha256: 84197a92671b7b7c8715220cea35354699c6221113c0ff531ff087ab8a8aa9e6
                                        
                                            GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwmBduz8A.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://91phutz.live
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 4136
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 29 Sep 2022 02:28:32 GMT
expires: Fri, 29 Sep 2023 02:28:32 GMT
cache-control: public, max-age=31536000
age: 335448
last-modified: Wed, 27 Apr 2022 16:14:13 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 4136, version 1.0\012- data
Size:   4136
Md5:    2ec081d7bdf9ed3aa2881dc4e6d5b479
Sha1:   91d3530453b803c2ace16b1c0d466e4ae25ba7f0
Sha256: 4de44eab29462e426981eca31a2e82331fbc494e64633889321a3b8db175527c
                                        
                                            GET /teams/34305.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 1791
last-modified: Sun, 02 Oct 2022 23:09:28 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=etaTJXNdvH4%2FQmo%2FOdirhJgbOrW5Q7sCff18G7%2B0wf8%2BeHIIeBVUlI41IHdr9w31lGSFIRY%2FSdb%2ByVOHQPp7tVccJ8SpP5BVEknBFERIZwJ4DuHkA388bobljAu%2F01LNEnY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d8292cb506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size:   35655
Md5:    34ab212d39f04992dd0370b28ce7e0b7
Sha1:   53c2e2b995c7c50f6e3e501204cd9387c70cc6f9
Sha256: 26499f6f0f2e16ac205e574c31add37799270619d11544a791c8764fb37389b7
                                        
                                            GET /s/sourcesanspro/v21/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7osDJT9g.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://91phutz.live
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 4248
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 29 Sep 2022 08:21:29 GMT
expires: Fri, 29 Sep 2023 08:21:29 GMT
cache-control: public, max-age=31536000
age: 314271
last-modified: Wed, 27 Apr 2022 16:05:49 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 4248, version 1.0\012- data
Size:   4248
Md5:    37bddcbd0ea5b8026bbe7f9f44a31150
Sha1:   edda1edda32448792b233b20d5a5b0f221c840c2
Sha256: 159bc2e72d94cfd9f5ffa573e1d1a45b1d5a79faff4f13ea1c2098c08c6fa6dd
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5997
Cache-Control: 'max-age=158059'
Date: Sun, 02 Oct 2022 23:39:20 GMT
Last-Modified: Sun, 02 Oct 2022 21:59:23 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: HVjzWbUcGaOKhfF+pIIpiQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         100.20.30.105
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: /dRXAnjS43cIJN49P5yvBGDLdP8=

                                        
                                            GET /Badges/DMCABadgeHelper.min.js HTTP/1.1 
Host: images.dmca.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.139.242.29
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 02 Oct 2022 23:39:20 GMT
content-length: 280
cache-control: max-age=2592000
etag: "26b181f16d28d51:0"
last-modified: Fri, 21 Jun 2019 20:14:34 GMT
x-powered-by: ASP.NET
expires: Tue, 01 Nov 2022 23:38:43 GMT
access-control-allow-origin: *
link: <http://dmca-images.azurewebsites.net/Badges/DMCABadgeHelper.min.js>; rel="canonical"
content-encoding: gzip
vary: Accept-Encoding
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   280
Md5:    676eb336bf17b6d9ba8106a096fdd587
Sha1:   22d3b0769cd5aa177e723be2456b32509914fa7d
Sha256: 9e9dc74a53c9a60256b8d4db5b26d02599cea75d3d00e02f16bef59169477a69
                                        
                                            GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.css HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.25.14
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Sun, 02 Oct 2022 23:39:20 GMT
content-length: 5884
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-9226"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 324203
expires: Fri, 22 Sep 2023 23:39:20 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l3YDgtlEblZvyAaTpliCmyd5wadzAc%2BwLHwWxBH1hszg1bHMbEhvPCeWnaYXnS6r78Vn%2BM6801%2B0PLvPVn%2FQZvizr%2FtMjhmofqKs5YK%2FVcXWYXUIPU%2B8q3fdnLl5tPjKgjhHNXFW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 754146e008e8b4f9-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  troff or preprocessor input, ASCII text, with very long lines (372)
Size:   5884
Md5:    aa712f2a9ab349290ddbc871138b13ba
Sha1:   2be3765114dbce70c84786dd7d2838c7edce486c
Sha256: 84dce905b67560d91a9993771337d6e5946c7f1e502b5bf06fb0ef6d34b97b57
                                        
                                            GET /wp-content/themes/bongda2/dist/images/favicon.png HTTP/1.1 
Host: 91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Cookie: _ga_ZJX94GP8YR=GS1.1.1664753960.1.0.1664753960.0.0.0; _ga=GA1.1.996234226.1664753960
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:21 GMT
content-length: 9249
last-modified: Sun, 10 Jul 2022 06:55:25 GMT
etag: "62ca77dd-2421"
x-powered-by: WordOps
access-control-allow-origin: *
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-frame-options: SAMEORIGIN, SAMEORIGIN
cf-cache-status: HIT
age: 107068
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5BHX9RO%2B2Wju3XETMZhvo3USSwyYIy3ChHNHYmJdBtR4POVj3COV1lp2150%2FdMU8MjZ6RUHxK2600IGyjo5x9qBOGmu0isBjNX2wMpM0wby9xHIkDeGFvYPBxuBLQw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146e04ec5b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 90 x 90, 8-bit/color RGBA, interlaced\012- data
Size:   9249
Md5:    b81272c0f12d4ca48a33a4fe9f3794f5
Sha1:   2d986bb88cbc198316a413e110e8d6502161358d
Sha256: 3c6f8af2d1708553cbebcdfbd0c50a6661a7f34fe5d966ea56863cf05b83a99e
                                        
                                            POST /g/collect?v=2&tid=G-ZJX94GP8YR&gtm=2oe9s0&_p=15351617&cid=996234226.1664753960&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664753960&sct=1&seg=0&dl=https%3A%2F%2F91phutz.live%2F&dt=90Phut%20TV%20Tr%E1%BB%B1c%20Ti%E1%BA%BFp%20B%C3%B3ng%20%C4%90%C3%A1%20-%20Link%20xem%20Tr%E1%BB%B1c%20Tuy%E1%BA%BFn%20h%C3%B4m%20nay&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1 
Host: region1.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://91phutz.live
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         216.239.34.36
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: https://91phutz.live
date: Sun, 02 Oct 2022 23:39:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5398
Cache-Control: 'max-age=158059'
Date: Sun, 02 Oct 2022 23:39:21 GMT
Last-Modified: Sun, 02 Oct 2022 22:09:23 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /vi_VN/sdk.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.72.12
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 06b9c593ee455dd6157cda6b0603eca5
etag: "6dfd5fd3ae8b9232ae749bd920b85f6e"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 02 Oct 2022 23:41:36 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: qA6svLmhXN+UElQNh9jdDA==
x-fb-debug: 0TjmV56rdwd3rgzfMMccsFvFpvgTOZ17RP5untUX7uUViSM/SjQwCcnyGhUV9ZwsnbKTnUF40iIYONh04mUiHQ==
priority: u=3,i
content-length: 1687
x-fb-trip-id: 1904183273
date: Sun, 02 Oct 2022 23:39:21 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1961)
Size:   1687
Md5:    a80eacbcb9a15cdf9412540d87d8dd0c
Sha1:   be32e0429160866540fcc2e6bc8d497ca28569d0
Sha256: af5e1dbed547677fe7a69a5a951feec880affd92c056116945379418e46e9d76
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5398
Cache-Control: 'max-age=158059'
Date: Sun, 02 Oct 2022 23:39:21 GMT
Last-Modified: Sun, 02 Oct 2022 22:09:23 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /vi_VN/sdk.js?hash=3202f98f632ef4070e2f53b0663b79e3 HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://91phutz.live
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.72.12
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: edbd502b8295a9823364fe8f9d6b78f4
etag: "cf19fb1367b03f0026341b4c922eec8b"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Mon, 02 Oct 2023 22:00:26 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: PBf3GKJjpwTQPazCeTaz/g==
x-fb-debug: G4nVgVp4+4UZCN2CawgNKq21CT5CsJXdYw8GwLZakpDRklcEC8Daqmnir1VemLSsnbkLbP9mqkeYt2eY07+P6w==
content-length: 88529
x-fb-trip-id: 1904183273
date: Sun, 02 Oct 2022 23:39:21 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18530)
Size:   88529
Md5:    3c17f718a263a704d03dacc27936b3fe
Sha1:   047d9a69a96d0281faa0ba0518a607e883eb7c05
Sha256: 77ddc2dd70aeb0d5345db31c72f4931b27e416cb2ef97521eb449c065a800d6f
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20498
Expires: Mon, 03 Oct 2022 05:20:59 GMT
Date: Sun, 02 Oct 2022 23:39:21 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20498
Expires: Mon, 03 Oct 2022 05:20:59 GMT
Date: Sun, 02 Oct 2022 23:39:21 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20498
Expires: Mon, 03 Oct 2022 05:20:59 GMT
Date: Sun, 02 Oct 2022 23:39:21 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20498
Expires: Mon, 03 Oct 2022 05:20:59 GMT
Date: Sun, 02 Oct 2022 23:39:21 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb166fe-e146-46cf-a93b-905deefbae87.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 3272
x-amzn-requestid: b2ace456-0abd-416c-9c1c-799eb5c73269
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZZWabG8zIAMF-PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a0442-3e61e1e9283bd78e76731b47;Sampled=0
x-amzn-remapped-date: Sun, 02 Oct 2022 21:36:02 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: oHEIG44XMoSu6XEYOPW8LNkvZPbIrgo6KuLHluknV7Hgfv-3IOWL2A==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 22:10:59 GMT
age: 5302
etag: "2926163d332abfb70f9565a45f7546f2efdc7716"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3272
Md5:    9a96da552b7ddb23b1f2fb506de2aed4
Sha1:   2926163d332abfb70f9565a45f7546f2efdc7716
Sha256: 2da0e160e0e8a116ab76614e29609e43d132cc9e56636ad91399f33e53346a23
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d589035-4143-4e43-a45c-b842ae27b9a3.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4522
x-amzn-requestid: cc836204-3c4f-48d0-9569-b1622e6d2178
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMVoRH9toAMFwig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334cfce-096ff90412945ca06335e987;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 22:50:54 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BzgI7sWS7fsSOANaDI0S4qrT_2iIkp2TOt3bPfm56T0m9jmxRFfSIA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 17:50:25 GMT
age: 20936
etag: "58f10485c5273cbed8159c98b9065b192ba3d00b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4522
Md5:    34ba42086104460665f7f4f579235592
Sha1:   58f10485c5273cbed8159c98b9065b192ba3d00b
Sha256: 79f1febc020ab611c5d9a8bc1af237a63420f8215963fd97f6c4b9bccfa17d24
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F164f8a71-9ffb-4a25-b46d-b30e7c374f6a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9760
x-amzn-requestid: 275e6188-8683-43cb-8118-2e85dbc1aa1f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZZWacGf7IAMFryA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a0442-2ad71e46388ea4a07bfa523f;Sampled=0
x-amzn-remapped-date: Sun, 02 Oct 2022 21:36:02 GMT
x-amz-cf-pop: YVR50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: B0UoeEWM9kfumMbQ_h9F75yWAJaacr1rxf55YbNpJR6Cd7EYQW7BXA==
via: 1.1 4201bd1d1fc37ea7749b3bd1b64fce02.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 21:54:15 GMT
age: 6306
etag: "0b865e797846520ccc6fff6fb2ee38d8836bd2c0"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9760
Md5:    18a84ae645223aba0709b5e16c0207f7
Sha1:   0b865e797846520ccc6fff6fb2ee38d8836bd2c0
Sha256: b1e4868045f074a84e3de1d82ec3ae22f6d2a1a4131b2a40bcce7f3f5375aff7
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5d8a8cc8-8c9a-4305-bb96-a248c5e44655.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8657
x-amzn-requestid: 172be66b-6140-4ff6-a061-22d177e75c23
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YtlXZGujoAMF2vQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63288295-6f74795f2b26d54409b2f388;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 14:54:13 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: z0haUqEvBmbQL-rkmWY9-ilheGP-kMdd5IDDxJNMXeK41qyNESGh-g==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 22:07:38 GMT
age: 5503
etag: "a54f3f4af645c1c93299360bc7dcf06bbae8de81"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8657
Md5:    f1af609199093985d73fd1d256482c12
Sha1:   a54f3f4af645c1c93299360bc7dcf06bbae8de81
Sha256: 047e15a2d3ea5b7d1f3d22cdac2ac0446c6267c99deb0b12576366088d29d5b3
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21b653ea-1faa-4101-b02e-44da6b46de9c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9095
x-amzn-requestid: 9f6cbd35-adf6-4163-aaf0-a3534bfc25c1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZNes7G79oAMF2DQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633544b8-306a82aa5f91bcdb3b349b87;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 07:09:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 1OJxta_mZGnKulQTucUAnzu5w6Mx7L5Tyo_eleCDo76KH2ywvEUTHw==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 22:11:12 GMT
age: 5289
etag: "f964cf69ae825bb32eef4b364df8227c5fb73fce"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9095
Md5:    a59b70f464b106c9e54579d8b2f967fa
Sha1:   f964cf69ae825bb32eef4b364df8227c5fb73fce
Sha256: cf2c8c1d3ebbdb8fea6b90d81d240120749cfdceb525713ef153481cb15a438e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 04:41:39 GMT
age: 68262
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6315
Md5:    206fb65e75dbadf119512f71e0b78402
Sha1:   58ff0bf8ce7528b303d28bab01a80ad721705569
Sha256: 56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.23
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Sun, 02 Oct 2022 23:39:22 GMT
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 02 Oct 2022 21:37:53 GMT
Expires: Mon, 03 Oct 2022 21:37:53 GMT
ETag: "d633f14928cf6104384908aa04f2833b78fd50e6"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1777
Md5:    dafa1097eb59fd1b5f619c123e7e56e5
Sha1:   d633f14928cf6104384908aa04f2833b78fd50e6
Sha256: f2e52bd6c56bcabf0deb5920609087231b8ea83d9dc85758747dac77ef190ccb
                                        
                                            GET /teams/1339.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 1794
last-modified: Sun, 02 Oct 2022 23:09:25 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YsNEHsfMqBoPeq%2B%2FEw%2B%2F6BVwj7b6LxeeUeQQSHM6d9CUZAt7xx7L4zw454g382lJnwPzU4FJp0svHRZbRypQyPyDSL2a2GIzMo5CP9s57dKhuAH6rxkxwmfWwaV2aK1ur9g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7e8f7b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /2022/09/666663388-2.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 372902
last-modified: Wed, 28 Sep 2022 16:04:17 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=obfvdrN6h0RkIcD3%2Bm2%2FoZQ%2BKb0qAYmvnYtMxQUo%2FGtQ8C80qjEQzROI0BOSx3PDKVjqN00L3h6GksQTZpzZ7C4kgh2QG%2FxSEES1Y03%2B1n2u5zckcCxCSH0be2tLEjfBEt6A"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7edbdb4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /2022/09/8288-2.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 284552
last-modified: Thu, 29 Sep 2022 16:36:47 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GFiG%2B5xSfP0yW8cgUIy04S%2F%2FQpxhXcMtdJ4dNoq7UEkv6H4o3JDYPASDpqpqy0Xy84f5oqB2iKZIiCcZafSWUjMU0INITEKn1BxiQjZCfkFHyFuzBtmbRbP8meXv42nDeq1%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7edc4b4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1 
Host: 91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
last-modified: Mon, 26 Sep 2022 11:11:52 GMT
etag: W/"633188f8-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JX4FBBL6rQ7J3Vk5xe3zT6GVkr2skBvlo2KoeeN19CN0R7%2F1XFOMttjNjGWb0u64X8cfxtu32DRkGoFCIheFlWWkq%2FqquEXxVmXYNVhqH2FK2cAviDI3%2FBCAXp%2BNJA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d8a993b506-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Tue, 04 Oct 2022 23:39:19 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /teams/1956.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 1796
last-modified: Sun, 02 Oct 2022 23:09:23 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w4Zi4phjeKjWHXyidEEhAg8SosUW1cuoKHxfu4%2BWkS1Bm6cAltVUbJbep1jpcZejyshFxxIvqXQGzwqEdk6HNBBNqeAk6E5IiYi9RGtbU35QE80vF1lgZiLg%2FmhXJlpfOEw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7e8eeb506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /teams/24281.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 1795
last-modified: Sun, 02 Oct 2022 23:09:24 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GH1n%2Fag8GPWfR4QWkXkWi0XVOZYDbAaFO5S5cj%2FILDf0OtC9Hq%2FP3Hxisw9ok0k5Q1IijoR3HdDzND2YGdvfMU0IVavaqeAjaL89MaWjVGAq3lTt%2FXi5lm6NHXjNnvGbUuU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7e8f3b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /2022/09/774488-1.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 372902
last-modified: Wed, 28 Sep 2022 16:04:17 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=phy5ZtRdZ8TrFnpioxDHwU1Sr73VbZ7%2F4yecpqmqfS4uRNctWlr7aEBU5Ve8vVSm7zhNHiW0uTRPA%2BmZs63eh6f4ix%2FnUMCXJKhk54rCwdboDZbdzjZWrH8FQEIkMQ9bsD61"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7fdc6b4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /2022/09/888944466-82222.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 372902
last-modified: Wed, 28 Sep 2022 16:04:17 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iPbqzyhZQ%2FE9jY%2BQgwa%2BizV28GOr6Vl6RvqGb%2FCEH0AoriJTHNCS2svNozmxaJy3qcRYdxbi9IdmeGZtW%2FlJt3nD7ZoyLnMbB2oJWKiWhrZyGzbsBxzM32df7vdAsGmj41kZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7fdcbb4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/bongda2/dist/images/social/icon-behance.svg HTTP/1.1 
Host: 91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
last-modified: Sun, 10 Jul 2022 06:55:25 GMT
vary: Accept-Encoding
etag: W/"62ca77dd-4ed"
x-powered-by: WordOps
access-control-allow-origin: *
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-frame-options: SAMEORIGIN, SAMEORIGIN
cf-cache-status: HIT
age: 107069
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vtzwn%2BbsRmA5ElZCmuIMeumb4EFgk0paiNsB7HosQlzZ8mtpZEXXo2eBxTGgj3cRoAJZ%2FROcYyPqhOqx3NZDlpkpVxazIqm2ZWJoS8wGAsXcnDfq%2Bae4RPkkz0kboA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754146d8998eb506-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /teams/5526.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 1797
last-modified: Sun, 02 Oct 2022 23:09:22 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dCz8PdiGYY56vk%2B63Gar1zbRZ8GS5zVkgsihBiqpKH17RJqWM2pvVlt%2FiBtinj9Tp47TiY6JGWfXC6vDOBBBgHPH0HO3RLb6V%2BUW%2FhxgXkmv9wF4IZvc5ef8pxsXs9LA%2BoU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7e8e3b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /teams/6164.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 1797
last-modified: Sun, 02 Oct 2022 23:09:22 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bEcFfrdeqMNZwT6pcftXZ1WaftHAy8HHwYkpPF1aQRQKvohp5bp83AEAy2lK1W0sFjPLweLnA50FYAop1YpIGu7ufgBPf4uGjRRmBxG2Foj0LR1Gecsz4AHnZOo7OJPhVtU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7e8e6b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/bongda2/dist/images/social/icon-facebook.svg HTTP/1.1 
Host: 91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
last-modified: Sun, 10 Jul 2022 06:55:25 GMT
vary: Accept-Encoding
etag: W/"62ca77dd-1fd"
x-powered-by: WordOps
access-control-allow-origin: *
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-frame-options: SAMEORIGIN, SAMEORIGIN
cf-cache-status: HIT
age: 107069
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jm0v4KFaaYBBANvBa3R2A1timJyZ%2FRqHBfffAmi1MGa2zRTNVG7Sm3fOKzi%2Bl1Pj5vwMHYEnSrXFJB6aOZunCuNBuwhwW8bjrNNRf8cBGMM4ZW1tKOnnDYZDFVeLDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754146d89986b506-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /teams/1898.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 1792
last-modified: Sun, 02 Oct 2022 23:09:27 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q2j%2BWMzPlE1uBfvZQ60yzdAXMZd%2FPl5e75JycFkLWPn1o2nRJ1PY%2FTa8rxthmCyELG%2FX86DIgSDsBgWRkZqNhsKxgAj9N7oFtGsLNJYcx0IzWwskPW9Q%2BdCxgAx0jsRXd5U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7f903b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /2022/09/3222338-1.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 294612
last-modified: Thu, 29 Sep 2022 13:49:07 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zFBosR3tQB9%2BI%2BETFr8dd1X88K2WN8SXMzBumKtHAVGo7Va1AmYcEAvR9r95dEC18pLMlfYhg0IsxECNnR30YMhvZBjXGwy6nS9D3EbZQo83s8mjvAMtaRPECmU4mpxB%2FdJw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7edb8b4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /2022/09/333222228-1.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 372902
last-modified: Wed, 28 Sep 2022 16:04:17 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZrAp8JSeU3Kj8Es3mQvXXV9osJOSFvZ5v2Qm5DxuysXWjWAtODhYtWUHSzP%2Bls%2F6E9H69BxFFHRKl6MD2tkNZWvfsgxs1%2BeJ4sMb02zVBiKjRnH5Ckl1eS3cH0H466wsZVnB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7edbcb4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /2022/08/acv-99.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 294612
last-modified: Thu, 29 Sep 2022 13:49:07 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kawqB3Y0Q3wXMQ%2Bpz%2FlYlKQrgOwDtw%2BoIETeEMSWkwuiAS%2BlgoFeHiNxfgNO2%2FQ1Ym7EXZNorjAF4fxjM%2BO2GobFFysZSNSROU%2FttqplyapPNfR1P2WFBOaWjLa2%2Fsso1YCh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7edbfb4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /2022/09/1122338-1.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 372902
last-modified: Wed, 28 Sep 2022 16:04:17 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0x9YQLetS%2FO7wZn%2FL1TG6qB99KhfUW%2FibDOgKEPK5DUimrYAR4VPhgBZVy56zQeIRLQA9H3MPJ7n6%2B3HcQVDMMCsxfLE9u6SPvXCVkwqO20RWX1XK0JicjFl3Wfttid8lZID"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d82df9b4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /2022/09/8288-1.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 372902
last-modified: Wed, 28 Sep 2022 16:04:17 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VPNpYr6vnlRDi0AgIhjAFO3taG0zB74vnmXTbSbNrsPe4Ri8xoQVl6lfkyNCdxR3UG%2B2wleeHVpsiWXKkt91OFwL%2B8RM5dI26vXQf7OmWqV%2BTZN54HpAAFOSDxeDqL4w4l5E"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d8ae5db4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /2022/09/6622338-1.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 372902
last-modified: Wed, 28 Sep 2022 16:04:17 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y9mrKnQDHT4%2FKxA%2BCPB4YPriPDYufXdBh9dmWR0VLbV%2Bf4ftTxnmJ4E4jE%2FJKqXINFm7HZgsuQ9fqpPlSumf3%2F9AUrKY6mFCvy7nTZtK%2Bv0wMKhG61gnUkEx%2BOabtV4RLn1w"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d8ae5cb4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /teams/5521.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 1793
last-modified: Sun, 02 Oct 2022 23:09:26 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uQ%2FlWfdMEg1FZTLhLXgX3CP1%2FO28DMahU62SkjGUXcNDMW51Q3XSeDczB2cYArIBL2%2BgIwtTnQHnUA%2Fyxy9J5ufYmij2LgFpYgMCkHvncDeyKqbd5B3XOGq6%2Fvi6%2FC7a37Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7f906b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /2022/09/522666-2.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 223864
last-modified: Fri, 30 Sep 2022 09:28:15 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5yXbraLxbwTNAsgMcEq7zAgYouIa7TGtcS76%2FIozf2gl6%2BLbySX2mrHNGdkssaEUXf%2FGZsGqd6PQotJZ39c2QP5b5pjtVxLKDlhoZhuKjUXv2Ripx9gOk0kNjoXCJuRTM7tW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7edc1b4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /2022/09/6622338-2.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 372902
last-modified: Wed, 28 Sep 2022 16:04:17 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dVf7WY0VIC6iRJDsxE4BWj4suYaMLWrvKqJnWpCZoYGEvE0VO8gLIe%2B7MTg3sx3rmwSWf8Cw7yOcGFsPbugi5AZTdkfunD4I56R42HdyHNXCjgiRpf0M8FS%2Fb3mVnNQIBmIA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7edc3b4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /2022/09/666663388-1.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 372902
last-modified: Wed, 28 Sep 2022 16:04:17 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ExNO80ftVcdNfaG6l5pF%2B1eFZL5SpnaWoKwKsaZwl5S1weZBAtW%2FBzrbelShu1oonjJoHNUtmgLnmhGw%2FB7cyfOHfi584SCgvQL1AdwsyNotdFn4r%2BcczzFQmDhyH9%2FVBkt2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d8ae5bb4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /teams/25409.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 1796
last-modified: Sun, 02 Oct 2022 23:09:23 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b46dsmbS0wy60x8NPKUigLI4zlOXwNQZQkEbCOVFU8B%2Fcpwf7HBWpNZig8NihSJ4xUH2wC2DHAR28qwWHAS5MF2%2Ft8fUfUPM5LxkT0plovHQnrWZpST9sG0Sppj7xGKT1MA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7e8f1b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /2022/09/6669922338-2.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 372902
last-modified: Wed, 28 Sep 2022 16:04:17 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Sgo3AK8peLOnD5oxNOFgtRmJ05%2BzuSxAddSyZe1wCRHWA3drW82lROxlvp7ra%2B5Ov8eVo3JlDKDHYGbOqPt48AO6%2FSOEI4QKGK2vIAR5%2FsnnU6nU8NT8EKkZLheaXpsGT7CP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7edbbb4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /teams/29616.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 1791
last-modified: Sun, 02 Oct 2022 23:09:28 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ghCtDRh%2FWop41hgVx%2F4NjrRk2vDrwKdh0cOcSzMPUuma%2FcWXaC1o%2F1Bn8eKMl9MQznKC3h1C%2Fg2BCCa5hJMSkD5LEkYpanvFnziVXWD1BcuuYZaC4YRRoQhjVhnWL7aSSVo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d8292bb506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /2022/09/TA88-TNC.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 372902
last-modified: Wed, 28 Sep 2022 16:04:17 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mAQvNwnafpXpXZnHj47vOiiVr4GMlD4SGPrO6UbqWMc%2BxSF3I5mwIRiIy0NqVbyeIJ9CzTOne8YYRX9ihA6Za9ZXNhAFfeXcPyDLp3qbcZ%2FCro5%2BY51wC24OJwcVtEYVXfKX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d8ae63b4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /teams/1890.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 1796
last-modified: Sun, 02 Oct 2022 23:09:23 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z%2FcVywvrlVvA2Ef8XI0Kz3yaZr5FcdPDIvHob8jVNTlj4XkdObpJLTKSYqeDV6xC3vwErvpakYpRbA%2FWyUlh6jKB%2FHbnXWN6YawVNTkXtScmtA41dK40Uv6InKwxxSoOym4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7e8edb506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=5.4.10 HTTP/1.1 
Host: 91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
last-modified: Sun, 10 Jul 2022 06:55:24 GMT
vary: Accept-Encoding
etag: W/"62ca77dc-592"
x-powered-by: WordOps
access-control-allow-origin: *
cache-control: max-age=2592000
expires: Mon, 31 Oct 2022 17:54:50 GMT
x-frame-options: SAMEORIGIN, SAMEORIGIN
cf-cache-status: HIT
age: 107069
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gw6e1mXPNp3gqu0Arqcx6C2rvPC%2FH%2FbbdaLwy8AmJNW2JLGyBxhIOHWNKc%2BRRQLvhG66ghyOx40wMMRBLHaCAOF%2FdtYzs9AuVIGvfxJnQg39Lqd9M6pQlHDkctn5FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754146d8a99bb506-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /2022/09/774488-2.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 294612
last-modified: Thu, 29 Sep 2022 13:49:07 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oUsrRQsaGXL08qmetNiVJnlHCbuXs5ATUwJCrC95VSqlLBb6%2FP7A3s5MoJFxO2GTVzry9OHTsByvSbGVvsrIVt9s8pTNAbV5tA3iw8NTk%2FxyW8jTPRS8kRZMcc777IiRjk73"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d82df6b4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET / HTTP/1.1 
Host: 91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
vary: Accept-Encoding
link: <https://91phutz.live/wp-json/>; rel="https://api.w.org/", <https://91phutz.live/>; rel=shortlink
x-powered-by: WordOps
cache-control: public,s-maxage=1800,max-age=1
x-srcache-fetch-status: MISS
x-srcache-store-status: STORE
x-frame-options: SAMEORIGIN, SAMEORIGIN
cf-cache-status: HIT
age: 1798
last-modified: Sun, 02 Oct 2022 23:09:21 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SxQuO5o99m91%2BwQSr3st5lwFJHIljtluuFQoKXKthmtI3yh7896jVvmW0bxMXJE5RdtBLWoH15pxyMTH1n4ETUBROVk%2Fodysh%2Bh8lof2A24KRQzN2m7aUDwMZlF78Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754146d66fffb506-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /teams/19887.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 12691
last-modified: Sun, 02 Oct 2022 20:07:48 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Eq7ONToPlBwc0YQTVd%2F8DQ5jFfoWldQKc1xXimFlYU8sHibFYyhf2MvYU29uzXhPE0iDqqiTYMihcUdZ8KPElx1NlVsXfeEJ%2BPqimEVM1bqKhL17hmNbyIaQxX7KKk%2F%2BsLY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7d8e0b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /2022/06/huong-dan-xem-truc-tiep-bong-da-de-dang-tai-90p-tv.jpg HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-bgj: h2pri
cf-cache-status: HIT
age: 107067
last-modified: Sat, 01 Oct 2022 17:54:52 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PGTRuPslUQuF%2FZaAUrTcTXYrPQR93vdizwPjWy9Y34xh9kYiBx21xw0ojVUJA5WW9yOXcM32hyGw9OQCmxy48puVaLGWYwIygPftnZMzJluWQxoj2i699Gun%2FGjNuZENul4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d89985b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /teams/318.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 1797
last-modified: Sun, 02 Oct 2022 23:09:22 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uTwOvNt27x2WM49r0qXcBxOmqSwajhbKJ8tb3OAUsc7VXYlaRZA1G0Qe34skKlbTh54RgqBUAAZt78oxDwj7ZL%2FiLM0V%2FBDwRd9E%2Fr2kNZqpVh4FMpiLHzBdsB4Qp2M99Ng%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7e8e2b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /teams/33558.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 1791
last-modified: Sun, 02 Oct 2022 23:09:28 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bzi4gfqo3TmrOGMSklCLaDV%2BguL7J6e1Hnu2mHJIYTMwvYinkZ9zNPKOxqTN1En6HN0jjJ3q8h36hh3zZzmpTk6HSyAZ9QDe2ynwfXIgH%2Fa7%2FFA9U1w%2FqlFj47iKkkQNSKE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d82928b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /teams/291.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 21570
last-modified: Sun, 02 Oct 2022 17:39:49 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j85FQvj%2BFI79LhHDG%2F6ZwBU7EqPii9mpqfQ7tlqIBltUkiie8rQSgYv56Xj3F0A7zOsc19CkL%2Bsi69lCEMdtx9hqS4gzu0tAlKD%2B9m8VSmDS1F154JxR%2Fy1E2kV8WRyPDeQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7e8ebb506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/bongda2/dist/images/social/icon-issuu.svg HTTP/1.1 
Host: 91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
last-modified: Sun, 10 Jul 2022 06:55:25 GMT
vary: Accept-Encoding
etag: W/"62ca77dd-37e"
x-powered-by: WordOps
access-control-allow-origin: *
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-frame-options: SAMEORIGIN, SAMEORIGIN
cf-cache-status: HIT
age: 107069
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hdqGsE8H1CwJaIew94FQOt8r16g%2BedNYprM8DwqXZ1r%2FQQhTwwKkeloT4XhV0eHLgt3ut3rtjDBQaw480R4TA9eY0w%2BW0ap8RZSPlI3oYNy2x%2B%2BjqImyYswLh4PskA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754146d89989b506-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/bongda2/dist/images/social/icon-flickr.svg HTTP/1.1 
Host: 91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
last-modified: Sun, 10 Jul 2022 06:55:25 GMT
vary: Accept-Encoding
etag: W/"62ca77dd-26b"
x-powered-by: WordOps
access-control-allow-origin: *
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-frame-options: SAMEORIGIN, SAMEORIGIN
cf-cache-status: HIT
age: 107069
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KnylPuRMRXq%2FKtrHz6BaFH6NjlzYj%2BgnQUCAhCMAPKAvW8Z%2Fkncaw%2BkxNaIRhnfapMYXa%2B7H5BZIfERr9uHGB%2BiLtGBHVeaDVp8%2BxpgjZRkKhS7o2eYpHTK92pDveA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754146d8998cb506-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /2022/06/kenh-tructiepbongda-hang-dau-khu-vuc-91phut-net.jpg HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-bgj: h2pri
cf-cache-status: HIT
age: 107067
last-modified: Sat, 01 Oct 2022 17:54:52 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p%2BGwgfaKq1AjiniKB1t3U7qWQNlQCfNjWpWMOGJFi0Erwd7E7htsPv7qvrDNNYN3K6SvPxmc4lr6D5kLxsYHbqxmq1iHLT78vacXK8k0ydoR5qhlbihfFCJWNBH48aODmHY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d89983b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /2022/09/6889-2.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 372902
last-modified: Wed, 28 Sep 2022 16:04:17 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=blkaccLAT2p92%2B2HossW1O0AeTbCsHxtuCtVFfURaPctLVF4%2BQsf8OBcmH7hQcrPEeH8aIBWDw1zxaHc2PFFUdRinp8H%2FKovJsZ8eiJkJ9Om6O1GWtcb6yPcpgeUmi%2Bc33vC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d82df8b4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /2022/08/VWIN-PC2.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 372902
last-modified: Wed, 28 Sep 2022 16:04:17 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BuRmOEfQMVGyyfCNrncjtk3gFwGgu8HfBpg%2Fr%2FvT7YNU15Xolcp0oysnXp0SL5citL2VB6JtJiUNmblu8geczhuWI0FlB%2BwMhj3WlTMN3gYDSlFV3ySlHxMz6UcMbXt4isZm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d8ae5eb4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /teams/4481.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 1797
last-modified: Sun, 02 Oct 2022 23:09:22 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Lb3DMONAR02WKIxxEvyH%2F4G0fBEgRKFAf4QliDgPyGO%2F%2FBKCC5s%2BcBTrM%2F90AI4Kp0h4okRpCKO%2Bc%2Fd2N1Gfgg02I%2BoPdC5ugXF85bUPSAkZt2QQuYz5EVU8YBJst0q%2FzF4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7e8e9b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /2022/09/229444664-1.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 372902
last-modified: Wed, 28 Sep 2022 16:04:17 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xKAn%2BiAZYmzmHXI6VRWfywHIBoU2d49R9GWLQHUmcLkxRS3dc0F3Z8b8f%2FiQbUoLbFrtrB2g7QLJapJqyrb3Q8BgLpZPydlUs%2FvEFooGVxDTTaC%2Fq99a9%2FHP6mOfxUGsnNJB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7fdc5b4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /2022/09/833388-1.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 372902
last-modified: Wed, 28 Sep 2022 16:04:17 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2ddOE%2BQtfHolydxkDaSyVXJ6DhXvT%2FjvcdX5MbDL15JVJTSXfprbHQd1mgW%2BDAIMU44sknwzZO64tW%2BC%2FxH39ufldtDx71bdJWZVkQBUIb5dP5Bi8%2FfQ%2FYmfOc%2BCZ9JQA%2Fk3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7fdcab4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /teams/9382.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 1796
last-modified: Sun, 02 Oct 2022 23:09:23 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lkafeBNouZox0B%2B9S6ooOEWNl7D8XKn1Lr0Muonm1zYphv8mwbRBbmk8y%2Bt0b6NWMZO477ORlNk3%2Bk8LBCPwp0AkwQJf7rO8GLMvkgy5Mpc0QEixEIKpN3EG39y7HM7x%2FYw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7e8efb506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /livedata/live.json HTTP/1.1 
Host: spapi.p2pcdn.xyz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://91phutz.live
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.27.205.87
HTTP/2 200 OK
content-type: application/json
                                        
date: Sun, 02 Oct 2022 23:39:21 GMT
last-modified: Sun, 02 Oct 2022 23:39:12 GMT
vary: Accept-Encoding
etag: W/"633a2120-2fe96"
cache-control: public,s-maxage=10,max-age=1
access-control-allow-origin: *
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pOrmHB6N4A7e58%2FHzzP2vlfrOt4rvAzOYmSk7RaWSrfBT%2B6Ns72riHe94VKlGmDe%2FJUyi1cs9boBaf7nk01SktxAcaec5OgZIrGE7Wu0Pi7z42EHytTDWpS%2F%2BX%2Fg7%2FwVqh8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754146e09afdb4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/bongda2/dist/images/social/icon-okru.svg HTTP/1.1 
Host: 91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
last-modified: Sun, 10 Jul 2022 06:55:25 GMT
vary: Accept-Encoding
etag: W/"62ca77dd-78d"
x-powered-by: WordOps
access-control-allow-origin: *
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-frame-options: SAMEORIGIN, SAMEORIGIN
cf-cache-status: HIT
age: 107069
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cI0mfZkzCPiobQTDir28jez58B9TKCm6Teu53xPrs%2BnsYcBZAJkgW1sCeOfTgzley%2FcfnrkoHnDd3i8U1okRtp88Ggg5jYH%2FhCEQevRJwpsTD8nIlS8YeRklvLk0rQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754146d8998bb506-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=5.4.10 HTTP/1.1 
Host: 91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: text/css
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
last-modified: Sun, 10 Jul 2022 06:55:24 GMT
vary: Accept-Encoding
etag: W/"62ca77dc-d159"
x-powered-by: WordOps
access-control-allow-origin: *
cache-control: max-age=2592000
expires: Mon, 31 Oct 2022 17:54:50 GMT
x-frame-options: SAMEORIGIN, SAMEORIGIN
cf-cache-status: HIT
age: 107069
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OKuysk6hqLJidfImAEgcwsXMxHNyqw7zat5RYbm6YCSUAPTTi8wiWbN%2FuwRVU1Ai0U5Zx5SVFRjRpVGIGDiFatvgtL%2BeWVIsX%2B%2FfA%2BRnRYez6p90xWErMaECAdvDCw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754146d7488bb506-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1 
Host: 91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
last-modified: Sun, 10 Jul 2022 06:55:24 GMT
vary: Accept-Encoding
etag: W/"62ca77dc-17a69"
x-powered-by: WordOps
access-control-allow-origin: *
cache-control: max-age=2592000
expires: Mon, 31 Oct 2022 17:54:50 GMT
x-frame-options: SAMEORIGIN, SAMEORIGIN
cf-cache-status: HIT
age: 107069
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1COq%2FlKjEWurWEp4iEYrV129mQQRv%2BaxPagnEnmTIaWKXBUHgSMdCq4TBoagCUxOfy35FPZ3iJT7N0JFGosHG9JN%2B6mmlfNrPqStMXT8idLMTezNAxw3P%2FwRKJxF8g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754146d7588fb506-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /teams/8411.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 1796
last-modified: Sun, 02 Oct 2022 23:09:23 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PfquMLwjbWx1Rqlz0kafE%2BnTaoxHah1iu%2BBvp4Qm0SlmjFBc3RVy4riXiFF%2FFaRnT4oiryVelmGzXi9xigIiOngpObFgOJsAVsfAC2i73pFuYGN1KemOxldAQrMN%2F6iouPI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7e8f0b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /teams/708.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 1793
last-modified: Sun, 02 Oct 2022 23:09:26 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ENzJZh0DQOZnFVL8c0LirFYVbmRgjTaGiv9tQqHOvzvAjuP50a7tDzLioxZRvzzj07I1L%2FBoIN1wCtzBqX6mARJeE%2Bp%2FFWioTBt28pqwPkZVcVqd20E8ugHp%2F5iIM%2BOegWk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7e8ffb506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/bongda2/dist/images/social/icon-instagram.svg HTTP/1.1 
Host: 91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
last-modified: Sun, 10 Jul 2022 06:55:25 GMT
vary: Accept-Encoding
etag: W/"62ca77dd-1063"
x-powered-by: WordOps
access-control-allow-origin: *
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-frame-options: SAMEORIGIN, SAMEORIGIN
cf-cache-status: HIT
age: 107069
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9U6YJLJIIPpCWSkb3rNvwPWoHYk7u5VKd4BPcoqP5KFr%2FF%2FsRk%2B2LiFWdfBfc0KRVwDgC1FZ%2BS4v30%2BCHB7GsQQvfXh2HlZq%2BpI9kjUizIejcdOyOtv04eZcFZ%2FhpA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754146d89988b506-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /2022/09/6888-2.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 372902
last-modified: Wed, 28 Sep 2022 16:04:17 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JKcF02rU5ca%2BiUksg4ox9Ygb2R7QUP1Tx0mJHb9syNRNdFwkJzSIJA4Y5Ec9%2B69N3IPZcfYPYLElBM3ax7O4wNnoAPU5plNJFyG9NHqHRNG6xjRDe09mbT0hR0bNYiqN1qCv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d82df7b4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/bongda2/dist/images/social/icon-tumblr.svg HTTP/1.1 
Host: 91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
last-modified: Sun, 10 Jul 2022 06:55:25 GMT
vary: Accept-Encoding
etag: W/"62ca77dd-3f7"
x-powered-by: WordOps
access-control-allow-origin: *
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-frame-options: SAMEORIGIN, SAMEORIGIN
cf-cache-status: HIT
age: 107069
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HsaSYUYaHQlvtjkZekEIL76b4HJ2GOoy%2B9ML%2BRDDgnEbv%2FBQOWSRs1AgTVWPHjoBLPNOvyX8DZg7uHUnTZod2C%2Btv7alFLEpByYCyrbfIeHEVZOfJf1VOP%2BtWJg9%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754146d8998db506-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /2022/09/77774446622338-1.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 372902
last-modified: Wed, 28 Sep 2022 16:04:17 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Cft%2BBlxF6PO8%2B2CB4rNtc7T1sJTZMP9p6oGKbiIkAVPR%2Bj5RpdUakoiY6E5xz3zsMlV98Yawp2CzCtRGB5SZBD7A3oXNJKrvyoi2ydpOzWUk9x60YACUvj396rzr9pNLDJnn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d8ae61b4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /teams/35886.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 1795
last-modified: Sun, 02 Oct 2022 23:09:24 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KbN5mbpY%2FDYVx7BJZxeIgLTS2cjUephfgT5TdN5iDkTEWsNMjPqes%2FOwQ%2FyGNYA%2BeYT9a7g4RfNeaYYIW7a%2FeOh8%2Bc8fZ5WjEDS5bN7uDGNq2rdacadmY71WfJmPiPA1WIU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7e8f4b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /teams/1995.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 1797
last-modified: Sun, 02 Oct 2022 23:09:22 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Tn%2FwE37Hop4X3wqpKKNBNBzNOiMR86S9UUcPUhcn69XyR0Kj8i8XTIJxrlMy2vS2CPOWonKnvqCl66ZnRb1plhXwGUmSlHLRUxgMvHIb5YgtBIGZPiz9%2BZMUXOaRsGqHAUQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7e8e7b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/bongda2/dist/images/social/icon-twitter.svg HTTP/1.1 
Host: 91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
last-modified: Sun, 10 Jul 2022 06:55:25 GMT
vary: Accept-Encoding
etag: W/"62ca77dd-5d4"
x-powered-by: WordOps
access-control-allow-origin: *
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-frame-options: SAMEORIGIN, SAMEORIGIN
cf-cache-status: HIT
age: 107069
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N0M%2FKY4HNENv5C6DIhDdRSd1fR%2FfDUOQ6RiTeQBuGuYQ1pNbwysEWbWQZodcbroJsTH%2Fz2eUPsqxiw2wDG7H%2FjAYYTtmd5psgyoVdmmHYAj2DUiVZVt3EeHNPwZTFg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754146d89987b506-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /2022/09/8288-22222.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 214782
last-modified: Fri, 30 Sep 2022 11:59:37 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5zQGShivM1GNVAUqN2o77iy77WOt%2Fe8eZ9GG6eEh%2FgwyTmiiTr%2BivP1soCSLff%2BBg4qoTlvzbDN6ZekIqzuzGttE1dwWIr5JCc3NuEw27dyNKqZRBW2093J%2BKL75QBegEuQK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d8ae6fb4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /2022/09/3334448883388-1.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 372902
last-modified: Wed, 28 Sep 2022 16:04:17 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7LIfSFIoCcrbVxic6LnL70sqWjGKVyBYzD1rdxhxBRMYJXu99XUsZDVtTZkFaGkWkK2ALR3j4PZeeY0Nl0N4bcpRuM9SFJ79F%2BYcMXpbYuxLXZnlSOMUTPd4fKjDivrM5mlx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7edb4b4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /2022/09/89922338-81.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 294612
last-modified: Thu, 29 Sep 2022 13:49:07 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=76nuDIQLxmWPjXYTnonhpSPuWnWsrHIQ7jRKJeeHPRFegf%2FyxyRSEPFbnL5M188jUVWkMGYhNacWnL3QV6YZCJkyfMhTSOQihej2JIkOGYrXHSY75WHi6%2FELubpWTurrNFoh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7edb9b4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /2022/06/xem-truc-tiep-bong-da-hom-nay-tai-90phut-tv.jpg HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-bgj: h2pri
cf-cache-status: HIT
age: 107067
last-modified: Sat, 01 Oct 2022 17:54:52 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6WocwZu0WMVMkXRxdCz0kIwrdfNlC6RcQXh4u88Nxhr1t1%2BdkaVIzE7gEpOJQC3seY2B1whvHm0Yp5B%2B21QB9vYMux1rCfsBw1KvV4ipdaJ9Knf3VzE6Kf16sHPdEAR6Fz4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d89981b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /teams/34142.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 1794
last-modified: Sun, 02 Oct 2022 23:09:25 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S6BR9F17u7dBp7d8jE%2BF4S%2BYLMQK3P1VoDj3qxxF0IipDr%2BIq3CCUm%2BrPJ5t2fStoi2rWaSeUk0MF4YDFG9w2mwJplJgSd5a4nqCbAIZPAkv0mlNStxbq0eS4NPQ56bP%2BWY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7e8f5b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /teams/1496.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 1792
last-modified: Sun, 02 Oct 2022 23:09:27 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Bk%2Bw5tcxKD8vVUXFAG9rmiBJHF5P5lPMy4XVbSuWLg%2FENnPX1wEIw8NQn8wssuPRjG8fSpW35bdERB8zCrTfCgSxgypxKF%2BWJEs5vVfgnS6wL0r7va4PJgkgVTC6PqYJHJA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d82922b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /teams/4140.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 1792
last-modified: Sun, 02 Oct 2022 23:09:27 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GfuqOifBFEL1CkRC3cMXa1AeHavLpHQ1nGFqvlmGut5OSU0PJzjtHJkayTjV1aky19mqHdBGgozVL3TwofOMOZDImdeDrDcZNCQGk9RfEl%2FS6DTh8Ab7pxkwrTTFn9OsFTg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d82926b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /teams/5113.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 21570
last-modified: Sun, 02 Oct 2022 17:39:49 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jR0HN7I4sfLI8%2FKGayYNkuSnve51G2UBPDs27%2FaHJ146PKgwOhpVGQiW2gG1mx3UXtAn3f5TCGfoAtlzqtY%2FY9DWOqbZ6VyoOkFUfMdw8XnJdoqNtReGK0G314S%2Fw32Gsvc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7e8eab506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /teams/2655.png HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/png
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 1793
last-modified: Sun, 02 Oct 2022 23:09:26 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bh%2B1VAsdqIGeDfQabIL7mms0WAQuRyrIXhXYGx3eCjqsQg%2FyzWtdbxIvRVM%2BCxVV7R12neU34GCcV84N7xa62aJ7hbF4TNTycmgGsiUbKgeXEtYe%2F43imdzZEgCtfbCbjwc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d7e8fab506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /2022/06/xem-bong-da-truc-tuyen-full-HD-va-binh-luan-mien-phi-tai-90phut-tv.jpg HTTP/1.1 
Host: cdn.91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-bgj: h2pri
cf-cache-status: HIT
age: 107067
last-modified: Sat, 01 Oct 2022 17:54:52 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zEwlAq6Q1GBhx2Csl7t%2Bxk%2FiXMrJPp2UQFgraBX%2BMT2UEyGqBpuISvZc%2FCf4NgGFx1%2B9a8Zbm8jUtfvNyBBouNEKBHJq7J8DfzKpg5JgB0yfC3B9VCTnBK6kWGhErLLLRbw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754146d89984b506-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /newmedia/vi/promo/viSbnG_728x90.gif HTTP/1.1 
Host: sbbanner.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.20.45.169
HTTP/2 200 OK
content-type: image/webp
                                        
date: Sun, 02 Oct 2022 23:39:20 GMT
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=gif, origSize=84698
content-disposition: inline; filename="viSbnG_728x90.webp"
etag: "e881fcd855c7d81:0"
last-modified: Tue, 13 Sep 2022 09:47:33 GMT
vary: Accept
x-powered-by: ASP.NET
cf-cache-status: HIT
age: 22116
expires: Mon, 03 Oct 2022 03:39:20 GMT
cache-control: public, max-age=14400
server: cloudflare
cf-ray: 754146db6c00b511-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/bongda2/dist/styles/custom.css?ver=1660729932 HTTP/1.1 
Host: 91phutz.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.127
HTTP/2 200 OK
content-type: text/css
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
last-modified: Wed, 17 Aug 2022 09:52:12 GMT
vary: Accept-Encoding
etag: W/"62fcba4c-e2f"
x-powered-by: WordOps
access-control-allow-origin: *
cache-control: max-age=2592000
expires: Mon, 31 Oct 2022 17:54:50 GMT
x-frame-options: SAMEORIGIN, SAMEORIGIN
cf-cache-status: HIT
age: 107069
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B46wAUC%2FN4LEwNFbN0D6OQtyeu9yYl7wrHBKfT1%2B9aNPANwOhHSIxgyN1174izmFCZ9W5%2FW7JYPFS5ZBosnet0Gj9Ux3ckf9ih5ate0Ms2axNLGmcsku%2FIH4RC%2Bo9Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754146d7588eb506-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /2022/09/554446643338866-2-1.gif HTTP/1.1 
Host: cdn.bongdadem.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://91phutz.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.14.170
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sun, 02 Oct 2022 23:39:19 GMT
cache-control: public, max-age=604800
cf-cache-status: HIT
age: 372902
last-modified: Wed, 28 Sep 2022 16:04:17 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qjyimJWIv3JoEcAZ8QuDsi9Fv8dIhtkyTV4SwtxnR1wYw%2FIb1WKCPbJOsdhLdn8bsqLsbnUOgtVCRfvknxrM35ThjCiLFP0FZ5uW6j9bUeo13y%2BrSRbH24ZubC1esSkkizbG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}