Report - holyphim.com/

Report Overview

Submitted URL
holyphim.com/
IP
113.178.46.141
ASN
#45899 VNPT Corp
Submitted
2023-02-05 07:46:44
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
2
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
cdnjs.cloudflare.com	235	2015-04-17T22:46:33Z	2023-03-13T05:09:21Z	403 B	4.1 kB	104.17.25.14
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.8 kB	57 kB	34.120.237.76
dianaserver.dynu.com	unknown	2022-12-05T11:02:51Z	2022-12-20T11:18:55Z	16 kB	444 kB	113.178.46.141
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
holyphim.com	unknown	2021-09-09T16:13:45Z	2023-02-03T16:12:29Z	4.9 kB	115 kB	113.178.46.141
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	52.36.34.188
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	682 B	1.1 kB	93.184.220.29
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	5.1 kB	13 kB	95.101.11.115
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-02-05 07:47:14	medium	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to a *.dynu .com Domain
2023-02-05 07:47:14	medium	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to a *.dynu .com Domain

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (3)

	URL	Size	First Seen	Last Seen
	cdnjs.cloudflare.com/ajax/libs/baguettebox.js/1.10.0/baguetteBox.min.js	9.2 kB	2023-03-07	2024-04-16
Pretty URL cdnjs.cloudflare.com/ajax/libs/baguettebox.js/1.10.0/baguetteBox.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:21:04 Last Seen2024-04-16 19:38:39 Times Seen532 Hash dc8439b3e67e96d2c2f004e1df0ec1b0 36838cde3b185559e558d970f8a13424e8386504 950ad61fa50fb4d949511b4460280a0ea2f206c7076bfb85fe71657bd6f1ded2 Loading...

	holyphim.com/assets/bootstrap/js/bootstrap.min.js	60 kB	2023-03-07	2024-04-26
Pretty URL holyphim.com/assets/bootstrap/js/bootstrap.min.js IP 113.178.46.141 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:09 Last Seen2024-04-26 02:04:44 Times Seen1508 Hash a08792f518b51f0f1422b5c96df9eb8a 3f094f010bfb0c022a51b62778d4361d1cad3fd6 5c36e28c9a7bd864b673e223db7e1934923227536ffbdf871f58b6f09b9ac8c9 Loading...

	holyphim.com/assets/js/script.min.js	2.1 kB	2023-03-13	2023-03-13
Pretty URL holyphim.com/assets/js/script.min.js IP 113.178.46.141 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:26:31 Last Seen2023-03-13 17:26:31 Times Seen1 Hash 586b21c54641363b19e6eed0a0707550 1ee383b1cd085165b08d1d75a6059922c66992b9 a8727cd48506bc12ce1ad4269f8fdb73ab97604ec21f0b091ab61f23bc0d3c9b Loading...

HTTP Transactions (79)

	URL	IP	Response	Size
	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 81713f952b51a865ad9764cde68e3fdb 278c3a9c4bb2a0ffb7375f90d89a1ba6e90a766a c2eb0d8a24ecb51af28f1c71db4b9a95c568dcf6c94b41ee8c78787a4ebebcef HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C2EB0D8A24ECB51AF28F1C71DB4B9A95C568DCF6C94B41EE8C78787A4EBEBCEF" Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3377 Expires: Sun, 05 Feb 2023 08:42:50 GMT Date: Sun, 05 Feb 2023 07:46:33 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash c21ba65e44ac95470c314e068e49a9eb 17a13b13738993d889d4afa3d848dc63bf6eba64 9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66" Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6575 Expires: Sun, 05 Feb 2023 09:36:08 GMT Date: Sun, 05 Feb 2023 07:46:33 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 30db107dcf4380cef05efea409c2e6a3 96e6a306fbc07299aba64e5c14e2bfca35872fa9 b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Sun, 05 Feb 2023 07:33:54 GMT content-type: application/json age: 759 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash fb7b6b46e708ad73eaaa3c21e74569ae 950663c025acad81556af5aa3022ecc9d55097fe 763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64" Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=14184 Expires: Sun, 05 Feb 2023 11:42:57 GMT Date: Sun, 05 Feb 2023 07:46:33 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: tjImBqXibYXb5DhfvMAEs6OWq3qFuNpkqxeUok8F7grOvUTKpcLBms7mJUGtdOJjIYV4ApdWQc0= x-amz-request-id: K74NG42HG407SS96 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Sun, 05 Feb 2023 06:53:10 GMT age: 3203 last-modified: Mon, 09 Jan 2023 18:04:21 GMT etag: "7b922915ebf1fa3639b333f994c74f24" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Sun, 05 Feb 2023 07:46:33 GMT content-type: application/json content-length: 12 access-control-allow-credentials: true access-control-expose-headers: content-type vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	holyphim.com/	113.178.46.141	301 Moved Permanently	178 B
URL HTTP/1.1 holyphim.com/ IP 113.178.46.141:0 ASN #45899 VNPT Corp File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 178 B (178 bytes) Hash bd2695f4b079c71dbddde3436286fb9c 733c05da132193d6cf1d8e242d12e2525c03bab4 2e04a18ff185ba5b16f762a0538339bc4049aceaef9738edd43af77d2ceb788b HTTP Headers `GET / HTTP/1.1 Host: holyphim.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 301 Moved Permanently Server: nginx/1.18.0 (Ubuntu) Date: Sun, 05 Feb 2023 07:46:33 GMT Content-Type: text/html Content-Length: 178 Connection: keep-alive Location: https://holyphim.com/`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Sun, 05 Feb 2023 07:07:20 GMT age: 2353 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash dedf9c519ac38c4bece9c5bc895787d7 4911175c3f8a435978c5301c33c7a99a5e00a1d5 bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698" Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3573 Expires: Sun, 05 Feb 2023 08:46:06 GMT Date: Sun, 05 Feb 2023 07:46:33 GMT Connection: keep-alive`

	push.services.mozilla.com/	52.36.34.188	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 52.36.34.188:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: 679HBM4becathABK/Jb85A== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: E4IdykHM3qk/iAOoBD6k96Bf40U=`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 9a32d0e27c8d7eb8b52136c9c1f513c6 e834cfdf3bb3109f8e8f011d732a3ac9c82d3b8a 47d55752d753b885752649572ca1a4277b3314794f7147f5f92a9c8790d661bd HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "47D55752D753B885752649572CA1A4277B3314794F7147F5F92A9C8790D661BD" Last-Modified: Sat, 04 Feb 2023 06:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=21600 Expires: Sun, 05 Feb 2023 13:46:34 GMT Date: Sun, 05 Feb 2023 07:46:34 GMT Connection: keep-alive`

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash 6630148a03da2d4ccf19993f0fefd44c 2c747b9bc89b4240ad4340b31b993e3d947d1e5a 68c252a328d6f8dbea1935f3a4a950fb02969e70aabfff9853add357f76ecd4f HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 1865 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 07:46:35 GMT Etag: "63debf21-117" Last-Modified: Sun, 05 Feb 2023 07:15:30 GMT Server: ECS (ska/F710) X-Cache: HIT Content-Length: 279`

	cdnjs.cloudflare.com/ajax/libs/baguettebox.js/1.10.0/baguetteBox.min.js	104.17.25.14	200 OK	3.0 kB
URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/baguettebox.js/1.10.0/baguetteBox.min.js IP 104.17.25.14:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (9096) Size 3.0 kB (3003 bytes) Hash 09ac0e51e22bfb1afcb658b7ce1b5f13 c54f58effee47fc40c0455aa8bc4beb130b1cf0e 48b4d32b4d599a54d9591a19c9db98796d3d9ea307cb7130dbb41e9264ce563d HTTP Headers `GET /ajax/libs/baguettebox.js/1.10.0/baguetteBox.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sun, 05 Feb 2023 07:46:35 GMT content-type: application/javascript; charset=utf-8 content-length: 3003 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03d72-23fb" last-modified: Mon, 04 May 2020 16:06:10 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" vary: Accept-Encoding cf-cache-status: HIT age: 21023087 expires: Fri, 26 Jan 2024 07:46:35 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Rt8JqpNdps1kKheIQOvwGwmwZBrc2bwK88VU2uCKSRk%2FcTsZMi2IbEd48KRSco%2Bo9cSL7aai8N6BhRSwhrOvNRKBHAWld2TBTcyqrPyn%2FjtGonCvlyjwdw1TKen8%2BN67Em5vg54M"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 794a0879dacb0b39-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash 6630148a03da2d4ccf19993f0fefd44c 2c747b9bc89b4240ad4340b31b993e3d947d1e5a 68c252a328d6f8dbea1935f3a4a950fb02969e70aabfff9853add357f76ecd4f HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 1865 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 07:46:35 GMT Etag: "63debf21-117" Last-Modified: Sun, 05 Feb 2023 07:15:30 GMT Server: ECS (ska/F710) X-Cache: HIT Content-Length: 279`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1b25bf82638deaab60981e1315ee0849 e3bd912fd1a890e64ee6746a78a674db7ff77039 a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17325 Expires: Sun, 05 Feb 2023 12:35:20 GMT Date: Sun, 05 Feb 2023 07:46:35 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1b25bf82638deaab60981e1315ee0849 e3bd912fd1a890e64ee6746a78a674db7ff77039 a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17325 Expires: Sun, 05 Feb 2023 12:35:20 GMT Date: Sun, 05 Feb 2023 07:46:35 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (10905 bytes) Hash 1a4eed23b240d04a3cd6b085cfa93375 f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00 93e8371f80c12d3753842e36001dbb8d3dc2223b10a594639752cd816c492d4e HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10905 x-amzn-requestid: 093778fc-231c-452f-a6fc-15f4eb41ade0 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fmNJCEDzIAMFmxA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d8c239-7f56d6e56392f373541db219;Sampled=0 x-amzn-remapped-date: Tue, 31 Jan 2023 07:24:41 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: WVfpilnwhnRXBhJkHBWjxxoP09f7SqlRk8CdWRWOubIIwe0CX89bUA== via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google date: Sat, 04 Feb 2023 22:09:58 GMT age: 34597 etag: "f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F030e2301-116b-4cdd-ae90-c5bbc86e9669.jpeg	34.120.237.76	200 OK	7.3 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F030e2301-116b-4cdd-ae90-c5bbc86e9669.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.3 kB (7288 bytes) Hash b1092c4dd4d9ca4d09462ae46e1dd7c1 17444ff60be1afbc40d3653fa936f9eaf9478068 ea8362c7249080b34288ee675f70333607fc3be37e716fdcf63e4901849def9f HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F030e2301-116b-4cdd-ae90-c5bbc86e9669.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7288 x-amzn-requestid: 1aa297f5-2f9a-45be-b823-1eb4d5887769 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: f1WrwH-iIAMFyhQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63ded17e-2b630b4a302b8ae118883b71;Sampled=0 x-amzn-remapped-date: Sat, 04 Feb 2023 21:43:26 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: z2oKgp1keqEkvN6jjsUepMbrxD4JCXKAOHrMNJHcuXN0CpulUh5GLA== via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google date: Sat, 04 Feb 2023 21:43:26 GMT etag: "17444ff60be1afbc40d3653fa936f9eaf9478068" content-type: image/jpeg age: 36189 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1b25bf82638deaab60981e1315ee0849 e3bd912fd1a890e64ee6746a78a674db7ff77039 a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17325 Expires: Sun, 05 Feb 2023 12:35:20 GMT Date: Sun, 05 Feb 2023 07:46:35 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg	34.120.237.76	200 OK	5.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.0 kB (5014 bytes) Hash 5b6c30ad03669b66bf2f63b3edd69882 e630bd132b52b965a5ade646ea8a165d1abf6d7b f8233d879ec17fd91909655ff8881f2ebfad84272fde3ed5e5be37580378a989 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5014 x-amzn-requestid: a434aae4-fe4b-4fc7-9b7e-eeb552484e8a x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fi3bIE0aoAMF6YQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d76c47-5556d14757190c842bbc6b06;Sampled=0 x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:43 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: k6YqagXr3Wr-u1uDKojEnIGW0CxU5yvWPtlzNpzoIvmg9F-rJb9uFQ== via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google date: Sat, 04 Feb 2023 11:30:27 GMT age: 72968 etag: "e630bd132b52b965a5ade646ea8a165d1abf6d7b" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c8da623-73ab-4c2d-afaa-03d28de3a280.png	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c8da623-73ab-4c2d-afaa-03d28de3a280.png IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (11056 bytes) Hash 3e0c38abfcd86f8074d4182d49fc354f 1367bebb73fa652695242100b26c394f1bfe4457 e42d110060133ac05e6cdfafa6473c55473220fdc7eaf03e3a89f58aa3603670 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c8da623-73ab-4c2d-afaa-03d28de3a280.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11056 x-amzn-requestid: 4acc3364-4a33-4934-bdcb-41284d952113 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fPFrwEW4IAMF_Tg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63cf8317-33872f461a2faab552322837;Sampled=0 x-amzn-remapped-date: Tue, 24 Jan 2023 07:04:55 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 4xmWa9XVzQ3xzjzIZyrdv3GpFSaTcoacse6b0lgGch2IMvV69AZ57w== via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google date: Sat, 04 Feb 2023 21:45:28 GMT age: 36067 etag: "1367bebb73fa652695242100b26c394f1bfe4457" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1b25bf82638deaab60981e1315ee0849 e3bd912fd1a890e64ee6746a78a674db7ff77039 a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17325 Expires: Sun, 05 Feb 2023 12:35:20 GMT Date: Sun, 05 Feb 2023 07:46:35 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1b25bf82638deaab60981e1315ee0849 e3bd912fd1a890e64ee6746a78a674db7ff77039 a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17325 Expires: Sun, 05 Feb 2023 12:35:20 GMT Date: Sun, 05 Feb 2023 07:46:35 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg	34.120.237.76	200 OK	3.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 3.5 kB (3474 bytes) Hash d7a466d89c75ff3459b7328591db52cf c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb e73243be3d01d12a224c4e9826c4f52610cf7722eee69f62755278d7550705f1 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 3474 x-amzn-requestid: 5846c080-9f25-4590-863c-8af2126cdbe1 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: f1WXEEbnoAMFRdg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63ded0f9-1bd490125feadc14366e7ca0;Sampled=0 x-amzn-remapped-date: Sat, 04 Feb 2023 21:41:13 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: d8aQmkW-aqLFpb79RynlJG2vY1GTDbjLNY0Qukgg_WIjdI6cmbVKFw== via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google date: Sat, 04 Feb 2023 21:51:26 GMT age: 35709 etag: "c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg	34.120.237.76	200 OK	6.2 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.2 kB (6202 bytes) Hash 251f1a5d671fb797fb98e9a71754c341 335425603d9eec146a3c03422dbca91134272e53 74932f07561287e33302aabcf9c639e9df7ae0fbc4bf71f5467310aabafea208 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6202 x-amzn-requestid: 01b85fcd-69a0-49da-8640-32a3ef19378a x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fi3bUFEJoAMFapg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d76c48-14817e717361e09170714e9d;Sampled=0 x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:44 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 1_1mEN4j5cciWEiimz4PRjx3PNGnrSRib9oEJAdYLrrtyjqnz_zvcQ== via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google date: Sat, 04 Feb 2023 11:30:27 GMT age: 72968 etag: "335425603d9eec146a3c03422dbca91134272e53" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1cce425c3cd9e5b5f54459e5b9e4258c 19c18e24581f082bd9dc66a6bade4d6003bdf14c 79953058ec3dfdf01d19a4e330791284b3502ecf8010fad41344d04e990dabe7 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "79953058EC3DFDF01D19A4E330791284B3502ECF8010FAD41344D04E990DABE7" Last-Modified: Sat, 04 Feb 2023 06:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=21562 Expires: Sun, 05 Feb 2023 13:45:58 GMT Date: Sun, 05 Feb 2023 07:46:36 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash b8208a3034082ba4504e04014f2de5c7 11bb8711230dc2ec73d0b2d6c1a614b3b2519ae2 ce09f86a2822df7021c923e533b515ba884b4efd17c59ea9c05c33daf847aa9d HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "CE09F86A2822DF7021C923E533B515BA884B4EFD17C59EA9C05C33DAF847AA9D" Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=21600 Expires: Sun, 05 Feb 2023 13:46:36 GMT Date: Sun, 05 Feb 2023 07:46:36 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1cce425c3cd9e5b5f54459e5b9e4258c 19c18e24581f082bd9dc66a6bade4d6003bdf14c 79953058ec3dfdf01d19a4e330791284b3502ecf8010fad41344d04e990dabe7 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "79953058EC3DFDF01D19A4E330791284B3502ECF8010FAD41344D04E990DABE7" Last-Modified: Sat, 04 Feb 2023 06:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=21566 Expires: Sun, 05 Feb 2023 13:46:02 GMT Date: Sun, 05 Feb 2023 07:46:36 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1cce425c3cd9e5b5f54459e5b9e4258c 19c18e24581f082bd9dc66a6bade4d6003bdf14c 79953058ec3dfdf01d19a4e330791284b3502ecf8010fad41344d04e990dabe7 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "79953058EC3DFDF01D19A4E330791284B3502ECF8010FAD41344D04E990DABE7" Last-Modified: Sat, 04 Feb 2023 06:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=21600 Expires: Sun, 05 Feb 2023 13:46:36 GMT Date: Sun, 05 Feb 2023 07:46:36 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash b8208a3034082ba4504e04014f2de5c7 11bb8711230dc2ec73d0b2d6c1a614b3b2519ae2 ce09f86a2822df7021c923e533b515ba884b4efd17c59ea9c05c33daf847aa9d HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "CE09F86A2822DF7021C923E533B515BA884B4EFD17C59EA9C05C33DAF847AA9D" Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=21600 Expires: Sun, 05 Feb 2023 13:46:36 GMT Date: Sun, 05 Feb 2023 07:46:36 GMT Connection: keep-alive`

	dianaserver.dynu.com/FILMS/WednesdayS1E/MiniPoster.webp	113.178.46.141	200 OK	7.9 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/WednesdayS1E/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 7.9 kB (7918 bytes) Hash a35731c52d8d01b2747b84a2b195fd3a bf6e9408e04e693ae23749d7fe5951d53c92fdc0 d6eb770409d38ebf12c45dc7095a4469609350c7d6573c058fbf6228a6bf9740 HTTP Headers `GET /FILMS/WednesdayS1E/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 7918 last-modified: Sat, 03 Dec 2022 10:59:03 GMT etag: "638b2bf7-1eee" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	holyphim.com/assets/img/MainPoster.webp	113.178.46.141	200 OK	73 kB
URL HTTP/2 holyphim.com/assets/img/MainPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 73 kB (72572 bytes) Hash 1fc47e9465e3748d5263e12e9b74dea3 2f2e338b8b1796024986073ba61fe10c653a389c 9977eafb74f62a585d91f275b441af12bd9401f721f295b795779dde67492365 HTTP Headers `GET /assets/img/MainPoster.webp HTTP/1.1 Host: holyphim.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 72572 last-modified: Fri, 08 Jul 2022 11:34:04 GMT accept-ranges: bytes etag: "1d892bea066457c" strict-transport-security: max-age=2592000 X-Firefox-Spdy: h2`

	holyphim.com/assets/fonts/kodchasan-v14-vietnamese_latin-regular.woff2	113.178.46.141	200 OK	16 kB
URL HTTP/2 holyphim.com/assets/fonts/kodchasan-v14-vietnamese_latin-regular.woff2 IP 113.178.46.141:0 ASN #45899 VNPT Corp File type Web Open Font Format (Version 2), TrueType, length 16084, version 1.0\012- data Size 16 kB (16084 bytes) Hash 153cf72eb7e4ca82736edcd8fd54a725 d5ecbc699427ed4a3eef39f604fdba221bfeaf1e ff147fed19ef7d14c0e730f1324ee1c41c3c146c5f60874f85c32bdb0632915f HTTP Headers `GET /assets/fonts/kodchasan-v14-vietnamese_latin-regular.woff2 HTTP/1.1 Host: holyphim.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: https://holyphim.com/assets/css/fontstyle.css Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: font/woff2 content-length: 16084 last-modified: Fri, 08 Jul 2022 11:34:04 GMT accept-ranges: bytes etag: "1d892bea06760d4" strict-transport-security: max-age=2592000 X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/365Days2020/MiniPoster.webp	113.178.46.141	200 OK	14 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/365Days2020/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 14 kB (14114 bytes) Hash 8fccf650eb00681d6b5ae7b2b09063b5 533a07b4df5da56b7f60d03d2d84c5a4de0653bc 629ea54c547d1c93cde7bacb6ffc49c335dd3ce8a86aa5184d222d5e9094e330 HTTP Headers `GET /FILMS/365Days2020/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 14114 last-modified: Sat, 19 Mar 2022 13:09:56 GMT etag: "6235d624-3722" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/KhanhKhanhNhatThuong2022E/MiniPoster.webp	113.178.46.141	200 OK	9.5 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/KhanhKhanhNhatThuong2022E/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 9.5 kB (9460 bytes) Hash 461421d343de4a4b05f4afaec54b056a 56168e772d286e913df6524b5ae9e47894ef368b fb10b19b1de0fcf303b7db923c1b0fb8f2365602b1066978c9c7eaf61f95c5c3 HTTP Headers `GET /FILMS/KhanhKhanhNhatThuong2022E/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 9460 last-modified: Tue, 29 Nov 2022 23:00:26 GMT etag: "63868f0a-24f4" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/Avatar2009/MiniPoster.webp	113.178.46.141	200 OK	25 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/Avatar2009/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 25 kB (24932 bytes) Hash 8302735ab07a463bd298d55413a25a13 0df173be23a6e27c190ac5fae2e3bfba4bf8f795 604ec95b7e737543d303a08d28126b44698a6e46f666c6e7ff35a85f6692a643 HTTP Headers `GET /FILMS/Avatar2009/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 24932 last-modified: Sat, 19 Mar 2022 13:09:56 GMT etag: "6235d624-6164" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/BlackPantherWakandaForever2022/MiniPoster.webp	113.178.46.141	200 OK	11 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/BlackPantherWakandaForever2022/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 11 kB (11002 bytes) Hash cfbee70b93821c3a05a46c88148b2055 96bdbbf3104fb99b6e770c4d016b981b5555e205 b887ae8aa98a815872167ad1efa496aec658ffa059d336f6f7e752a400085018 HTTP Headers `GET /FILMS/BlackPantherWakandaForever2022/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 11002 last-modified: Wed, 01 Feb 2023 10:34:30 GMT etag: "63da4036-2afa" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/BlackAdam2022/MiniPoster.webp	113.178.46.141	200 OK	13 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/BlackAdam2022/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 13 kB (13078 bytes) Hash 812de15fc9130f3f313e6be0cf7a0eca 60bc2b35981efc502354b2cb46b4e46f8486fb0c 64c9a5c9f713bf4c1bb9d89b56719798be2a62b36ba1919e7ceb29823360b989 HTTP Headers `GET /FILMS/BlackAdam2022/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 13078 last-modified: Thu, 17 Nov 2022 17:30:28 GMT etag: "63766fb4-3316" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/BigMouth2022S01E/MiniPoster.webp	113.178.46.141	200 OK	6.2 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/BigMouth2022S01E/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 6.2 kB (6206 bytes) Hash 749b942a9b61b00b92d928a49e37266a 5025927d1e48a8c9d63a8e82a356b5f5693a74ed fb14dd97370162ed216ca05748f4e97473a88dd2bc36d8d96e3d0ad8f5c9c795 HTTP Headers `GET /FILMS/BigMouth2022S01E/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 6206 last-modified: Fri, 16 Sep 2022 14:03:25 GMT etag: "6324822d-183e" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/GioThoiBanHa2022E/MiniPoster.webp	113.178.46.141	200 OK	7.1 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/GioThoiBanHa2022E/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 7.1 kB (7120 bytes) Hash 0571037fc48549fd14ded4af7c943553 96b5f30fce2ff8661a67417cd0b21858229c50ff 1a90c5099ba2837c52c7cfdb6e04300b41de94ea28ffd796d878a606697b78f2 HTTP Headers `GET /FILMS/GioThoiBanHa2022E/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 7120 last-modified: Sat, 10 Dec 2022 11:15:03 GMT etag: "63946a37-1bd0" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/WhatIf2021S1E/MiniPoster.webp	113.178.46.141	200 OK	26 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/WhatIf2021S1E/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 26 kB (25746 bytes) Hash fce9e41a8e4d5bd5d979c726fc12e1ad 90f0f1febb0fd48e2c970ec2eae4b2616c3c8c32 980bf3fa840a997c8321655267fec47eb2c7e31bf8d4206094833ad145d1cd22 HTTP Headers `GET /FILMS/WhatIf2021S1E/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 25746 last-modified: Sat, 19 Mar 2022 13:09:56 GMT etag: "6235d624-6492" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/PhiHoNgoaiTruyen2022E/MiniPoster.webp	113.178.46.141	200 OK	9.3 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/PhiHoNgoaiTruyen2022E/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 9.3 kB (9266 bytes) Hash 98023ede2105d9e1c7b6a3656d4cb947 43f59cdf8057a0a5dda9dab3c7e59102c1c9d84a 84ec670b9daf320c7a1fd0dacc6b1bbffdd7f24e427f730abae06693dd28612f HTTP Headers `GET /FILMS/PhiHoNgoaiTruyen2022E/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 9266 last-modified: Tue, 20 Sep 2022 15:26:08 GMT etag: "6329db90-2432" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/Smile2022/MiniPoster.webp	113.178.46.141	200 OK	5.7 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/Smile2022/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 5.7 kB (5696 bytes) Hash 1fd3ed56cc968ff1e1d2347abb039a43 64c105c64263f48b89ad04d10dd3b85958fb3f74 ef045906663ae075e1ad44ecdf3b6f5b3413bd82929d7c601a09334bed0d2801 HTTP Headers `GET /FILMS/Smile2022/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 5696 last-modified: Sat, 26 Nov 2022 12:37:33 GMT etag: "6382088d-1640" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/ThinhQuan2022E/MiniPoster.webp	113.178.46.141	200 OK	9.4 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/ThinhQuan2022E/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 9.4 kB (9376 bytes) Hash 6db81bcbc4773560f95f936ad099e9de 1fa8a4b755b31a30087efedbbdc4d59f833bef10 5bcdf715cc7c2fa6df8c6162041dab84b89bacf7ae2da087fd11c4cd9b4f5251 HTTP Headers `GET /FILMS/ThinhQuan2022E/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 9376 last-modified: Thu, 22 Sep 2022 13:40:50 GMT etag: "632c65e2-24a0" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/Spirited2022/MiniPoster.webp	113.178.46.141	200 OK	8.2 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/Spirited2022/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 8.2 kB (8216 bytes) Hash c1bd26e9a21f0b858b6874916cbeeb47 8e9b653a593f13c51f64ce70ef233caf3fcba352 4a9b3399e2700a9364997421ae1827d7889db36d2bc97b221259f050e92883ad HTTP Headers `GET /FILMS/Spirited2022/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 8216 last-modified: Sat, 26 Nov 2022 12:52:55 GMT etag: "63820c27-2018" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/PokerFace2022/MiniPoster.webp	113.178.46.141	200 OK	8.5 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/PokerFace2022/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 8.5 kB (8476 bytes) Hash 44677813ce80051ec91a54029e722c60 ff9519507c3daa15e39ad395589ec1dc6009391c da84991bdf9ac1b5f1434fb4ce8276708dbb0d068f589378ddea66f1be170b90 HTTP Headers `GET /FILMS/PokerFace2022/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 8476 last-modified: Sat, 19 Nov 2022 11:46:43 GMT etag: "6378c223-211c" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/365DaysTheNext/MiniPoster.webp	113.178.46.141	200 OK	7.3 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/365DaysTheNext/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 7.3 kB (7276 bytes) Hash 394576a27cddd03be3b6b37195bbca96 b42583e5e52736da40740fa53a2b2b8112cb4236 25e096c1bfb623e36399c8943b2b6a66c82675049a819f1c019e5f8132058214 HTTP Headers `GET /FILMS/365DaysTheNext/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 7276 last-modified: Mon, 22 Aug 2022 10:04:41 GMT etag: "630354b9-1c6c" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/TrachQuanKy2023E/MiniPoster.webp	113.178.46.141	200 OK	10 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/TrachQuanKy2023E/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 10 kB (10380 bytes) Hash 7aeaef6a7be5d3e8de58506165babf98 b2a0a86741ad9e8e27c9036b3ddf953006f3e566 a1b527bbce7a68e2c973c1b3a9c28e428391d82a2ce92ea48ad0a07255c4caa7 HTTP Headers `GET /FILMS/TrachQuanKy2023E/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 10380 last-modified: Thu, 12 Jan 2023 12:50:57 GMT etag: "63c00231-288c" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/TheGlory2022S01E/MiniPoster.webp	113.178.46.141	200 OK	3.6 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/TheGlory2022S01E/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 3.6 kB (3564 bytes) Hash 226a6b7d4fc1d8cbe1454dba99c4a2d8 b780156e2d3be327079b7f776044b09c2f4b710a 16b853de7187702ebd935ebd5d0302d7fb444e063516452de8118919cff82ca2 HTTP Headers `GET /FILMS/TheGlory2022S01E/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 3564 last-modified: Fri, 06 Jan 2023 04:48:32 GMT etag: "63b7a820-dec" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/KnivesOut2019/MiniPoster.webp	113.178.46.141	200 OK	13 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/KnivesOut2019/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 13 kB (13164 bytes) Hash cd1cb300cb9d472d54b3295734724817 d2cfbd2c8b6bc0568e335ad0e1bd80e6f6af450a dbdb030e2b334251b4c757c7e9ce6011deaf9c011a9e45f6608c88f0b3d4cc69 HTTP Headers `GET /FILMS/KnivesOut2019/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 13164 last-modified: Fri, 06 Jan 2023 04:39:58 GMT etag: "63b7a61e-336c" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/GlassOnionAKnivesOutMystery2022/MiniPoster.webp	113.178.46.141	200 OK	16 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/GlassOnionAKnivesOutMystery2022/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 16 kB (16264 bytes) Hash 6f815389fa665d553da330773b01e52a d9cc0a36711ea917682882b1057ceed64d6c3787 d8a1abf5567e00d0fd187337a5008c01cc292ab561820bae9e493087ba5367cb HTTP Headers `GET /FILMS/GlassOnionAKnivesOutMystery2022/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 16264 last-modified: Thu, 29 Dec 2022 01:52:46 GMT etag: "63acf2ee-3f88" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/TheWitcherBloodOriginS1E/MiniPoster.webp	113.178.46.141	200 OK	7.9 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/TheWitcherBloodOriginS1E/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 7.9 kB (7868 bytes) Hash 810d3dbdc12f8546249551860356ca5d 655ac202a267a594b54b22bf9b7d862ead23b594 03891e24d9243fdc31d32d9de652d494cf6be45749bbe5b4bf66aa29a60b0203 HTTP Headers `GET /FILMS/TheWitcherBloodOriginS1E/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 7868 last-modified: Thu, 29 Dec 2022 01:29:53 GMT etag: "63aced91-1ebc" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/NowYouSeeMe2/MiniPoster.webp	113.178.46.141	200 OK	10 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/NowYouSeeMe2/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 10 kB (10176 bytes) Hash b250a15082501dd358530ad27c598ce8 e82fd86d167fa878d9452da17592e46221702fda b5cdbea24157b60515246b353cafeffe80f8792145cc7d3d4742c7d44506dcb5 HTTP Headers `GET /FILMS/NowYouSeeMe2/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 10176 last-modified: Thu, 29 Dec 2022 01:17:34 GMT etag: "63aceaae-27c0" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/TomClancysJackRyanS3E/MiniPoster.webp	113.178.46.141	200 OK	8.1 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/TomClancysJackRyanS3E/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 8.1 kB (8092 bytes) Hash 5ea9bb2fc52bfb07fa31c0f18ce14296 8c8a147c207f3ac00168ff7c7dfb26f224667880 efc0ac15196a427705a1b80faadee960b87221bbfa06cf4753efbd49b2d8b428 HTTP Headers `GET /FILMS/TomClancysJackRyanS3E/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 8092 last-modified: Thu, 29 Dec 2022 01:08:03 GMT etag: "63ace873-1f9c" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/PhuDoDuyen2022E/MiniPoster.webp	113.178.46.141	200 OK	12 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/PhuDoDuyen2022E/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 12 kB (11864 bytes) Hash 944774e3c74b2f077dea86af3d1935b1 e6d348d1955f0af09186e6442bee6b7611f3c552 fcf7f69ce02f0dbfe9275b1ff777ebf664d4c1dfb97180ff325ff2fc4d106713 HTTP Headers `GET /FILMS/PhuDoDuyen2022E/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 11864 last-modified: Wed, 28 Dec 2022 14:38:40 GMT etag: "63ac54f0-2e58" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/TheWolfOfWallStreet2013/MiniPoster.webp	113.178.46.141	200 OK	7.3 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/TheWolfOfWallStreet2013/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 7.3 kB (7324 bytes) Hash 5980645fdb7a3ce10b034d494b9d12f9 c0d26d1e9a305daef3941d2b696ca93ffd6307ae 752f1f1dff943929829760b6e44e0ab8c93ab67c9ac105a7eedd12d908fe5894 HTTP Headers `GET /FILMS/TheWolfOfWallStreet2013/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 7324 last-modified: Tue, 27 Dec 2022 17:57:35 GMT etag: "63ab320f-1c9c" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/SpiderMan2004/MiniPoster.webp	113.178.46.141	200 OK	14 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/SpiderMan2004/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x168, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 14 kB (14288 bytes) Hash 703a38c3f7b039170772f7e4c4580c71 a840602aa9f73ee4bc53866d1cd9f8ac21726b6a 2a29ce075a34568fd1f4f6cf9f043c56e096f6362712b2b1a0ffaad13062e55c HTTP Headers `GET /FILMS/SpiderMan2004/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 14288 last-modified: Sat, 19 Mar 2022 13:09:56 GMT etag: "6235d624-37d0" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/PiratesOfTheCaribbeanOnStrangerTides/MiniPoster.webp	113.178.46.141	200 OK	24 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/PiratesOfTheCaribbeanOnStrangerTides/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 24 kB (24230 bytes) Hash 920ecb01fa429fd763306ee0fbc626d7 cd673cbc549b8222616a1a698ad88868b3f19e43 0aa1123e7f83f31b7d5a59ee8cb38eed59e01228b8e08a7749b21dab61bd8142 HTTP Headers `GET /FILMS/PiratesOfTheCaribbeanOnStrangerTides/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 24230 last-modified: Sat, 19 Mar 2022 13:09:56 GMT etag: "6235d624-5ea6" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/Terminator1984/MiniPoster.webp	113.178.46.141	200 OK	18 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/Terminator1984/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 18 kB (18274 bytes) Hash 39595a4a8fbbd901d0ebab97f057fe50 0e3a8f330a9b1d5fde08eb5e1444073baa74266e d5ca72c27424cb8ee83e960b78cd42d75eb59b3b659d9aaea92302a34904298f HTTP Headers `GET /FILMS/Terminator1984/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 18274 last-modified: Sat, 19 Mar 2022 13:09:55 GMT etag: "6235d623-4762" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/AllOfUsAreDeadS01E/MiniPoster.webp	113.178.46.141	200 OK	16 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/AllOfUsAreDeadS01E/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 16 kB (15978 bytes) Hash 516a79aafc776f01bc96af34f103e687 77103587838d0d7399905f34dd108849e96a15eb 5e52e1fcacd25f0f294419fcc5e314f75869701f94d4f345751851030c373e7b HTTP Headers `GET /FILMS/AllOfUsAreDeadS01E/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 15978 last-modified: Sat, 19 Mar 2022 13:09:56 GMT etag: "6235d624-3e6a" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/FastFurious2003/MiniPoster.webp	113.178.46.141	200 OK	12 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/FastFurious2003/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 12 kB (12478 bytes) Hash 23c625fd005af2eea4ff1d09999f6373 2dce09330c3c71c4e152b08764dedc7973c579aa bcf424fb4d4d8c5ff78585d12b3fff2d27e244abb574e9aa7e210458c85a27e8 HTTP Headers `GET /FILMS/FastFurious2003/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 12478 last-modified: Sat, 19 Mar 2022 13:09:55 GMT etag: "6235d623-30be" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/MechanicResurrection/MiniPoster.webp	113.178.46.141	200 OK	25 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/MechanicResurrection/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 25 kB (24706 bytes) Hash f01be030e43253fce4b2f0043296c771 9b4a40c922544b3d1bcdbecb3010974c874b3416 429ec5e85bffc387a99592ff3c3ad5dbefb148d0f8fc350f55875d4b3d329da2 HTTP Headers `GET /FILMS/MechanicResurrection/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 24706 last-modified: Sat, 19 Mar 2022 13:09:56 GMT etag: "6235d624-6082" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/007Skyfall/MiniPoster.webp	113.178.46.141	200 OK	18 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/007Skyfall/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 18 kB (18030 bytes) Hash 56ffb46f5070bf8bf60154d9e1919e0e dd08a9e1e3c4d69e3ccfac43744dd4b6bedba9c1 226f820ca8f10bd93d946a4b1b444ec9b15718007f4dbe7d9f3bbbbd3a17e13e HTTP Headers `GET /FILMS/007Skyfall/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 18030 last-modified: Sat, 19 Mar 2022 13:09:56 GMT etag: "6235d624-466e" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	holyphim.com/favicons/android-icon-192x192.png	113.178.46.141	200 OK	22 kB
URL HTTP/2 holyphim.com/favicons/android-icon-192x192.png IP 113.178.46.141:0 ASN #45899 VNPT Corp File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data Size 22 kB (21883 bytes) Hash ff07ac76c1fc51b6b41ac28cae2eee07 828dc53d87ef7bf1f3f7b68eac944d44e2508923 546d728bd1875d4562901a9e74e1a781beecdeec4eaa20e05aafa29a901f3d2c HTTP Headers `GET /favicons/android-icon-192x192.png HTTP/1.1 Host: holyphim.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:40 GMT content-type: image/png content-length: 21883 last-modified: Sat, 24 Sep 2022 07:37:16 GMT accept-ranges: bytes etag: "1d8cfe877ff4b7b" strict-transport-security: max-age=2592000 X-Firefox-Spdy: h2`

	holyphim.com/favicons/favicon-16x16.png	113.178.46.141	200 OK	1.5 kB
URL HTTP/2 holyphim.com/favicons/favicon-16x16.png IP 113.178.46.141:0 ASN #45899 VNPT Corp File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data Size 1.5 kB (1543 bytes) Hash c197933f2e75170e8da5d58e20e9c34c 0eb323a4058284e9cf47fff87dbfa591c902533e e0079e28b1196cec02e74a0543e0e3aa2507537bf4356c382293c5e5baf5bcce HTTP Headers `GET /favicons/favicon-16x16.png HTTP/1.1 Host: holyphim.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:40 GMT content-type: image/png content-length: 1543 last-modified: Sat, 24 Sep 2022 07:37:16 GMT accept-ranges: bytes etag: "1d8cfe877ff1807" strict-transport-security: max-age=2592000 X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/TheBoysS01E/MiniPoster.webp	113.178.46.141	200 OK	14 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/TheBoysS01E/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 14 kB (14306 bytes) Hash 64c7a243b54458bc153b3bdcfd684174 1fd29b4630213291b0a28c688463be136f52f9d4 c506419b2d58bf847c23cba775387ee6cde723ebd935c1552b2b9afa9c8d152f HTTP Headers `GET /FILMS/TheBoysS01E/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 14306 last-modified: Wed, 06 Jul 2022 15:42:58 GMT etag: "62c5ad82-37e2" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/StrangeThingsS1E/MiniPoster.webp	113.178.46.141	200 OK	14 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/StrangeThingsS1E/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 14 kB (13538 bytes) Hash 0f38aae4181633b7366fe0cb5dad89ec c63000e046ad195b45e39756fe4c3cc6b482fdc3 05cbe3b3a43755090dfbc9203833418ebdea8234f1ff82f6f5e733b9411c1843 HTTP Headers `GET /FILMS/StrangeThingsS1E/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 13538 last-modified: Fri, 02 Dec 2022 12:17:00 GMT etag: "6389ecbc-34e2" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/StrangeThingsS4E/MiniPoster.webp	113.178.46.141	200 OK	16 kB
URL HTTP/2 dianaserver.dynu.com/FILMS/StrangeThingsS4E/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type RIFF (little-endian) data, Web/P image\012- data Size 16 kB (15766 bytes) Hash edd6821557ce09c6a782d63ced286329 bad7ebef50c5d9a70dae1c9458191bbd6ec292f9 4dcf22e5a9b96de49ebeab6358b429d080a8142d8400f6704f38b8a4fcf2eb35 HTTP Headers `GET /FILMS/StrangeThingsS4E/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 15766 last-modified: Sat, 03 Dec 2022 10:33:38 GMT etag: "638b2602-3d96" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b593b5-5093-4504-8ab7-492c62b14ca7.jpeg	34.120.237.76	200 OK	5.8 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b593b5-5093-4504-8ab7-492c62b14ca7.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.8 kB (5801 bytes) Hash c1f3df5bbad5048923e29c0767d703d3 48c408d37a7bd7f96653174359178eed46ddf298 c8bae041c3d64334964b2aa771a07bc2709ced4c497e1795f864d9416fed728f HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b593b5-5093-4504-8ab7-492c62b14ca7.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK server: nginx content-length: 5801 x-amzn-requestid: 441284a8-923a-4b22-b39f-95dec713c292 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fjj9jHu_IAMFZ-w= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d7b389-788174a773fcd695540cc95e;Sampled=0 x-amzn-remapped-date: Mon, 30 Jan 2023 12:09:45 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: DgvqiQwdytO2caPNzg2OhGcv8ly9N_YeQTzpuf6iwAVt8AQZEXRLqw== via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google date: Sat, 04 Feb 2023 21:44:03 GMT age: 36159 etag: "48c408d37a7bd7f96653174359178eed46ddf298" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	holyphim.com/assets/bootstrap/js/bootstrap.min.js	113.178.46.141	200 OK	0 B
URL HTTP/2 holyphim.com/assets/bootstrap/js/bootstrap.min.js IP 113.178.46.141:0 ASN #45899 VNPT Corp File type Size 0 B (0 bytes) Hash HTTP Headers `GET /assets/bootstrap/js/bootstrap.min.js HTTP/1.1 Host: holyphim.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:35 GMT content-type: application/javascript last-modified: Fri, 07 Oct 2022 12:45:40 GMT etag: W/"1d8da4ab49cd8b9" strict-transport-security: max-age=2592000 content-encoding: br X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/StrangeThingsS3E/MiniPoster.webp	113.178.46.141	200 OK	0 B
URL HTTP/2 dianaserver.dynu.com/FILMS/StrangeThingsS3E/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type Size 0 B (0 bytes) Hash HTTP Headers `GET /FILMS/StrangeThingsS3E/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 10400 last-modified: Fri, 02 Dec 2022 13:22:18 GMT etag: "6389fc0a-28a0" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	holyphim.com/assets/js/script.min.js	113.178.46.141	200 OK	0 B
URL HTTP/2 holyphim.com/assets/js/script.min.js IP 113.178.46.141:0 ASN #45899 VNPT Corp File type Size 0 B (0 bytes) Hash HTTP Headers `GET /assets/js/script.min.js HTTP/1.1 Host: holyphim.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:35 GMT content-type: application/javascript last-modified: Sun, 31 Jul 2022 02:49:39 GMT etag: W/"1d8a4882d4dabbf" strict-transport-security: max-age=2592000 content-encoding: br X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/StrangeThingsS2E/MiniPoster.webp	113.178.46.141	200 OK	0 B
URL HTTP/2 dianaserver.dynu.com/FILMS/StrangeThingsS2E/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type Size 0 B (0 bytes) Hash HTTP Headers `GET /FILMS/StrangeThingsS2E/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 10790 last-modified: Fri, 02 Dec 2022 13:13:14 GMT etag: "6389f9ea-2a26" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	holyphim.com/assets/css/fontstyle.css	113.178.46.141	200 OK	0 B
URL HTTP/2 holyphim.com/assets/css/fontstyle.css IP 113.178.46.141:0 ASN #45899 VNPT Corp File type Size 0 B (0 bytes) Hash HTTP Headers `GET /assets/css/fontstyle.css HTTP/1.1 Host: holyphim.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:35 GMT content-type: text/css last-modified: Sun, 31 Jul 2022 02:49:39 GMT etag: W/"1d8a4882d4da09a" strict-transport-security: max-age=2592000 content-encoding: br X-Firefox-Spdy: h2`

	holyphim.com/	113.178.46.141	200 OK	0 B
URL HTTP/2 holyphim.com/ IP 113.178.46.141:0 ASN #45899 VNPT Corp File type Size 0 B (0 bytes) Hash HTTP Headers `GET / HTTP/1.1 Host: holyphim.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:34 GMT content-type: text/html; charset=utf-8 strict-transport-security: max-age=2592000 content-encoding: br X-Firefox-Spdy: h2`

	holyphim.com/assets/css/baguetteBox.min.css	113.178.46.141	200 OK	0 B
URL HTTP/2 holyphim.com/assets/css/baguetteBox.min.css IP 113.178.46.141:0 ASN #45899 VNPT Corp File type Size 0 B (0 bytes) Hash HTTP Headers `GET /assets/css/baguetteBox.min.css HTTP/1.1 Host: holyphim.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:35 GMT content-type: text/css last-modified: Sun, 31 Jul 2022 02:49:39 GMT etag: W/"1d8a4882d4dad9e" strict-transport-security: max-age=2592000 content-encoding: br X-Firefox-Spdy: h2`

	holyphim.com/assets/fonts/simple-line-icons.min.css	113.178.46.141	200 OK	0 B
URL HTTP/2 holyphim.com/assets/fonts/simple-line-icons.min.css IP 113.178.46.141:0 ASN #45899 VNPT Corp File type Size 0 B (0 bytes) Hash HTTP Headers `GET /assets/fonts/simple-line-icons.min.css HTTP/1.1 Host: holyphim.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:35 GMT content-type: text/css last-modified: Sun, 31 Jul 2022 02:49:39 GMT etag: W/"1d8a4882d4d893f" strict-transport-security: max-age=2592000 content-encoding: br X-Firefox-Spdy: h2`

	dianaserver.dynu.com/FILMS/365DaysThisDay2022/MiniPoster.webp	113.178.46.141	200 OK	0 B
URL HTTP/2 dianaserver.dynu.com/FILMS/365DaysThisDay2022/MiniPoster.webp IP 113.178.46.141:0 ASN #45899 VNPT Corp File type Size 0 B (0 bytes) Hash HTTP Headers `GET /FILMS/365DaysThisDay2022/MiniPoster.webp HTTP/1.1 Host: dianaserver.dynu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:36 GMT content-type: image/webp content-length: 14146 last-modified: Thu, 28 Apr 2022 05:20:58 GMT etag: "626a243a-3742" access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Content-Type,accept,x-wsse,origin access-control-allow-methods: GET,POST,OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	holyphim.com/assets/css/styles.min.css	113.178.46.141	200 OK	0 B
URL HTTP/2 holyphim.com/assets/css/styles.min.css IP 113.178.46.141:0 ASN #45899 VNPT Corp File type Size 0 B (0 bytes) Hash HTTP Headers `GET /assets/css/styles.min.css HTTP/1.1 Host: holyphim.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://holyphim.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Sun, 05 Feb 2023 07:46:35 GMT content-type: text/css last-modified: Sun, 31 Jul 2022 02:49:39 GMT etag: W/"1d8a4882d4d84db" strict-transport-security: max-age=2592000 content-encoding: br X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (79)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type